https://vulnerability.circl.lu/sightings/feed 2026-06-29T17:36:28.538926+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/31920c73-212e-45e0-8aa4-023c3fd9bf68/export 2026-06-29T17:36:28.557628+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "31920c73-212e-45e0-8aa4-023c3fd9bf68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46622", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moc3io7van2x", "content": "\ud83d\udfe0 CVE-2026-46622 - High (8.1)\n\nSolidInvoice is an open-source invoicing platform. Prior to version 2.3.17, API tokens used to au...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-46622/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-15T01:01:21.272118Z"} 2026-06-15T01:01:21.272118+00:00 https://vulnerability.circl.lu/sighting/ae625fb0-1f1d-45a3-ad4e-ced3f120bb6d/export 2026-06-29T17:36:28.560226+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ae625fb0-1f1d-45a3-ad4e-ced3f120bb6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46622", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo26xyzixc2d", "content": "CVE-2026-46622 - SolidInvoice: API tokens stored as plaintext in the database allowing full credential compromise on database breach\nCVE ID : CVE-2026-46622\n \n Published : June 11, 2026, 8:16 p.m. | 1\u00a0hour, 3\u00a0minutes ago\n \n Description : SolidInvoice is an open-source invoicin...", "creation_timestamp": "2026-06-11T21:42:18.277180Z"} 2026-06-11T21:42:18.277180+00:00 https://vulnerability.circl.lu/sighting/45a9a976-95a4-4ff2-9ba2-b7d412666871/export 2026-06-29T17:36:28.560320+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "45a9a976-95a4-4ff2-9ba2-b7d412666871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46625", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mnxtfp7clr23", "content": "CVE-2026-46625 - Prototype Pollution in js-cookie < 3.0.7. CVSS 7.5. Unpatched. Hijacks Object.prototype via __proto__ assignment. Update immediately. #CVE #JavaScript #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-46625/", "creation_timestamp": "2026-06-10T23:09:53.292225Z"} 2026-06-10T23:09:53.292225+00:00 https://vulnerability.circl.lu/sighting/ef32c352-1ca9-4b93-9fdc-478e955ba6c5/export 2026-06-29T17:36:28.560402+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ef32c352-1ca9-4b93-9fdc-478e955ba6c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46624", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmtwwhceoy2u", "content": "\ud83d\udccc CVE-2026-46624 - Twenty is an open source CRM. From 1.7.7 through 1.16.7, a critical Remote Code Execution (RCE) vulnerability exists in Twenty CRM via a chained SQL I... https://www.cyberhub.blog/cves/CVE-2026-46624", "creation_timestamp": "2026-05-27T16:37:41.423142Z"} 2026-05-27T16:37:41.423142+00:00 https://vulnerability.circl.lu/sighting/b45c9928-8252-47af-82f8-f3756ade7810/export 2026-06-29T17:36:28.560470+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "b45c9928-8252-47af-82f8-f3756ade7810", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-46621", "type": "published-proof-of-concept", "source": "https://github.com/yamcs/yamcs/security/advisories/GHSA-2g95-6x5q-xjwj", "content": "", "creation_timestamp": "2026-05-21T15:02:27.000000Z"} 2026-05-21T15:02:27+00:00 https://vulnerability.circl.lu/sighting/b399e528-6ee0-424a-b777-bb047a4643df/export 2026-06-29T17:36:28.563849+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "b399e528-6ee0-424a-b777-bb047a4643df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46626", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:13.876320Z"} 2026-05-20T14:15:13.876320+00:00 https://vulnerability.circl.lu/sighting/5209fcfc-d9bb-47c1-b62e-58291f15df6f/export 2026-06-29T17:36:28.564133+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5209fcfc-d9bb-47c1-b62e-58291f15df6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46626", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqwtodhw2b", "content": "\ud83d\udd10 CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass via parse_str/SAPI Argv Mismatch\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-46626-symfonyruntime-cve-2024-50340-patch-bypass-via-parse-str-sapi-argv-mismatch", "creation_timestamp": "2026-05-20T11:02:01.159613Z"} 2026-05-20T11:02:01.159613+00:00 https://vulnerability.circl.lu/sighting/961f8605-4db2-49b4-805a-6a98e74d612c/export 2026-06-29T17:36:28.564255+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "961f8605-4db2-49b4-805a-6a98e74d612c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46627", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbpa5zf3m2v", "content": "\ud83d\udd10 CVE-2026-46627: Sandbox does not protect against resource exhaustion\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-46627-sandbox-does-not-protect-against-resource-exhaustion", "creation_timestamp": "2026-05-20T10:31:26.743891Z"} 2026-05-20T10:31:26.743891+00:00 https://vulnerability.circl.lu/sighting/06b266d9-1ec0-4363-92a4-8fc5332b3536/export 2026-06-29T17:36:28.564370+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "06b266d9-1ec0-4363-92a4-8fc5332b3536", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46628", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbp7zdlyz2b", "content": "\ud83d\udd10 CVE-2026-46628: The `spaceless` filter implicitly marks its output as safe\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-46628-the-spaceless-filter-implicitly-marks-its-output-as-safe", "creation_timestamp": "2026-05-20T10:31:21.628196Z"} 2026-05-20T10:31:21.628196+00:00 https://vulnerability.circl.lu/sighting/5cb40029-6a1d-428b-abea-6091015349b7/export 2026-06-29T17:36:28.564480+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5cb40029-6a1d-428b-abea-6091015349b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-46629", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbp7unvxr2b", "content": "\ud83d\udd10 CVE-2026-46629: Unbounded formatter memoisation in twig/intl-extra keyed on template-controlled arguments\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-46629-unbounded-formatter-memoisation-in-twig-intl-extra-keyed-on-template-controlled-arguments", "creation_timestamp": "2026-05-20T10:31:16.748347Z"} 2026-05-20T10:31:16.748347+00:00