{"vulnerability": "CVE-2026-23744", "sightings": [{"uuid": "98a33c20-d985-4cc8-bb74-6e09b496dc5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mckxoqvf4c2z", "content": "", "creation_timestamp": "2026-01-16T20:44:47.944411Z"}, {"uuid": "7671f05f-633f-4592-baf0-8b64935249be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mclbafogn52r", "content": "", "creation_timestamp": "2026-01-16T23:35:43.746459Z"}, {"uuid": "f154430f-8021-46da-8e67-e12d76b62a7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://gist.github.com/alon710/0b21758440be51f5aa5777ceee2d957c", "content": "", "creation_timestamp": "2026-01-24T21:24:05.000000Z"}, {"uuid": "35af05a5-b8cb-4c29-bbbd-e3508f87b1d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-01)", "content": "", "creation_timestamp": "2026-04-01T00:00:00.000000Z"}, {"uuid": "3089ac56-d04e-49f4-bebf-18a66f00784b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-04-03)", "content": "", "creation_timestamp": "2026-04-03T00:00:00.000000Z"}, {"uuid": "bbf017eb-09fd-4f77-9acb-60ed2471fa3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-04-03)", "content": "", "creation_timestamp": "2026-04-03T00:00:00.000000Z"}, {"uuid": "5e80fee2-fb64-4059-8690-b4553291ece0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mfn2uadnmz2j", "content": "", "creation_timestamp": "2026-02-24T21:02:30.304983Z"}, {"uuid": "023ae372-0e60-4de3-b621-a6169a58080c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/76866", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-23744\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a FrenzisRed\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-03-23 18:45:20\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-23744 - MCPJam inspector Remote-Code-Execution: Proof Of Concept (POC\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-03-23T19:00:04.000000Z"}, {"uuid": "7726a3c5-f8e8-44d3-9c6a-06043ed46a2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115935997438542873", "content": "", "creation_timestamp": "2026-01-22T00:48:52.671464Z"}, {"uuid": "27739e01-65f7-455f-ace3-ee6002066f42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/115936006347966952", "content": "", "creation_timestamp": "2026-01-22T00:51:09.786979Z"}, {"uuid": "111715f1-da1a-4516-b6ca-83551678a8ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://gist.github.com/alon710/823a3bbfcca3d099b34e9d463edcf770", "content": "", "creation_timestamp": "2026-01-24T22:29:01.000000Z"}, {"uuid": "2b964c1f-072e-4872-8950-150ad45b514e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://gist.github.com/alon710/e88d8d0be10139f637b6f94a8ceb8766", "content": "", "creation_timestamp": "2026-01-24T22:28:58.000000Z"}, {"uuid": "eb1841ec-8b51-41b9-a044-104263f71a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3memetavadf2k", "content": "", "creation_timestamp": "2026-02-11T21:03:13.780474Z"}, {"uuid": "44b01352-576d-41f7-9786-9c74fe445c64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "Telegram/NQOCep9JXuunt-IAyUJYpZHdpB1OmZjsgFCnwZQxWJWW2jY", "content": "", "creation_timestamp": "2026-04-10T09:00:05.000000Z"}, {"uuid": "c3388019-1a2e-4de3-b1d3-0c283b2f72e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "Telegram/4Dok0lwX_JBk164h58WI7MYFHPq5Lse38n7xHVnp6ML19Yk", "content": "", "creation_timestamp": "2026-03-27T21:00:04.000000Z"}, {"uuid": "5cadf1ef-c5ec-4287-9596-5ad43663ef13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "Telegram/GTcyuS7tJ_1o48Qpvj3yt6_sMu_d2tWC8nNXcWvEXpiRzjo", "content": "", "creation_timestamp": "2026-03-29T21:00:05.000000Z"}, {"uuid": "d7bf6dd9-3915-4c31-b133-c83fa31c027f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/77536", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-23744-script\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a goosesmitty\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-03-27 15:58:37\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nExploit script for CVE-2026-23744\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-03-27T16:00:04.000000Z"}, {"uuid": "6758a9d5-4996-452c-83e0-09b0e49c25f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/79702", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a exploit-CVE-2026-23744\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a luiskrnr\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a None\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-04-10 05:57:10\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nMCPJam Inspector is a local-first development platform for MCP servers. In versions 1.4.2 (and earlier), a RCE flaw lets attackers send crafted HTTP request that installs an MCP server and runs code remotely, because the service listens on 0.0.0.0 (instead of 127.0.0.1) by default.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-04-10T06:00:04.000000Z"}, {"uuid": "d139a9d7-feb3-4f93-a805-1358a15d9ff6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-23744", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/77842", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-23744\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a CyLock11\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-03-29 16:34:12\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-23744 - MCP Connect RCE via Unauthenticated Command Injection\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-03-29T17:00:04.000000Z"}, {"uuid": "20a9a40d-97c1-46dd-aa2f-52fd5ecee948", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-23744", "type": "seen", "source": "https://t.me/true_secator/8183", "content": "", "creation_timestamp": "2026-05-07T16:20:06.000000Z"}]}