{"vulnerability": "CVE-2026-4985", "sightings": [{"uuid": "f779d1b2-b52d-4cae-8472-3bc228dffdde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4985", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mi35hgt6pv23", "content": "", "creation_timestamp": "2026-03-27T22:16:38.535499Z"}, {"uuid": "aa01435f-1c85-4a48-ac84-415f5d37e2d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49858", "type": "seen", "source": "https://bsky.app/profile/soyuka.me/post/3mnhlnpjjpc23", "content": "\ud83d\udd12 API Platform CVE-2026-49858: JSON:API &amp; HAL normalizers cached components across users on long-running runtimes (FrankenPHP, RoadRunner, Swoole).\n\nPatched in 4.1.29 / 4.2.25 / 4.3.8 \u2014 upgrade now.\n\ngithub.com/api-platform...", "creation_timestamp": "2026-06-04T12:08:39.389097Z"}, {"uuid": "83afe1e3-1598-47ba-b7ce-081ab848cfce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49858", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mnj3tf3oaw2f", "content": "Top 3 CVE for last 7 days:\nCVE-2025-48595: 136 interactions\nCVE-2026-0257: 43 interactions\nCVE-2026-48778: 23 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-49858: 11 interactions\nCVE-2026-20230: 6 interactions\nCVE-2026-10737: 4 interactions\n", "creation_timestamp": "2026-06-05T02:30:47.601272Z"}, {"uuid": "485af4ef-2e4a-4c4d-878a-e9715bc7dc04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49859", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpgunxo6aw2d", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-49859 \u0432 Deno: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/AAE9F3B6-608E-42A1-A7BD-B08E6F3C1744", "creation_timestamp": "2026-06-29T16:07:32.460117Z"}, {"uuid": "75e3157c-9120-4c6a-8843-cc9fe3b973ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49857", "type": "published-proof-of-concept", "source": "https://github.com/ymw0407/auth-fetch-mcp/security/advisories/GHSA-pvrj-8cg3-j5f8", "content": "", "creation_timestamp": "2026-07-01T20:35:16.009569Z"}, {"uuid": "ac0bffe5-c8cc-4049-ab5f-dc83f82311d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49858", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpnxsz3fif2y", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-49858 \u0432 API Platform Core: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/9D910C08-1BC3-407B-B293-48AC51C1EAB3", "creation_timestamp": "2026-07-02T11:52:41.311051Z"}, {"uuid": "8da11bc0-16b1-4ed0-b282-eebb6388292b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49852", "type": "published-proof-of-concept", "source": "https://github.com/authlib/joserfc/security/advisories/GHSA-gg9x-qcx2-xmrh", "content": "", "creation_timestamp": "2026-07-02T20:35:04.805881Z"}]}