{"vulnerability": "cve-2026-49781", "sightings": [{"uuid": "24ece1d4-485c-4fc1-9199-1042a5666731", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49781", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe7cnqii524", "content": "CVE-2026-49781 - WordPress OttoKit plugin\nCVE ID : CVE-2026-49781\n \n Published : June 15, 2026, 8:19 p.m. | 49\u00a0minutes ago\n \n Description : Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.\n \n Severity: 9.8 | CRITICAL\n \n Visit the link for more details, su...", "creation_timestamp": "2026-06-15T21:14:53.212576Z"}, {"uuid": "699b0813-52e2-4a30-ab34-7936191aff26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49781", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mocjqov2dg2u", "content": "CVE-2026-49781 suretriggers (CVSS Score 8.1) \n\n#WordPress plugin #vulnerability #cybersecurity #wordpressfirewall #hacking #wpsecurity #atomicedge #cybersecurity #malware #vulnerabilityresearch #cve #redteam #proofofconcept", "creation_timestamp": "2026-06-15T05:16:22.618916Z"}, {"uuid": "75788429-2d39-41c2-8709-b456a907b5f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49781", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moesn4ncrs2i", "content": "\ud83d\udd34 CVE-2026-49781 - Critical (9.8)\n\nUnauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-49781/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-16T03:00:46.619612Z"}, {"uuid": "1d3615b2-7fa3-4f96-9f67-ddce1a39999a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-49781", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mofbphkm5b2x", "content": "\ud83d\udea8 OttoKit <=1.1.27 faces CRITICAL risk: unauthenticated PHP object injection (CVE-2026-49781). No official fix \u2014 restrict access, monitor for compromise, and follow vendor updates. https://radar.offseq.com/threat/cve-2026-49781-cwe-502-deserialization-of-untruste-18974828 #OffSeq #Vulnerability #...", "creation_timestamp": "2026-06-16T07:30:30.290027Z"}]}