<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T16:12:29.280549+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8676eed6-9892-422d-8ce5-dbde69f7870c/export</id>
    <title>8676eed6-9892-422d-8ce5-dbde69f7870c</title>
    <updated>2026-07-17T16:12:29.300057+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8676eed6-9892-422d-8ce5-dbde69f7870c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45074", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqu22xkemf2j", "content": "CVE-2026-45074 - symfony\nThe Symfony framework is vulnerable to an attack where an attacker can pretend to be another user by manipulating the Host header in a request. This could allow an\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#symfony #canonical #Ubuntu1604LTS #CVE #infosec", "creation_timestamp": "2026-07-17T15:14:05.125835Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8676eed6-9892-422d-8ce5-dbde69f7870c/export"/>
    <published>2026-07-17T15:14:05.125835+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/917a710a-1581-4c43-b6e8-61f8394654de/export</id>
    <title>917a710a-1581-4c43-b6e8-61f8394654de</title>
    <updated>2026-07-17T16:12:29.301735+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "917a710a-1581-4c43-b6e8-61f8394654de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45074", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqofvxlidr2d", "content": "CVE-2026-45074 - symfony\nA vulnerability in the Apache HTTP Server package on Debian Linux systems allows attackers to upload malicious files, potentially leading to unauthorized access or system\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#symfony #debian #Debian11 #CVE #infosec", "creation_timestamp": "2026-07-15T09:30:03.970790Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/917a710a-1581-4c43-b6e8-61f8394654de/export"/>
    <published>2026-07-15T09:30:03.970790+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/215ea900-64bc-43d5-b2dd-8b81a630bb1b/export</id>
    <title>215ea900-64bc-43d5-b2dd-8b81a630bb1b</title>
    <updated>2026-07-17T16:12:29.301891+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "215ea900-64bc-43d5-b2dd-8b81a630bb1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45074", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqschhar2o", "content": "\ud83d\udd10 CVE-2026-45074: Cas2Handler Derives CAS service URL from Client Host Header \u2192 Cross-Service Ticket Replay\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45074-cas2handler-derives-cas-service-url-from-client-host-header-cross-service-ticket-replay", "creation_timestamp": "2026-05-20T10:59:28.965986Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/215ea900-64bc-43d5-b2dd-8b81a630bb1b/export"/>
    <published>2026-05-20T10:59:28.965986+00:00</published>
  </entry>
</feed>
