{"vulnerability": "cve-2026-4861", "sightings": [{"uuid": "6ace13eb-9987-45d5-bc86-cca502f8854c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4861", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhxb3avri227", "content": "", "creation_timestamp": "2026-03-26T09:10:45.792930Z"}, {"uuid": "5bda4f31-974d-4e84-b75f-80c6556604a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48612", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo2xh6tipn24", "content": "\ud83d\udfe0 CVE-2026-48612 - High (8)\n\nImproper state verification in the OAuth implementation could allow an attacker to manipulate the...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48612/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-12T05:00:18.538046Z"}, {"uuid": "fe0af6f9-5c7f-4aab-84ed-0b7082f38d95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4861", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mhyssrmkgn2r", "content": "", "creation_timestamp": "2026-03-27T00:00:49.096599Z"}, {"uuid": "7a52740a-98bb-4653-834b-90d8105a51f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48611", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo2xhfwjef24", "content": "\ud83d\udd34 CVE-2026-48611 - Critical (9.8)\n\nImproper authentication checks in the OAuth implementation allow account hijacking even when OAut...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48611/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-12T05:00:25.771993Z"}, {"uuid": "3b555532-28e3-4f57-8a1b-66af8593f46c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48612", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo2yjlei6u2g", "content": "CVE-2026-48612 - Okta OAuth Account Linking Vulnerability\nCVE ID : CVE-2026-48612\n \n Published : June 12, 2026, 4:17 a.m. | 49\u00a0minutes ago\n \n Description : Improper state verification in the OAuth implementation could allow an attacker to manipulate the authentication flow and...", "creation_timestamp": "2026-06-12T05:19:31.512339Z"}, {"uuid": "e9cbe112-fa19-4f52-8908-3fc0dd436c53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48610", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo3224idol25", "content": "CVE-2026-48610 - UniFi OS Improper Access Control Vulnerability\nCVE ID : CVE-2026-48610\n \n Published : June 12, 2026, 4:17 a.m. | 49\u00a0minutes ago\n \n Description : Under certain network configurations, a malicious actor with access to network could exploit an Improper Access Con...", "creation_timestamp": "2026-06-12T05:46:40.140339Z"}, {"uuid": "35ca5189-c5fd-459b-9810-306d1bc3f230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48611", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo2zi7lj7g2b", "content": "CVE-2026-48611 - Google OAuth Account Hijacking Vulnerability\nCVE ID : CVE-2026-48611\n \n Published : June 12, 2026, 4:17 a.m. | 49\u00a0minutes ago\n \n Description : Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured ...", "creation_timestamp": "2026-06-12T05:36:39.457402Z"}, {"uuid": "e36a768c-2b93-450a-8aeb-99387d0bf6b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48613", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo3a7dmx5p2r", "content": "CVE-2026-48613 - phpBB SQL Injection via Profile Field Migration\nCVE ID : CVE-2026-48613\n \n Published : June 12, 2026, 4:17 a.m. | 3\u00a0hours, 3\u00a0minutes ago\n \n Description : SQL injection vulnerability in phpBB profile field migration due to improper handling of user-supplied pro...", "creation_timestamp": "2026-06-12T07:36:57.890732Z"}, {"uuid": "75abc62b-2fa3-4203-a23a-911486f8ec79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48610", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mo3ozhj7pn25", "content": "CVE-2026-48610 - Improper Access Control in UniFi OS. Network-based exploitation allows unauthorized device changes. CVSS 8.1. No patch available. Apply strict access controls now. #CVE #Ubiquiti #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-48610/", "creation_timestamp": "2026-06-12T12:02:06.623450Z"}, {"uuid": "a24937df-49b4-455c-b954-fe23f30c80d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48610", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo3bkccbxg2a", "content": "\ud83d\udfe0 CVE-2026-48610 - High (8.1)\n\nUnder certain network configurations, a malicious actor with access to network could exploit an I...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-48610/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-12T08:01:00.507832Z"}]}