{"vulnerability": "cve-2026-3180", "sightings": [{"uuid": "838bdcd1-e55c-404b-aafa-ac9b95759f7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-3180", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mg3wtg3ges2k", "content": "", "creation_timestamp": "2026-03-02T19:00:21.152239Z"}, {"uuid": "74802819-0fe2-4ebf-8eaa-0b45f42256a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-31802", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "eb90adb7-9e8f-419f-a275-7e2c1c2f47d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-31807", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mik45hdgyd2q", "content": "", "creation_timestamp": "2026-04-02T21:03:08.046826Z"}, {"uuid": "df50fd03-8f6c-4c1f-b78a-7c6c4ad1599c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-31802", "type": "published-proof-of-concept", "source": "Telegram/KKi08pVtUDaCAJkb9047w9y4w-ZBtgxVmflDXmeWCTkhF9g", "content": "", "creation_timestamp": "2026-03-29T03:00:06.000000Z"}, {"uuid": "5681bcef-0045-4126-a1be-98789c0eca4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-31802", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3hklk2m2e", "content": "", "creation_timestamp": "2026-05-20T14:10:21.619260Z"}, {"uuid": "9690571e-9d2b-476b-adfa-1b4637b83846", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-3180", "type": "seen", "source": "Telegram/w0GkJHs0a-iOGxRnRQVAJ6txbFx-4W5StLXj-Qhn1zDpC10", "content": "", "creation_timestamp": "2026-06-05T03:00:06.000000Z"}, {"uuid": "0361b003-a3f3-4b3a-bf98-6ae2aad71052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-31807", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-31807.yaml", "content": "", "creation_timestamp": "2026-04-02T00:53:37.000000Z"}, {"uuid": "b0a93bb8-a11e-4ced-80d6-b0d3892fd788", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-31801", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mheumzpb7t2u", "content": "", "creation_timestamp": "2026-03-19T01:40:08.865211Z"}, {"uuid": "8a645372-d463-40a7-9955-d55c05062e22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2026-31804", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mickcgysod22", "content": "", "creation_timestamp": "2026-03-30T20:55:07.896846Z"}, {"uuid": "604e77d6-1cd5-49cf-bfa1-b3be9a872dc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2026-31802", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/77711", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-31802\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a Recorded-texteditor120\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a JavaScript\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-03-28 23:36:08\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nDemonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-03-29T00:00:04.000000Z"}]}