<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T08:00:00.892142+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/602846eb-0542-42d7-a9ac-1a386c920452/export</id>
    <title>602846eb-0542-42d7-a9ac-1a386c920452</title>
    <updated>2026-07-17T08:00:00.915001+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "602846eb-0542-42d7-a9ac-1a386c920452", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45071", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqrmkwbscm2z", "content": "\ud83d\udccc CVE-2026-45071 - Symfony is a PHP framework for web and console applications and a set of reusable PHP components. Prior to 5.4.52, 6.4.40, 7.4.12, and 8.0.12, Crawler... https://www.cyberhub.blog/cves/CVE-2026-45071", "creation_timestamp": "2026-07-16T16:07:09.205494Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/602846eb-0542-42d7-a9ac-1a386c920452/export"/>
    <published>2026-07-16T16:07:09.205494+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/917a710a-1581-4c43-b6e8-61f8394654de/export</id>
    <title>917a710a-1581-4c43-b6e8-61f8394654de</title>
    <updated>2026-07-17T08:00:00.916740+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "917a710a-1581-4c43-b6e8-61f8394654de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45074", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqofvxlidr2d", "content": "CVE-2026-45074 - symfony\nA vulnerability in the Apache HTTP Server package on Debian Linux systems allows attackers to upload malicious files, potentially leading to unauthorized access or system\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#symfony #debian #Debian11 #CVE #infosec", "creation_timestamp": "2026-07-15T09:30:03.970790Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/917a710a-1581-4c43-b6e8-61f8394654de/export"/>
    <published>2026-07-15T09:30:03.970790+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c166d1cb-89a9-44c4-b3bf-b78cc4252414/export</id>
    <title>c166d1cb-89a9-44c4-b3bf-b78cc4252414</title>
    <updated>2026-07-17T08:00:00.916878+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c166d1cb-89a9-44c4-b3bf-b78cc4252414", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45072", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmzgzjft52g", "content": "CVE-2026-45072 - Symfony: Stored XSS in WebProfiler CodeExtension::fileExcerpt() \u2014 Unescaped Non-PHP File Rendering\nCVE ID : CVE-2026-45072\n \n Published : July 14, 2026, 7:17 p.m. | 13\u00a0minutes ago\n \n Description : Symfony is a PHP framework for web and console applications and...", "creation_timestamp": "2026-07-14T20:14:17.926571Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c166d1cb-89a9-44c4-b3bf-b78cc4252414/export"/>
    <published>2026-07-14T20:14:17.926571+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d9540c67-af63-4a4c-a36a-508654cb2fec/export</id>
    <title>d9540c67-af63-4a4c-a36a-508654cb2fec</title>
    <updated>2026-07-17T08:00:00.916986+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d9540c67-af63-4a4c-a36a-508654cb2fec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45075", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmzel5hwk2q", "content": "CVE-2026-45075 - Symfony: HEAD Request Bypasses methods: ['GET'] Filter in #[IsGranted] / #[IsSignatureValid] / #[IsCsrfTokenValid]\nCVE ID : CVE-2026-45075\n \n Published : July 14, 2026, 7:17 p.m. | 13\u00a0minutes ago\n \n Description : Symfony is a PHP framework for web and console ...", "creation_timestamp": "2026-07-14T20:12:55.819054Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d9540c67-af63-4a4c-a36a-508654cb2fec/export"/>
    <published>2026-07-14T20:12:55.819054+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f4cfb770-a912-4746-bb9c-33180c9c04d8/export</id>
    <title>f4cfb770-a912-4746-bb9c-33180c9c04d8</title>
    <updated>2026-07-17T08:00:00.917082+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f4cfb770-a912-4746-bb9c-33180c9c04d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45070", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmyl6mtwu2t", "content": "CVE-2026-45070 - Symfony: Email Header Injection via Non-Token Characters in Mime Parameter Names\nCVE ID : CVE-2026-45070\n \n Published : July 14, 2026, 7:17 p.m. | 13\u00a0minutes ago\n \n Description : Symfony is a PHP framework for web and console applications and a set of reusable...", "creation_timestamp": "2026-07-14T19:58:43.819273Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f4cfb770-a912-4746-bb9c-33180c9c04d8/export"/>
    <published>2026-07-14T19:58:43.819273+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/73985e59-3fd8-4993-bca1-5ec7d71672bd/export</id>
    <title>73985e59-3fd8-4993-bca1-5ec7d71672bd</title>
    <updated>2026-07-17T08:00:00.917186+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "73985e59-3fd8-4993-bca1-5ec7d71672bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45073", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqmyjf3xss2i", "content": "CVE-2026-45073 - Symfony: SQL Injection in PdoAdapter::doClear() via Unsanitized $prefix\nCVE ID : CVE-2026-45073\n \n Published : July 14, 2026, 7:17 p.m. | 13\u00a0minutes ago\n \n Description : Symfony is a PHP framework for web and console applications and a set of reusable PHP comp...", "creation_timestamp": "2026-07-14T19:57:43.385717Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/73985e59-3fd8-4993-bca1-5ec7d71672bd/export"/>
    <published>2026-07-14T19:57:43.385717+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a1e58582-4bb5-4f86-8225-e6b8d3789333/export</id>
    <title>a1e58582-4bb5-4f86-8225-e6b8d3789333</title>
    <updated>2026-07-17T08:00:00.917336+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a1e58582-4bb5-4f86-8225-e6b8d3789333", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45077", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:12.814632Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a1e58582-4bb5-4f86-8225-e6b8d3789333/export"/>
    <published>2026-05-20T14:15:12.814632+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/25ab33d6-6aa2-4a2d-9215-58ac8e8f943d/export</id>
    <title>25ab33d6-6aa2-4a2d-9215-58ac8e8f943d</title>
    <updated>2026-07-17T08:00:00.917501+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "25ab33d6-6aa2-4a2d-9215-58ac8e8f943d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45070", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:12.661496Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/25ab33d6-6aa2-4a2d-9215-58ac8e8f943d/export"/>
    <published>2026-05-20T14:15:12.661496+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5efd1818-0d34-4c32-8671-329c5ed0e41e/export</id>
    <title>5efd1818-0d34-4c32-8671-329c5ed0e41e</title>
    <updated>2026-07-17T08:00:00.917661+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5efd1818-0d34-4c32-8671-329c5ed0e41e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45070", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbzn2gy7z2m", "content": "\ud83d\udd10 CVE-2026-45070: Email Header Injection via Non-Token Characters in Mime Parameter Names\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45070-email-header-injection-via-non-token-characters-in-mime-parameter-names", "creation_timestamp": "2026-05-20T13:37:36.619922Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5efd1818-0d34-4c32-8671-329c5ed0e41e/export"/>
    <published>2026-05-20T13:37:36.619922+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dfa27e54-c38f-4064-b086-d132dde4f184/export</id>
    <title>dfa27e54-c38f-4064-b086-d132dde4f184</title>
    <updated>2026-07-17T08:00:00.917829+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dfa27e54-c38f-4064-b086-d132dde4f184", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45075", "type": "seen", "source": "https://bsky.app/profile/mradcliffe.nokoto.org.ap.brid.gy/post/3mmbu4igtlyo2", "content": "Symfony 7.4.12, Symfony 8.0.12 and Twig 3.26.0 releases today with a bunch of CVEs.\n\nCVE-2026-46640 in twig and CVE-2026-45075 in Symfony router and CVE-2026-45064 in Symfony sanitizer seem particularly scary.\n\n`composer update` and test, test, test.", "creation_timestamp": "2026-05-20T11:59:01.677666Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dfa27e54-c38f-4064-b086-d132dde4f184/export"/>
    <published>2026-05-20T11:59:01.677666+00:00</published>
  </entry>
</feed>
