<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-01T09:19:00.424560+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a809ce38-07c9-40db-993b-68410dcc8c34/export</id>
    <title>a809ce38-07c9-40db-993b-68410dcc8c34</title>
    <updated>2026-07-01T09:19:00.445853+00:00</updated>
    <author>
      <name>Cédric Bonhomme</name>
      <uri>https://cve.circl.lu/user/cedric</uri>
    </author>
    <content>{"uuid": "a809ce38-07c9-40db-993b-68410dcc8c34", "vulnerability_lookup_origin": "c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2026-24423", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9d46fb90-1d7c-4cb5-8731-ff8853bd4fb0", "content": "", "creation_timestamp": "2026-06-30T09:23:46.408392Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a809ce38-07c9-40db-993b-68410dcc8c34/export"/>
    <published>2026-06-30T09:23:46.408392+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c2b99967-ed8d-467b-918e-714f7138aeb0/export</id>
    <title>c2b99967-ed8d-467b-918e-714f7138aeb0</title>
    <updated>2026-07-01T09:19:00.448405+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c2b99967-ed8d-467b-918e-714f7138aeb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24421", "type": "seen", "source": "https://gist.github.com/alon710/b22b0dd984dd927be769bc999880e7f3", "content": "# CVE-2026-49205: CVE-2026-49205: Missing Authorization in phpMyFAQ Public REST API Write Endpoints\n\n&amp;gt; **CVSS Score:** 6.5\n&amp;gt; **Published:** 2026-06-23\n&amp;gt; **Full Report:** https://cvereports.com/reports/CVE-2026-49205\n\n## Summary\nAn incomplete security patch for CVE-2026-24421 in phpMyFAQ allows authenticated low-privileged users to bypass role-based access controls. While the initial patch addressed missing authorization in the BackupController, it left four critical write-enabled endpoints vulnerable. This allows remote attackers with a valid low-privilege API token to perform unauthorized data modifications, creating categories, creating FAQs, updating FAQs, and injecting questions directly into the database.\n\n## TL;DR\nAn incomplete fix for CVE-2026-24421 in phpMyFAQ leaves four REST API endpoints vulnerable to missing authorization, enabling low-privileged authenticated users to modify categories, FAQs, and system questions without the required role permissions.\n\n## Technical Details\n\n- **CWE ID**: CWE-862: Missing Authorization\n- **Attack Vector**: Network\n- **CVSS v3.1 Score**: 6.5 (Medium)\n- **Exploit Maturity**: None / Unproven\n- **EPSS Score**: 0.0024\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- phpMyFAQ open-source FAQ web application\n- **phpMyFAQ**: &amp;lt; 4.1.4 (Fixed in: `4.1.4`)\n\n## Mitigation\n\n- Upgrade phpMyFAQ to version 4.1.4 or higher.\n- Implement a manual code-level patch to enforce role validation on all public REST API write endpoints.\n- Deploy WAF rules to restrict POST and PUT requests to public API controllers based on user roles.\n\n**Remediation Steps:**\n1. Download phpMyFAQ version 4.1.4 from the official repository.\n2. Apply database and application updates following the standard phpMyFAQ upgrade documentation.\n3. Validate API security policies by attempting a write request using a low-privileged API token.\n\n## References\n\n- [GitHub Security Advisory GHSA-8c6h-7g6x-m5x4](https://github.com/thorsten/phpMyFAQ/security/advisories/GHSA-8c6h-7g6x-m5x4)\n- [CVE-2026-49205 Record](https://www.cve.org/CVERecord?id=CVE-2026-49205)\n- [CWE-862 Reference](https://cwe.mitre.org/data/definitions/862.html)\n- [MITRE ATT&amp;amp;CK T1068 Reference](https://attack.mitre.org/techniques/T1068/)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-49205) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-23T22:42:14.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c2b99967-ed8d-467b-918e-714f7138aeb0/export"/>
    <published>2026-06-23T22:42:14+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/56063b1e-c3ef-4e91-825f-25c907607d45/export</id>
    <title>56063b1e-c3ef-4e91-825f-25c907607d45</title>
    <updated>2026-07-01T09:19:00.449291+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "56063b1e-c3ef-4e91-825f-25c907607d45", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24423", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/493f4fb6-5b30-40be-b61f-7d134221362d", "content": "", "creation_timestamp": "2026-06-23T14:03:44.120809Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/56063b1e-c3ef-4e91-825f-25c907607d45/export"/>
    <published>2026-06-23T14:03:44.120809+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0e597246-fb8f-4cc1-af4a-214d1535af3a/export</id>
    <title>0e597246-fb8f-4cc1-af4a-214d1535af3a</title>
    <updated>2026-07-01T09:19:00.449379+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0e597246-fb8f-4cc1-af4a-214d1535af3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24425", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motmp5sgbv2m", "content": "\ud83d\udea8  ALERT: CVE-2026-24425\n\nCVSS 8.8/10\n\n\ud83d\udccb WHAT IT IS:\nTwig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using a SourcePolicyInterface that allows attackers with template rendering capabilities to pass arbitrary PHP callables to sort, filter, map, and reduce fil", "creation_timestamp": "2026-06-22T00:24:27.136461Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0e597246-fb8f-4cc1-af4a-214d1535af3a/export"/>
    <published>2026-06-22T00:24:27.136461+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/923d3b0b-b831-4e42-944c-0ba8c68843a9/export</id>
    <title>923d3b0b-b831-4e42-944c-0ba8c68843a9</title>
    <updated>2026-07-01T09:19:00.449453+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "923d3b0b-b831-4e42-944c-0ba8c68843a9", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24423", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9ac1ab73-c6d2-4411-ae2f-0fb425710ffe", "content": "", "creation_timestamp": "2026-06-19T12:45:18.001416Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/923d3b0b-b831-4e42-944c-0ba8c68843a9/export"/>
    <published>2026-06-19T12:45:18.001416+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/66d0490e-c218-4bd5-9d70-13a94e24b21b/export</id>
    <title>66d0490e-c218-4bd5-9d70-13a94e24b21b</title>
    <updated>2026-07-01T09:19:00.449540+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "66d0490e-c218-4bd5-9d70-13a94e24b21b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24421", "type": "seen", "source": "https://bsky.app/profile/euvd-bot.bsky.social/post/3molwlpwmh22a", "content": "\ud83d\udea8 EUVD-2026-37954\n\ud83d\udcca 6.5/10\n\ud83c\udfe2 thorsten\n\n\ud83d\udcdd phpMyFAQ is an open source FAQ web application. Versions prior to  4.1.4 have Missing Authorization in the API CategoryController. CVE-2026-24421 address...\n\n\ud83d\udd17 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-37954\n\n#cybersecurity #infosec #cve #euvd", "creation_timestamp": "2026-06-18T23:00:11.464972Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/66d0490e-c218-4bd5-9d70-13a94e24b21b/export"/>
    <published>2026-06-18T23:00:11.464972+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2cd1a42a-4b3a-4f6e-9b01-b6786d70b26e/export</id>
    <title>2cd1a42a-4b3a-4f6e-9b01-b6786d70b26e</title>
    <updated>2026-07-01T09:19:00.449618+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2cd1a42a-4b3a-4f6e-9b01-b6786d70b26e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24425", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnbkrxiwwe2o", "content": "\ud83d\udccc CVE-2026-24425 - Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using a SourcePolicyInterface that allows attackers with tem... https://www.cyberhub.blog/cves/CVE-2026-24425", "creation_timestamp": "2026-06-02T02:37:07.582127Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2cd1a42a-4b3a-4f6e-9b01-b6786d70b26e/export"/>
    <published>2026-06-02T02:37:07.582127+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a1b60a35-d601-40c9-9738-73639107d8f7/export</id>
    <title>a1b60a35-d601-40c9-9738-73639107d8f7</title>
    <updated>2026-07-01T09:19:00.449691+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a1b60a35-d601-40c9-9738-73639107d8f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24425", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmcawp4kev2t", "content": "CVE-2026-24425 - Twig 2.16.x &amp;amp; 3.9.0-3.25.x Sandbox Bypass via SourcePolicyInterface\nCVE ID : CVE-2026-24425\n \n Published : May 20, 2026, 1:45 p.m. | 30\u00a0minutes ago\n \n Description : Twig versions 2.16.x and 3.9.0 through 3.25.x contain a sandbox bypass vulnerability when using...", "creation_timestamp": "2026-05-20T15:48:16.818958Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a1b60a35-d601-40c9-9738-73639107d8f7/export"/>
    <published>2026-05-20T15:48:16.818958+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bac19b66-2767-447f-9296-662f06bde1ad/export</id>
    <title>bac19b66-2767-447f-9296-662f06bde1ad</title>
    <updated>2026-07-01T09:19:00.449761+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bac19b66-2767-447f-9296-662f06bde1ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-24425", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbp6dmkls26", "content": "\ud83d\udd10 CVE-2026-24425: Possible sandbox bypass when using a source policy\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-24425-possible-sandbox-bypass-when-using-a-source-policy", "creation_timestamp": "2026-05-20T10:30:25.630460Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bac19b66-2767-447f-9296-662f06bde1ad/export"/>
    <published>2026-05-20T10:30:25.630460+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ff2b9bf9-af6b-45e1-ad79-ccd87cbee448/export</id>
    <title>ff2b9bf9-af6b-45e1-ad79-ccd87cbee448</title>
    <updated>2026-07-01T09:19:00.449828+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ff2b9bf9-af6b-45e1-ad79-ccd87cbee448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-24421", "type": "seen", "source": "https://bsky.app/profile/exploitdb-bot.bsky.social/post/3mkmvgdbvrs27", "content": "\ud83d\udea8 New Exploit: phpMyFAQ  4.0.16 - Improper Authorization\n\ud83d\udccb CVE: CVE-2026-24421\n\ud83d\udc64 Author: contact\n\n\ud83d\udd17 https://www.exploit-db.com/exploits/52523\n\n#ExploitDB #InfoSec #CyberSecurity #CVE-2026-24421", "creation_timestamp": "2026-04-29T10:31:09.819568Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ff2b9bf9-af6b-45e1-ad79-ccd87cbee448/export"/>
    <published>2026-04-29T10:31:09.819568+00:00</published>
  </entry>
</feed>
