https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 28 Jun 2026 19:19:05 +0000 https://vulnerability.circl.lu/sighting/be0d55ed-c1e8-417c-b35c-636e44109a19/export {"uuid": "be0d55ed-c1e8-417c-b35c-636e44109a19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5429", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mikohmm4px2c", "content": "", "creation_timestamp": "2026-04-03T02:30:55.036861Z"} {"uuid": "be0d55ed-c1e8-417c-b35c-636e44109a19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5429", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mikohmm4px2c", "content": "", "creation_timestamp": "2026-04-03T02:30:55.036861Z"} https://vulnerability.circl.lu/sighting/be0d55ed-c1e8-417c-b35c-636e44109a19/export Fri, 03 Apr 2026 02:30:55 +0000 https://vulnerability.circl.lu/sighting/82604819-43bf-44f6-8be7-2b3b55593a8c/export {"uuid": "82604819-43bf-44f6-8be7-2b3b55593a8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54293", "type": "published-proof-of-concept", "source": "https://github.com/nltk/nltk/security/advisories/GHSA-p4gq-832x-fm9v", "content": "", "creation_timestamp": "2026-06-11T11:07:55.000000Z"} {"uuid": "82604819-43bf-44f6-8be7-2b3b55593a8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54293", "type": "published-proof-of-concept", "source": "https://github.com/nltk/nltk/security/advisories/GHSA-p4gq-832x-fm9v", "content": "", "creation_timestamp": "2026-06-11T11:07:55.000000Z"} https://vulnerability.circl.lu/sighting/82604819-43bf-44f6-8be7-2b3b55593a8c/export Thu, 11 Jun 2026 11:07:55 +0000 https://vulnerability.circl.lu/sighting/3a64e8fd-89c7-4f7d-8aec-8fa9930d0534/export {"uuid": "3a64e8fd-89c7-4f7d-8aec-8fa9930d0534", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54298", "type": "published-proof-of-concept", "source": "https://github.com/withastro/astro/security/advisories/GHSA-jrpj-wcv7-9fh9", "content": "", "creation_timestamp": "2026-06-12T16:48:25.000000Z"} {"uuid": "3a64e8fd-89c7-4f7d-8aec-8fa9930d0534", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54298", "type": "published-proof-of-concept", "source": "https://github.com/withastro/astro/security/advisories/GHSA-jrpj-wcv7-9fh9", "content": "", "creation_timestamp": "2026-06-12T16:48:25.000000Z"} https://vulnerability.circl.lu/sighting/3a64e8fd-89c7-4f7d-8aec-8fa9930d0534/export Fri, 12 Jun 2026 16:48:25 +0000 https://vulnerability.circl.lu/sighting/46412f6f-d00b-4343-bf3f-3872d68bae3c/export {"uuid": "46412f6f-d00b-4343-bf3f-3872d68bae3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54295", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3cpxdpf2b", "content": "CVE-2026-54295\nCVE ID : CVE-2026-54295\n \n Published : June 15, 2026, 6:32 p.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:03:20.397440Z"} {"uuid": "46412f6f-d00b-4343-bf3f-3872d68bae3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54295", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3cpxdpf2b", "content": "CVE-2026-54295\nCVE ID : CVE-2026-54295\n \n Published : June 15, 2026, 6:32 p.m. | 1\u00a0hour, 9\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:03:20.397440Z"} https://vulnerability.circl.lu/sighting/46412f6f-d00b-4343-bf3f-3872d68bae3c/export Mon, 15 Jun 2026 20:03:20 +0000 https://vulnerability.circl.lu/sighting/7cb86089-021c-4413-b8a6-b91d3785470f/export {"uuid": "7cb86089-021c-4413-b8a6-b91d3785470f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54292", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3fg4bph2e", "content": "CVE-2026-54292\nCVE ID : CVE-2026-54292\n \n Published : June 15, 2026, 6:33 p.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:04:50.766905Z"} {"uuid": "7cb86089-021c-4413-b8a6-b91d3785470f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54292", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3fg4bph2e", "content": "CVE-2026-54292\nCVE ID : CVE-2026-54292\n \n Published : June 15, 2026, 6:33 p.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:04:50.766905Z"} https://vulnerability.circl.lu/sighting/7cb86089-021c-4413-b8a6-b91d3785470f/export Mon, 15 Jun 2026 20:04:50 +0000 https://vulnerability.circl.lu/sighting/5e1fbb6b-9e92-4bcd-a33d-83d2435ff83b/export {"uuid": "5e1fbb6b-9e92-4bcd-a33d-83d2435ff83b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54296", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3iaqujf2x", "content": "CVE-2026-54296\nCVE ID : CVE-2026-54296\n \n Published : June 15, 2026, 6:31 p.m. | 1\u00a0hour, 10\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:06:25.806899Z"} {"uuid": "5e1fbb6b-9e92-4bcd-a33d-83d2435ff83b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54296", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3iaqujf2x", "content": "CVE-2026-54296\nCVE ID : CVE-2026-54296\n \n Published : June 15, 2026, 6:31 p.m. | 1\u00a0hour, 10\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:06:25.806899Z"} https://vulnerability.circl.lu/sighting/5e1fbb6b-9e92-4bcd-a33d-83d2435ff83b/export Mon, 15 Jun 2026 20:06:25 +0000 https://vulnerability.circl.lu/sighting/3f5a26d9-f74b-4146-8add-d89dc62bf902/export {"uuid": "3f5a26d9-f74b-4146-8add-d89dc62bf902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54294", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3z77vp32w", "content": "CVE-2026-54294\nCVE ID : CVE-2026-54294\n \n Published : June 15, 2026, 6:33 p.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:15:54.531925Z"} {"uuid": "3f5a26d9-f74b-4146-8add-d89dc62bf902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54294", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moe3z77vp32w", "content": "CVE-2026-54294\nCVE ID : CVE-2026-54294\n \n Published : June 15, 2026, 6:33 p.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : None\n \n Severity: 0.0 | NA\n \n Visit the link for more details, such as CVSS details, affected products, timeline, and more...\n#CVE", "creation_timestamp": "2026-06-15T20:15:54.531925Z"} https://vulnerability.circl.lu/sighting/3f5a26d9-f74b-4146-8add-d89dc62bf902/export Mon, 15 Jun 2026 20:15:54 +0000 https://vulnerability.circl.lu/sighting/ce8c95dc-e02f-4edc-9364-eee7625b9c87/export {"uuid": "ce8c95dc-e02f-4edc-9364-eee7625b9c87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54297", "type": "published-proof-of-concept", "source": "https://github.com/lostisland/faraday/security/advisories/GHSA-98m9-hrrm-r99r", "content": "", "creation_timestamp": "2026-06-18T13:20:52.000000Z"} {"uuid": "ce8c95dc-e02f-4edc-9364-eee7625b9c87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-54297", "type": "published-proof-of-concept", "source": "https://github.com/lostisland/faraday/security/advisories/GHSA-98m9-hrrm-r99r", "content": "", "creation_timestamp": "2026-06-18T13:20:52.000000Z"} https://vulnerability.circl.lu/sighting/ce8c95dc-e02f-4edc-9364-eee7625b9c87/export Thu, 18 Jun 2026 13:20:52 +0000 https://vulnerability.circl.lu/sighting/bf514093-2070-4b9f-8e14-07279ad1dd01/export {"uuid": "bf514093-2070-4b9f-8e14-07279ad1dd01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54297", "type": "seen", "source": "https://gist.github.com/muhamedfazalps/a3449070789a6a2c13d4d4e844af803b", "content": "# \u26a0\ufe0f SECURITY ALERT: Multiple CVEs Affecting Popular Packages (June 2026)\n\n## CVE-2026-48931 \u2014 Node.js 24.17 / node-fetch Premature Close\n- **Impact:** Affects Node.js 24.17 and any app using node-fetch\n- **Severity:** High\n- **Affected:** Backstage (20\ud83d\udc4d issue), any Node.js app on 24.17\n- **Fix:** Update Node.js or apply backport\n- **Issue:** https://github.com/backstage/backstage/issues/34651\n\n## CVE-2026-54297 \u2014 Faraday Dependency Vulnerability\n- **Impact:** Affects Fastlane and apps using Faraday\n- **Severity:** High\n- **Affected:** Fastlane (9\ud83d\udc4d issue), any Ruby app using Faraday\n- **Fix:** Update Faraday dependency\n- **Issue:** https://github.com/fastlane/fastlane/issues/30086\n\n## CVE-2026-42530 & CVE-2026-42055 \u2014 nginx Vulnerabilities\n- **Impact:** Affects nginx and mailcow-dockerized\n- **Severity:** High\n- **Affected:** mailcow-dockerized (7\ud83d\udc4d issue), any nginx deployment\n- **Fix:** Update nginx to patched version\n- **Issue:** https://github.com/mailcow/mailcow-dockerized/issues/7299\n\n## js-yaml Quadratic DoS (v3.x)\n- **Impact:** Affects any app using js-yaml v3.x for YAML parsing\n- **Severity:** Medium-High\n- **Affected:** 15\ud83d\udc4d issue requesting backport from v4.2.0 to v3\n- **Fix:** Update to js-yaml v4.2.0+ or apply backport\n- **Issue:** https://github.com/nodeca/js-yaml/issues/762\n\n## How to Check If You're Affected\n1. Check your Node.js version: `node --version`\n2. Check your Ruby/Bundler dependencies: `bundle list | grep faraday`\n3. Check your nginx version: `nginx -v`\n4. Check your js-yaml version: `npm ls js-yaml`\n\n## What to Do\n1. Update affected dependencies immediately\n2. Review logs for suspicious activity\n3. Rotate credentials if exposure is suspected\n\n---\n*If this alert helped you: https://buymeacoffee.com/muhamedfazalps*\n", "creation_timestamp": "2026-06-23T13:41:44.000000Z"} {"uuid": "bf514093-2070-4b9f-8e14-07279ad1dd01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54297", "type": "seen", "source": "https://gist.github.com/muhamedfazalps/a3449070789a6a2c13d4d4e844af803b", "content": "# \u26a0\ufe0f SECURITY ALERT: Multiple CVEs Affecting Popular Packages (June 2026)\n\n## CVE-2026-48931 \u2014 Node.js 24.17 / node-fetch Premature Close\n- **Impact:** Affects Node.js 24.17 and any app using node-fetch\n- **Severity:** High\n- **Affected:** Backstage (20\ud83d\udc4d issue), any Node.js app on 24.17\n- **Fix:** Update Node.js or apply backport\n- **Issue:** https://github.com/backstage/backstage/issues/34651\n\n## CVE-2026-54297 \u2014 Faraday Dependency Vulnerability\n- **Impact:** Affects Fastlane and apps using Faraday\n- **Severity:** High\n- **Affected:** Fastlane (9\ud83d\udc4d issue), any Ruby app using Faraday\n- **Fix:** Update Faraday dependency\n- **Issue:** https://github.com/fastlane/fastlane/issues/30086\n\n## CVE-2026-42530 & CVE-2026-42055 \u2014 nginx Vulnerabilities\n- **Impact:** Affects nginx and mailcow-dockerized\n- **Severity:** High\n- **Affected:** mailcow-dockerized (7\ud83d\udc4d issue), any nginx deployment\n- **Fix:** Update nginx to patched version\n- **Issue:** https://github.com/mailcow/mailcow-dockerized/issues/7299\n\n## js-yaml Quadratic DoS (v3.x)\n- **Impact:** Affects any app using js-yaml v3.x for YAML parsing\n- **Severity:** Medium-High\n- **Affected:** 15\ud83d\udc4d issue requesting backport from v4.2.0 to v3\n- **Fix:** Update to js-yaml v4.2.0+ or apply backport\n- **Issue:** https://github.com/nodeca/js-yaml/issues/762\n\n## How to Check If You're Affected\n1. Check your Node.js version: `node --version`\n2. Check your Ruby/Bundler dependencies: `bundle list | grep faraday`\n3. Check your nginx version: `nginx -v`\n4. Check your js-yaml version: `npm ls js-yaml`\n\n## What to Do\n1. Update affected dependencies immediately\n2. Review logs for suspicious activity\n3. Rotate credentials if exposure is suspected\n\n---\n*If this alert helped you: https://buymeacoffee.com/muhamedfazalps*\n", "creation_timestamp": "2026-06-23T13:41:44.000000Z"} https://vulnerability.circl.lu/sighting/bf514093-2070-4b9f-8e14-07279ad1dd01/export Tue, 23 Jun 2026 13:41:44 +0000 https://vulnerability.circl.lu/sighting/7ab76f5f-f258-4a63-95b2-4407c133e52e/export {"uuid": "7ab76f5f-f258-4a63-95b2-4407c133e52e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54299", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3moxuyx7ntw2f", "content": "CVE-2026-54299 - SSRF in Astro SSR apps. Host header injection allows fetching arbitrary URLs via prerendered error pages. CVSS 7.5. Update to 6.4.6 immediately. #CVE #Astro #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-54299/", "creation_timestamp": "2026-06-23T17:03:44.788697Z"} {"uuid": "7ab76f5f-f258-4a63-95b2-4407c133e52e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54299", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3moxuyx7ntw2f", "content": "CVE-2026-54299 - SSRF in Astro SSR apps. Host header injection allows fetching arbitrary URLs via prerendered error pages. CVSS 7.5. Update to 6.4.6 immediately. #CVE #Astro #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-54299/", "creation_timestamp": "2026-06-23T17:03:44.788697Z"} https://vulnerability.circl.lu/sighting/7ab76f5f-f258-4a63-95b2-4407c133e52e/export Tue, 23 Jun 2026 17:03:44 +0000