Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 16 Jun 2026 06:53:07 +0000 86ee45d4-26ff-48fe-a1e9-ca4c2d2a957a https://vulnerability.circl.lu/sighting/86ee45d4-26ff-48fe-a1e9-ca4c2d2a957a/export {"uuid": "86ee45d4-26ff-48fe-a1e9-ca4c2d2a957a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44494", "type": "published-proof-of-concept", "source": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh", "content": "", "creation_timestamp": "2026-05-29T06:49:56.000000Z"} {"uuid": "86ee45d4-26ff-48fe-a1e9-ca4c2d2a957a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44494", "type": "published-proof-of-concept", "source": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh", "content": "", "creation_timestamp": "2026-05-29T06:49:56.000000Z"} https://vulnerability.circl.lu/sighting/86ee45d4-26ff-48fe-a1e9-ca4c2d2a957a/export Fri, 29 May 2026 06:49:56 +0000 13be3515-63fc-436b-8191-bf1b01475e2b https://vulnerability.circl.lu/sighting/13be3515-63fc-436b-8191-bf1b01475e2b/export {"uuid": "13be3515-63fc-436b-8191-bf1b01475e2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "published-proof-of-concept", "source": "https://t.me/bdufstecru/3216", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 lib/adapters/http.js \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 axios \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0431\u0445\u043e\u0434\u0430 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0430\u0442\u0430\u043a\u0443 \u0442\u0438\u043f\u0430 \u00ab\u0447\u0435\u043b\u043e\u0432\u0435\u043a \u043f\u043e\u0441\u0435\u0440\u0435\u0434\u0438\u043d\u0435\u00bb (MITM)\n\nBDU:2026-07709\nCVE-2026-44494\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh/#poc", "creation_timestamp": "2026-06-03T14:43:57.000000Z"} {"uuid": "13be3515-63fc-436b-8191-bf1b01475e2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "published-proof-of-concept", "source": "https://t.me/bdufstecru/3216", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 lib/adapters/http.js \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 axios \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0431\u0445\u043e\u0434\u0430 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0430\u0442\u0430\u043a\u0443 \u0442\u0438\u043f\u0430 \u00ab\u0447\u0435\u043b\u043e\u0432\u0435\u043a \u043f\u043e\u0441\u0435\u0440\u0435\u0434\u0438\u043d\u0435\u00bb (MITM)\n\nBDU:2026-07709\nCVE-2026-44494\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh/#poc", "creation_timestamp": "2026-06-03T14:43:57.000000Z"} https://vulnerability.circl.lu/sighting/13be3515-63fc-436b-8191-bf1b01475e2b/export Wed, 03 Jun 2026 14:43:57 +0000 214c335c-9e64-4335-87ef-12546aba47cb https://vulnerability.circl.lu/sighting/214c335c-9e64-4335-87ef-12546aba47cb/export {"uuid": "214c335c-9e64-4335-87ef-12546aba47cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnzsmhqcpr2y", "content": "\ud83d\udfe0 CVE-2026-44494 - High (8.7)\n\nAxios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.16.0, th...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44494/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T18:01:07.229438Z"} {"uuid": "214c335c-9e64-4335-87ef-12546aba47cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnzsmhqcpr2y", "content": "\ud83d\udfe0 CVE-2026-44494 - High (8.7)\n\nAxios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.16.0, th...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44494/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T18:01:07.229438Z"} https://vulnerability.circl.lu/sighting/214c335c-9e64-4335-87ef-12546aba47cb/export Thu, 11 Jun 2026 18:01:07 +0000 133b370f-ed9b-43a1-916a-77300ccf9c8e https://vulnerability.circl.lu/sighting/133b370f-ed9b-43a1-916a-77300ccf9c8e/export {"uuid": "133b370f-ed9b-43a1-916a-77300ccf9c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mnzsnagnnc2f", "content": "CVE-2026-44494 - Critical Prototype Pollution in Axios. Escalates to full MITM, intercepting HTTP traffic & credentials. CVSS 8.7. No patch available. Update to 1.16.0+ or mitigate immediately. #CVE #Axios #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-44494/", "creation_timestamp": "2026-06-11T18:01:31.924766Z"} {"uuid": "133b370f-ed9b-43a1-916a-77300ccf9c8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mnzsnagnnc2f", "content": "CVE-2026-44494 - Critical Prototype Pollution in Axios. Escalates to full MITM, intercepting HTTP traffic & credentials. CVSS 8.7. No patch available. Update to 1.16.0+ or mitigate immediately. #CVE #Axios #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-44494/", "creation_timestamp": "2026-06-11T18:01:31.924766Z"} https://vulnerability.circl.lu/sighting/133b370f-ed9b-43a1-916a-77300ccf9c8e/export Thu, 11 Jun 2026 18:01:31 +0000 09bf8fad-b113-4ff9-bb4e-12d0d243695c https://vulnerability.circl.lu/sighting/09bf8fad-b113-4ff9-bb4e-12d0d243695c/export {"uuid": "09bf8fad-b113-4ff9-bb4e-12d0d243695c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mo3oxizevy2k", "content": "\n\ud83d\udea8 New HIGH CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-44494 impacts axios in 3 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/554\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-06-12T12:01:18.149361Z"} {"uuid": "09bf8fad-b113-4ff9-bb4e-12d0d243695c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/lambdawatchdog.bsky.social/post/3mo3oxizevy2k", "content": "\n\ud83d\udea8 New HIGH CVE detected in AWS Lambda \ud83d\udea8\nCVE-2026-44494 impacts axios in 3 Lambda base images.\n\nDetails: https://github.com/aws/aws-lambda-base-images/issues/554\nMore: https://lambdawatchdog.com/\n\n#AWS #Lambda #CVE #CloudSecurity #Serverless", "creation_timestamp": "2026-06-12T12:01:18.149361Z"} https://vulnerability.circl.lu/sighting/09bf8fad-b113-4ff9-bb4e-12d0d243695c/export Fri, 12 Jun 2026 12:01:18 +0000 87c559c5-2e24-40b7-9777-a49a781834eb https://vulnerability.circl.lu/sighting/87c559c5-2e24-40b7-9777-a49a781834eb/export {"uuid": "87c559c5-2e24-40b7-9777-a49a781834eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mo52v7yb642v", "content": "\ud83d\udccc CVE-2026-44494 - Axios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.16.0, the Axios library is vulnerable to a Prototype Pollutio... https://www.potatohub.blog/cves/CVE-2026-44494", "creation_timestamp": "2026-06-13T01:09:18.852436Z"} {"uuid": "87c559c5-2e24-40b7-9777-a49a781834eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44494", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mo52v7yb642v", "content": "\ud83d\udccc CVE-2026-44494 - Axios is a promise based HTTP client for the browser and Node.js. From 1.0.0 to before 1.16.0, the Axios library is vulnerable to a Prototype Pollutio... https://www.potatohub.blog/cves/CVE-2026-44494", "creation_timestamp": "2026-06-13T01:09:18.852436Z"} https://vulnerability.circl.lu/sighting/87c559c5-2e24-40b7-9777-a49a781834eb/export Sat, 13 Jun 2026 01:09:18 +0000