https://vulnerability.circl.lu/sightings/feed 2026-06-18T05:14:00.755693+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/a0277fa1-a815-4c0e-9c9b-77eba07b0460/export 2026-06-18T05:14:01.131807+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a0277fa1-a815-4c0e-9c9b-77eba07b0460", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4876", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhy6jmeylm2s", "content": "", "creation_timestamp": "2026-03-26T17:57:46.141954Z"} 2026-03-26T17:57:46.141954+00:00 https://vulnerability.circl.lu/sighting/54c3836c-fa52-4266-a2cb-630e83694877/export 2026-06-18T05:14:01.131734+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "54c3836c-fa52-4266-a2cb-630e83694877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48760", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmtaxn3hnf2h", "content": "\ud83d\udd10 CVE-2026-48760: HtmlSanitizer URL Parser Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-48760-htmlsanitizer-url-parser-underinclusive-percent-encoded-bidi-marks-and-unicode-whitespace-bypass", "creation_timestamp": "2026-05-27T10:04:06.445901Z"} 2026-05-27T10:04:06.445901+00:00 https://vulnerability.circl.lu/sighting/620a7ab4-1406-4155-b03e-4acfc04f03d3/export 2026-06-18T05:14:01.131663+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "620a7ab4-1406-4155-b03e-4acfc04f03d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48761", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmtaxsaqpf2h", "content": "\ud83d\udd10 CVE-2026-48761: HtmlSanitizer Misses URL Attributes on object, applet, iframe, img and meta refresh\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-48761-htmlsanitizer-misses-url-attributes-on-object-applet-iframe-img-and-meta-refresh", "creation_timestamp": "2026-05-27T10:04:08.651245Z"} 2026-05-27T10:04:08.651245+00:00 https://vulnerability.circl.lu/sighting/55aef5d9-4734-4099-bb4f-53ecdbefaba5/export 2026-06-18T05:14:01.131591+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "55aef5d9-4734-4099-bb4f-53ecdbefaba5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48760", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h", "content": "\ud83d\udd17 CVE : CVE-2026-48489, CVE-2026-48736, CVE-2026-48747, CVE-2026-48760, CVE-2026-48761, CVE-2026-48784", "creation_timestamp": "2026-05-27T14:35:08.533971Z"} 2026-05-27T14:35:08.533971+00:00 https://vulnerability.circl.lu/sighting/8e01f960-d638-4e1b-b290-c8d3a48f7005/export 2026-06-18T05:14:01.131516+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "8e01f960-d638-4e1b-b290-c8d3a48f7005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48761", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h", "content": "\ud83d\udd17 CVE : CVE-2026-48489, CVE-2026-48736, CVE-2026-48747, CVE-2026-48760, CVE-2026-48761, CVE-2026-48784", "creation_timestamp": "2026-05-27T14:35:08.692575Z"} 2026-05-27T14:35:08.692575+00:00 https://vulnerability.circl.lu/sighting/843b6ed7-1e89-4a55-8fa3-19db8c317090/export 2026-06-18T05:14:01.131440+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "843b6ed7-1e89-4a55-8fa3-19db8c317090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48768", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mojjj35nrc2t", "content": "CRITICAL alert: Path traversal in typebot.io \u22643.16.1 lets attackers upload files to public paths, risking stored XSS. Update to 3.17.0 now! https://radar.offseq.com/threat/cve-2026-48768-cwe-22-improper-limitation-of-a-pat-bab741214d20a19d #OffSeq #CVE202648768 #Security", "creation_timestamp": "2026-06-18T00:00:44.995882Z"} 2026-06-18T00:00:44.995882+00:00 https://vulnerability.circl.lu/sighting/ee002f14-9a62-4965-a3e3-918b43fe2c89/export 2026-06-18T05:14:01.131340+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ee002f14-9a62-4965-a3e3-918b43fe2c89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48768", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojpsuhhbw2z", "content": "CVE-2026-48768 - TypeBot: Unauthenticated arbitrary s3 object write in generate-upload-url via unsanitized fileName\nCVE ID : CVE-2026-48768\n \n Published : June 17, 2026, 11:13 p.m. | 2\u00a0hours, 28\u00a0minutes ago\n \n Description : TypeBot is a chatbot builder tool. In versions 3.16.1...", "creation_timestamp": "2026-06-18T01:53:35.629006Z"} 2026-06-18T01:53:35.629006+00:00 https://vulnerability.circl.lu/sighting/09cd4b87-7bb3-4d71-bc38-9dc53a7675c4/export 2026-06-18T05:14:01.129065+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "09cd4b87-7bb3-4d71-bc38-9dc53a7675c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48764", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojq3sxmct2k", "content": "CVE-2026-48764 - TypeBot has SSRF in HTTP request and script fetch flows via DNS rebinding bypass\nCVE ID : CVE-2026-48764\n \n Published : June 17, 2026, 11:29 p.m. | 2\u00a0hours, 12\u00a0minutes ago\n \n Description : TypeBot is a chatbot builder tool. In versions prior to 3.17.2, SSRF va...", "creation_timestamp": "2026-06-18T01:58:35.796568Z"} 2026-06-18T01:58:35.796568+00:00