<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Thu, 02 Jul 2026 20:55:07 +0000</lastBuildDate>
    <item>
      <title>9a000047-69b7-4511-ab84-009502628ccd</title>
      <link>https://vulnerability.circl.lu/sighting/9a000047-69b7-4511-ab84-009502628ccd/export</link>
      <description>{"uuid": "9a000047-69b7-4511-ab84-009502628ccd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58449", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpovld6x432e", "content": "CVE-2026-58449\ntxtai versions 9.10.0 and earlier have a security risk if you're using an unauthenticated API and allowing remote index updates. A malicious user could potentially execute code on your server when reindexing.\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-02T20:45:15.884455Z"}</description>
      <content:encoded>{"uuid": "9a000047-69b7-4511-ab84-009502628ccd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58449", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpovld6x432e", "content": "CVE-2026-58449\ntxtai versions 9.10.0 and earlier have a security risk if you're using an unauthenticated API and allowing remote index updates. A malicious user could potentially execute code on your server when reindexing.\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-02T20:45:15.884455Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9a000047-69b7-4511-ab84-009502628ccd/export</guid>
      <pubDate>Thu, 02 Jul 2026 20:45:15 +0000</pubDate>
    </item>
    <item>
      <title>f232b7ac-9f5c-462f-a6e9-2d3cdb668679</title>
      <link>https://vulnerability.circl.lu/sighting/f232b7ac-9f5c-462f-a6e9-2d3cdb668679/export</link>
      <description>{"uuid": "f232b7ac-9f5c-462f-a6e9-2d3cdb668679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58449", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpk2bvcfe326", "content": "CVE-2026-58449 - txtai - Unauthenticated Remote Code Execution via Unsafe Reflection in API /reindex function Parameter\nCVE ID : CVE-2026-58449\n \n Published : June 30, 2026, 9:06 p.m. | 39\u00a0minutes ago\n \n Description : txtai through 9.10.0, fixed in commit 11b32da, exposes an A...", "creation_timestamp": "2026-06-30T22:26:10.716143Z"}</description>
      <content:encoded>{"uuid": "f232b7ac-9f5c-462f-a6e9-2d3cdb668679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-58449", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpk2bvcfe326", "content": "CVE-2026-58449 - txtai - Unauthenticated Remote Code Execution via Unsafe Reflection in API /reindex function Parameter\nCVE ID : CVE-2026-58449\n \n Published : June 30, 2026, 9:06 p.m. | 39\u00a0minutes ago\n \n Description : txtai through 9.10.0, fixed in commit 11b32da, exposes an A...", "creation_timestamp": "2026-06-30T22:26:10.716143Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f232b7ac-9f5c-462f-a6e9-2d3cdb668679/export</guid>
      <pubDate>Tue, 30 Jun 2026 22:26:10 +0000</pubDate>
    </item>
  </channel>
</rss>
