{"vulnerability": "cve-2026-12975", "sightings": [{"uuid": "0ceb68ff-ef58-40ac-9fab-7a25bbf0d2d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12975", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5i6v5sf72b", "content": "CVE-2026-12975 - Apicurio/apicurio-registry: apicurio-registry: unhardened saxparser in content-type detection leads to blind xxe / ssrf / billion-laughs dos\nCVE ID : CVE-2026-12975\n \n Published : June 25, 2026, 9:12 p.m. | 32\u00a0minutes ago\n \n Description : A flaw was found in A...", "creation_timestamp": "2026-06-25T22:30:23.612513Z"}, {"uuid": "a0d24388-798a-4105-87ce-51b4b9280ab7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12975", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mp6ll2kygk2f", "content": "CVE-2026-12975 - SSRF in Apicurio Registry. No auth needed by default. Malicious XML triggers blind SSRF or DoS via entity expansion. CVSS 8.5. Patch unknown - restrict access now. #CVE #infosec #Apicurio\n\nhttps://www.valtersit.com/cve/CVE-2026-12975/", "creation_timestamp": "2026-06-26T09:03:33.188320Z"}]}