{"vulnerability": "cve-2026-6909", "sightings": [{"uuid": "ecb19a70-7bbc-41ec-8582-e5dede47c640", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-6909", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mll4ndh2hm2q", "content": "CVE-2026-6909 - Reflected XSS in ATutor\nCVE ID : CVE-2026-6909\n \n Published : May 11, 2026, 10:16 a.m. | 14\u00a0minutes ago\n \n Description : ATutor is vulnerable to Reflected XSS in\u00a0/install/upgrade.php endpoint. An attacker can provide a specially crafted URL that, when opened, r...", "creation_timestamp": "2026-05-11T11:00:13.166462Z"}, {"uuid": "ee06651f-cd4c-4e4a-8764-2561e84e98f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-6909", "type": "seen", "source": "https://cert.pl/en/posts/2026/05/CVE-2026-6909", "content": "", "creation_timestamp": "2026-05-11T03:55:00.000000Z"}]}