https://vulnerability.circl.lu/sightings/feed 2026-06-21T03:12:08.653434+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/2f3fc7b5-d780-47fd-8d61-36725c33274d/export 2026-06-21T03:12:09.079870+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "2f3fc7b5-d780-47fd-8d61-36725c33274d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-26539", "type": "seen", "source": "https://t.me/cibsecurity/23227", "content": "\u203c CVE-2021-26539 \u203c\n\nApostrophe Technologies sanitize-html before 2.3.1 does not properly handle internationalized domain name (IDN) which could allow an attacker to bypass hostname whitelist validation set by the \"allowedIframeHostnames\" option.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-08T20:39:37.000000Z"} 2021-02-08T20:39:37+00:00