https://vulnerability.circl.lu/sightings/feed 2026-06-25T11:19:20.494837+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/1c336086-100c-4aab-8dfe-ff02e950c052/export 2026-06-25T11:19:20.518299+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "1c336086-100c-4aab-8dfe-ff02e950c052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-46477", "type": "published-proof-of-concept", "source": "https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-5h9v-837x-m97r", "content": "", "creation_timestamp": "2026-05-14T14:18:06.000000Z"} 2026-05-14T14:18:06+00:00 https://vulnerability.circl.lu/sighting/e9d693e8-351d-409c-b728-d1d5538b411c/export 2026-06-25T11:19:20.517326+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "e9d693e8-351d-409c-b728-d1d5538b411c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-46479", "type": "published-proof-of-concept", "source": "https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-mq53-pc65-wjc4", "content": "", "creation_timestamp": "2026-05-14T14:18:18.000000Z"} 2026-05-14T14:18:18+00:00 https://vulnerability.circl.lu/sighting/4276232b-65af-4e06-83df-7aee63e6748f/export 2026-06-25T11:19:20.517264+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "4276232b-65af-4e06-83df-7aee63e6748f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46473", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmf75oycuh2u", "content": "CVE-2026-46473: Authen::TOTP versions before 0.1.1 for Perl generate secrets using rand", "creation_timestamp": "2026-05-21T19:56:35.044256Z"} 2026-05-21T19:56:35.044256+00:00 https://vulnerability.circl.lu/sighting/7395a1ae-d0ed-4eff-9468-0ae15e96438d/export 2026-06-25T11:19:20.517199+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "7395a1ae-d0ed-4eff-9468-0ae15e96438d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46473", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmfcut5yt22c", "content": "\ud83d\udfe0 CVE-2026-46473 - High (7.5)\n\nAuthen::TOTP versions before 0.1.1 for Perl generate secrets using rand.\n\nSecrets were generated ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-46473/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-21T21:01:00.961731Z"} 2026-05-21T21:01:00.961731+00:00 https://vulnerability.circl.lu/sighting/122a8f46-292a-4903-8924-9b9bb2421d59/export 2026-06-25T11:19:20.517134+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "122a8f46-292a-4903-8924-9b9bb2421d59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46473", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmfmw35dbs2g", "content": "Authen::TOTP (<0.1.1) suffers HIGH severity vuln: weak random secret generation can undermine TOTP security. Upgrade to v0.1.1+ ASAP when available. More: https://radar.offseq.com/threat/cve-2026-46473-cwe-331-insufficient-entropy-in-tch-3d3628d8 #OffSeq #Vuln #MFA", "creation_timestamp": "2026-05-22T00:00:39.983080Z"} 2026-05-22T00:00:39.983080+00:00 https://vulnerability.circl.lu/sighting/75953ab4-c768-4c05-9fba-3098a7425b91/export 2026-06-25T11:19:20.517067+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "75953ab4-c768-4c05-9fba-3098a7425b91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46475", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mns5nlzx5j2o", "content": "CVE-2026-46475 - Flowise: Assistant create+update mass-assignment allows cross-workspace assistant takeover\nCVE ID : CVE-2026-46475\n \n Published : June 8, 2026, 4:16 p.m. | 17\u00a0minutes ago\n \n Description : Flowise is a drag & drop user interface to build a customized large ...", "creation_timestamp": "2026-06-08T16:57:17.582247Z"} 2026-06-08T16:57:17.582247+00:00 https://vulnerability.circl.lu/sighting/a17287fa-d208-4715-b6a0-f77edca62c0d/export 2026-06-25T11:19:20.516998+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a17287fa-d208-4715-b6a0-f77edca62c0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46478", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mns5rqk6nl2o", "content": "CVE-2026-46478 - Flowise: DatasetRow create+update mass-assignment allows cross-workspace row takeover\nCVE ID : CVE-2026-46478\n \n Published : June 8, 2026, 4:16 p.m. | 17\u00a0minutes ago\n \n Description : Flowise is a drag & drop user interface to build a customized large langu...", "creation_timestamp": "2026-06-08T16:59:41.519154Z"} 2026-06-08T16:59:41.519154+00:00 https://vulnerability.circl.lu/sighting/33a83d41-8246-46c7-ac08-f9114cdd6b55/export 2026-06-25T11:19:20.516927+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "33a83d41-8246-46c7-ac08-f9114cdd6b55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46476", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mns6gihbi32r", "content": "CVE-2026-46476 - Flowise: CustomTemplate create+update mass-assignment allows cross-workspace template takeover\nCVE ID : CVE-2026-46476\n \n Published : June 8, 2026, 4:16 p.m. | 17\u00a0minutes ago\n \n Description : Flowise is a drag & drop user interface to build a customized la...", "creation_timestamp": "2026-06-08T17:11:12.683489Z"} 2026-06-08T17:11:12.683489+00:00 https://vulnerability.circl.lu/sighting/a45e3338-e904-4719-86a1-0cc42bf52388/export 2026-06-25T11:19:20.516839+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a45e3338-e904-4719-86a1-0cc42bf52388", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46479", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mns6n7iq7p2r", "content": "CVE-2026-46479 - Flowise: Evaluation create+update mass-assignment allows cross-workspace evaluation takeover\nCVE ID : CVE-2026-46479\n \n Published : June 8, 2026, 4:16 p.m. | 17\u00a0minutes ago\n \n Description : Flowise is a drag & drop user interface to build a customized larg...", "creation_timestamp": "2026-06-08T17:14:58.113170Z"} 2026-06-08T17:14:58.113170+00:00 https://vulnerability.circl.lu/sighting/fe3ed7a7-3d3f-4a57-bf09-3c6d2f355aeb/export 2026-06-25T11:19:20.514936+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fe3ed7a7-3d3f-4a57-bf09-3c6d2f355aeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46477", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mns75tvowx2z", "content": "CVE-2026-46477 - Flowise: Dataset create+update mass-assignment allows cross-workspace dataset takeover\nCVE ID : CVE-2026-46477\n \n Published : June 8, 2026, 4:16 p.m. | 17\u00a0minutes ago\n \n Description : Flowise is a drag & drop user interface to build a customized large lang...", "creation_timestamp": "2026-06-08T17:24:21.027937Z"} 2026-06-08T17:24:21.027937+00:00