https://vulnerability.circl.lu/sightings/feed 2026-06-01T13:44:57.362795+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/23d12cc0-adfa-480d-ac1d-e0e8ff1d1588/export 2026-06-01T13:44:57.859178+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "23d12cc0-adfa-480d-ac1d-e0e8ff1d1588", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9277", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmhhsrhmds2o", "content": "CVE-2026-9277 - shell-quote `quote()` does not validate object-token shapes, allowing command injection via line terminators in `.op`\nCVE ID : CVE-2026-9277\n \n Published : May 22, 2026, 1:22 p.m. | 3\u00a0hours, 37\u00a0minutes ago\n \n Description : shell-quote's `quote()` function did n...", "creation_timestamp": "2026-05-22T17:34:40.998843Z"} 2026-05-22T17:34:40.998843+00:00 https://vulnerability.circl.lu/sighting/5f8fa135-1c7a-4eb7-99b5-9a632d20a721/export 2026-06-01T13:44:57.854926+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5f8fa135-1c7a-4eb7-99b5-9a632d20a721", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9277", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmiohjvizp24", "content": "CVE-2026-9277: shell-quote before 1.8.4 command injection in quote()", "creation_timestamp": "2026-05-23T05:06:18.547696Z"} 2026-05-23T05:06:18.547696+00:00