https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 18 Jun 2026 02:14:18 +0000 https://vulnerability.circl.lu/sighting/a0277fa1-a815-4c0e-9c9b-77eba07b0460/export {"uuid": "a0277fa1-a815-4c0e-9c9b-77eba07b0460", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4876", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhy6jmeylm2s", "content": "", "creation_timestamp": "2026-03-26T17:57:46.141954Z"} {"uuid": "a0277fa1-a815-4c0e-9c9b-77eba07b0460", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4876", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhy6jmeylm2s", "content": "", "creation_timestamp": "2026-03-26T17:57:46.141954Z"} https://vulnerability.circl.lu/sighting/a0277fa1-a815-4c0e-9c9b-77eba07b0460/export Thu, 26 Mar 2026 17:57:46 +0000 https://vulnerability.circl.lu/sighting/54c3836c-fa52-4266-a2cb-630e83694877/export {"uuid": "54c3836c-fa52-4266-a2cb-630e83694877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48760", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmtaxn3hnf2h", "content": "\ud83d\udd10 CVE-2026-48760: HtmlSanitizer URL Parser Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-48760-htmlsanitizer-url-parser-underinclusive-percent-encoded-bidi-marks-and-unicode-whitespace-bypass", "creation_timestamp": "2026-05-27T10:04:06.445901Z"} {"uuid": "54c3836c-fa52-4266-a2cb-630e83694877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48760", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmtaxn3hnf2h", "content": "\ud83d\udd10 CVE-2026-48760: HtmlSanitizer URL Parser Underinclusive: Percent-Encoded BiDi Marks and Unicode Whitespace Bypass\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-48760-htmlsanitizer-url-parser-underinclusive-percent-encoded-bidi-marks-and-unicode-whitespace-bypass", "creation_timestamp": "2026-05-27T10:04:06.445901Z"} https://vulnerability.circl.lu/sighting/54c3836c-fa52-4266-a2cb-630e83694877/export Wed, 27 May 2026 10:04:06 +0000 https://vulnerability.circl.lu/sighting/620a7ab4-1406-4155-b03e-4acfc04f03d3/export {"uuid": "620a7ab4-1406-4155-b03e-4acfc04f03d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48761", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmtaxsaqpf2h", "content": "\ud83d\udd10 CVE-2026-48761: HtmlSanitizer Misses URL Attributes on object, applet, iframe, img and meta refresh\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-48761-htmlsanitizer-misses-url-attributes-on-object-applet-iframe-img-and-meta-refresh", "creation_timestamp": "2026-05-27T10:04:08.651245Z"} {"uuid": "620a7ab4-1406-4155-b03e-4acfc04f03d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48761", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmtaxsaqpf2h", "content": "\ud83d\udd10 CVE-2026-48761: HtmlSanitizer Misses URL Attributes on object, applet, iframe, img and meta refresh\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-48761-htmlsanitizer-misses-url-attributes-on-object-applet-iframe-img-and-meta-refresh", "creation_timestamp": "2026-05-27T10:04:08.651245Z"} https://vulnerability.circl.lu/sighting/620a7ab4-1406-4155-b03e-4acfc04f03d3/export Wed, 27 May 2026 10:04:08 +0000 https://vulnerability.circl.lu/sighting/55aef5d9-4734-4099-bb4f-53ecdbefaba5/export {"uuid": "55aef5d9-4734-4099-bb4f-53ecdbefaba5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48760", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h", "content": "\ud83d\udd17 CVE : CVE-2026-48489, CVE-2026-48736, CVE-2026-48747, CVE-2026-48760, CVE-2026-48761, CVE-2026-48784", "creation_timestamp": "2026-05-27T14:35:08.533971Z"} {"uuid": "55aef5d9-4734-4099-bb4f-53ecdbefaba5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48760", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h", "content": "\ud83d\udd17 CVE : CVE-2026-48489, CVE-2026-48736, CVE-2026-48747, CVE-2026-48760, CVE-2026-48761, CVE-2026-48784", "creation_timestamp": "2026-05-27T14:35:08.533971Z"} https://vulnerability.circl.lu/sighting/55aef5d9-4734-4099-bb4f-53ecdbefaba5/export Wed, 27 May 2026 14:35:08 +0000 https://vulnerability.circl.lu/sighting/8e01f960-d638-4e1b-b290-c8d3a48f7005/export {"uuid": "8e01f960-d638-4e1b-b290-c8d3a48f7005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48761", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h", "content": "\ud83d\udd17 CVE : CVE-2026-48489, CVE-2026-48736, CVE-2026-48747, CVE-2026-48760, CVE-2026-48761, CVE-2026-48784", "creation_timestamp": "2026-05-27T14:35:08.692575Z"} {"uuid": "8e01f960-d638-4e1b-b290-c8d3a48f7005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48761", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmtq4e3x7q2h", "content": "\ud83d\udd17 CVE : CVE-2026-48489, CVE-2026-48736, CVE-2026-48747, CVE-2026-48760, CVE-2026-48761, CVE-2026-48784", "creation_timestamp": "2026-05-27T14:35:08.692575Z"} https://vulnerability.circl.lu/sighting/8e01f960-d638-4e1b-b290-c8d3a48f7005/export Wed, 27 May 2026 14:35:08 +0000 https://vulnerability.circl.lu/sighting/843b6ed7-1e89-4a55-8fa3-19db8c317090/export {"uuid": "843b6ed7-1e89-4a55-8fa3-19db8c317090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48768", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mojjj35nrc2t", "content": "CRITICAL alert: Path traversal in typebot.io \u22643.16.1 lets attackers upload files to public paths, risking stored XSS. Update to 3.17.0 now! https://radar.offseq.com/threat/cve-2026-48768-cwe-22-improper-limitation-of-a-pat-bab741214d20a19d #OffSeq #CVE202648768 #Security", "creation_timestamp": "2026-06-18T00:00:44.995882Z"} {"uuid": "843b6ed7-1e89-4a55-8fa3-19db8c317090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48768", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mojjj35nrc2t", "content": "CRITICAL alert: Path traversal in typebot.io \u22643.16.1 lets attackers upload files to public paths, risking stored XSS. Update to 3.17.0 now! https://radar.offseq.com/threat/cve-2026-48768-cwe-22-improper-limitation-of-a-pat-bab741214d20a19d #OffSeq #CVE202648768 #Security", "creation_timestamp": "2026-06-18T00:00:44.995882Z"} https://vulnerability.circl.lu/sighting/843b6ed7-1e89-4a55-8fa3-19db8c317090/export Thu, 18 Jun 2026 00:00:44 +0000 https://vulnerability.circl.lu/sighting/ee002f14-9a62-4965-a3e3-918b43fe2c89/export {"uuid": "ee002f14-9a62-4965-a3e3-918b43fe2c89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48768", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojpsuhhbw2z", "content": "CVE-2026-48768 - TypeBot: Unauthenticated arbitrary s3 object write in generate-upload-url via unsanitized fileName\nCVE ID : CVE-2026-48768\n \n Published : June 17, 2026, 11:13 p.m. | 2\u00a0hours, 28\u00a0minutes ago\n \n Description : TypeBot is a chatbot builder tool. In versions 3.16.1...", "creation_timestamp": "2026-06-18T01:53:35.629006Z"} {"uuid": "ee002f14-9a62-4965-a3e3-918b43fe2c89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48768", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojpsuhhbw2z", "content": "CVE-2026-48768 - TypeBot: Unauthenticated arbitrary s3 object write in generate-upload-url via unsanitized fileName\nCVE ID : CVE-2026-48768\n \n Published : June 17, 2026, 11:13 p.m. | 2\u00a0hours, 28\u00a0minutes ago\n \n Description : TypeBot is a chatbot builder tool. In versions 3.16.1...", "creation_timestamp": "2026-06-18T01:53:35.629006Z"} https://vulnerability.circl.lu/sighting/ee002f14-9a62-4965-a3e3-918b43fe2c89/export Thu, 18 Jun 2026 01:53:35 +0000 https://vulnerability.circl.lu/sighting/09cd4b87-7bb3-4d71-bc38-9dc53a7675c4/export {"uuid": "09cd4b87-7bb3-4d71-bc38-9dc53a7675c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48764", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojq3sxmct2k", "content": "CVE-2026-48764 - TypeBot has SSRF in HTTP request and script fetch flows via DNS rebinding bypass\nCVE ID : CVE-2026-48764\n \n Published : June 17, 2026, 11:29 p.m. | 2\u00a0hours, 12\u00a0minutes ago\n \n Description : TypeBot is a chatbot builder tool. In versions prior to 3.17.2, SSRF va...", "creation_timestamp": "2026-06-18T01:58:35.796568Z"} {"uuid": "09cd4b87-7bb3-4d71-bc38-9dc53a7675c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48764", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mojq3sxmct2k", "content": "CVE-2026-48764 - TypeBot has SSRF in HTTP request and script fetch flows via DNS rebinding bypass\nCVE ID : CVE-2026-48764\n \n Published : June 17, 2026, 11:29 p.m. | 2\u00a0hours, 12\u00a0minutes ago\n \n Description : TypeBot is a chatbot builder tool. In versions prior to 3.17.2, SSRF va...", "creation_timestamp": "2026-06-18T01:58:35.796568Z"} https://vulnerability.circl.lu/sighting/09cd4b87-7bb3-4d71-bc38-9dc53a7675c4/export Thu, 18 Jun 2026 01:58:35 +0000