{"vulnerability": "cve-2026-5923", "sightings": [{"uuid": "75ab475e-8f98-4e42-9b30-e87482ea1314", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59234", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpqrpeabqu2l", "content": "CVE-2026-59234 - Authorization Bypass Through User-Controlled Key in Prospero Flow CRM calendar event deletion\nCVE ID : CVE-2026-59234\n \n Published : July 3, 2026, 12:47 p.m. | 59\u00a0minutes ago\n \n Description : Authorization Bypass Through User-Controlled Key (CWE-639) in Calend...", "creation_timestamp": "2026-07-03T14:41:14.914758Z"}, {"uuid": "6d1a5bb3-703d-48e8-9b82-feaa2db99bd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59234", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mps6yxxuv723", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59234: \u041e\u0431\u0445\u043e\u0434 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0447\u0435\u0440\u0435\u0437 \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u043a\u043b\u044e\u0447 \u0432 CalendarDeleteEventCo\n\n\n\nhttps://kripta.biz/posts/22960CFD-316D-4069-945E-5D9517FA62B3", "creation_timestamp": "2026-07-04T04:11:56.071801Z"}, {"uuid": "d04d2e72-62a6-4677-82fe-8c737fdd4dfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59236", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqotv6s2dw2n", "content": "CVE-2026-59236 - Authorization bypass in Prospero Flow CRM Excel import allows cross-tenant record injection\nCVE ID : CVE-2026-59236\n \n Published : July 15, 2026, 11:09 a.m. | 23\u00a0minutes ago\n \n Description : Authorization Bypass Through User-Controlled Key (CWE-639) in the Exc...", "creation_timestamp": "2026-07-15T13:40:10.373174Z"}, {"uuid": "4c1f5752-88eb-4417-9fb9-b13182e843e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59235", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqouh5o35a2a", "content": "CVE-2026-59235 - Missing authorization in Prospero Flow CRM allows low-privileged users to read all bank accounts\nCVE ID : CVE-2026-59235\n \n Published : July 15, 2026, 11:16 a.m. | 16\u00a0minutes ago\n \n Description : Missing Authorization (CWE-862) in BankAccountListController (ap...", "creation_timestamp": "2026-07-15T13:50:13.165888Z"}, {"uuid": "3fef9baa-08d8-4f8f-9b78-233d65449786", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59237", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqrnbumdpi2m", "content": "CVE-2026-59237 - IDOR in Prospero Flow CRM Order API allows cross-tenant read and modification of orders\nCVE ID : CVE-2026-59237\n \n Published : July 16, 2026, 3:16 p.m. | 18\u00a0minutes ago\n \n Description : Authorization Bypass Through User-Controlled Key (CWE-639) in the Order an...", "creation_timestamp": "2026-07-16T16:19:58.939766Z"}]}