{"vulnerability": "CVE-2026-4893", "sightings": [{"uuid": "ef02630f-ca9c-4f8b-804b-119c67c34126", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4893", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mllwk5mbq72t", "content": "CVE-2026-4893 - CVE-2026-4893\nCVE ID : CVE-2026-4893\n \n Published : May 11, 2026, 6:16 p.m. | 14\u00a0minutes ago\n \n Description : An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet...", "creation_timestamp": "2026-05-11T18:43:43.816870Z"}, {"uuid": "ff933cd8-de46-435c-9a7d-dd2d082e9ae4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4893", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mllwk5mbq72t", "content": "CVE-2026-4893 - CVE-2026-4893\nCVE ID : CVE-2026-4893\n \n Published : May 11, 2026, 6:16 p.m. | 14\u00a0minutes ago\n \n Description : An information disclosure vulnerability in dnsmasq allows remote attackers to bypass source checks via a crafted DNS packet with RFC 7871 client subnet...", "creation_timestamp": "2026-05-11T18:43:43.815746Z"}, {"uuid": "e6d27f70-74ea-48ae-a623-62515e70ef35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-4893", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/bb20f34e-4314-42f2-8e6b-cb2c917339bc", "content": "", "creation_timestamp": "2026-05-13T12:31:36.904766Z"}, {"uuid": "e6c25795-2db0-451a-ba94-a43693293310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4893", "type": "seen", "source": "https://t.me/GithubRedTeam/86071", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE20264893poc\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a lottiedeyan\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-27 05:56:33\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nGenerate the poc for CVE-2026-4893: broken EDNS Client Subnet validation.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-27T06:00:06.000000Z"}, {"uuid": "98065a8b-c24a-4f6a-bd62-edfdedf07000", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4893", "type": "seen", "source": "Telegram/XPzjER_VXnqDaL0x3el2A57nJCguhK8qowmsl0HK-KFshHo", "content": "", "creation_timestamp": "2026-05-27T21:09:44.000000Z"}, {"uuid": "15f9b3b6-cf8b-4e07-a9f6-45bd81f76b26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4893", "type": "seen", "source": "Telegram/XzC-KGBCdspPXiEjFuhhLQhveWuSfskWTBPYimD-K-OCFrQ", "content": "", "creation_timestamp": "2026-05-27T21:02:29.000000Z"}, {"uuid": "9b4c1ddd-28e2-4aa5-baef-cd94354bd3ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48933", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3mon66r4i6w2y", "content": "Node.js fixed 13 CVEs across 22.23.0, 24.17.0 and 26.3.1. The two HIGH-rated ones stand out: a WebCrypto AES integer overflow (CVE-2026-48933) that aborts the process, and a TLS authentication bypass (CVE-2026-48618). Is your CI pinned to a patched minor yet?\n\n#nodejs", "creation_timestamp": "2026-06-19T10:48:46.622778Z"}, {"uuid": "b4962dcf-c841-4259-b422-cc05df55e43e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48930", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:17.996857Z"}, {"uuid": "77f53a38-cb47-4c15-8096-cf8828db4ffa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48931", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:18.158208Z"}, {"uuid": "8c9fd8b6-47b2-4dc5-9ec1-4d5c7bc261f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48933", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:18.313785Z"}, {"uuid": "b7b1b882-e0b2-439a-9c93-991f052a331c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48934", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:18.448016Z"}, {"uuid": "adb417dc-81eb-44b4-8078-6ddb3f468cff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48935", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:18.597490Z"}, {"uuid": "8b5ff07f-6bc9-41db-8989-fe52d161e294", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48936", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:18.731785Z"}, {"uuid": "da0439b1-3ece-4c46-9e64-a5e9dbf882ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48937", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3moni2fdzi32c", "content": "\ud83d\udd17 CVE : CVE-2026-21636, CVE-2026-48615, CVE-2026-48617, CVE-2026-48618, CVE-2026-48619, CVE-2026-48928, CVE-2026-48930, CVE-2026-48931, CVE-2026-48933, CVE-2026-48934, CVE-2026-48935, CVE-2026-48936, CVE-2026-48937", "creation_timestamp": "2026-06-19T13:45:18.886059Z"}, {"uuid": "ead1cf0c-38c2-4eff-a4e4-60bc0a9e547a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mopyiqfnx42t", "content": "CVE-2026-48939 - Joomla Extension - icagenda.com - Remote Code Execution in iCaganda extension for Joomla\nCVE ID : CVE-2026-48939\n \n Published : June 20, 2026, 11:56 a.m. | 1\u00a0hour, 13\u00a0minutes ago\n \n Description : A vulnerability in the iCagenda extension for Joomla allows the ...", "creation_timestamp": "2026-06-20T13:44:57.744419Z"}, {"uuid": "cc82122e-7c2f-41eb-ab8c-17ebc906a242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48939", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mor7wauvu62f", "content": "CRITICAL: iCagenda for Joomla (v1.0.0 \u2013 4.0.7) lets attackers upload + execute PHP files, risking full server compromise. No fix yet \u2014 disable feature or apply WAF rules ASAP. https://radar.offseq.com/threat/cve-2026-48939-cwe-284-improper-access-control-in--bc923bedc1d1c47e #OffSeq #Joomla \ud83d\udee1\ufe0f", "creation_timestamp": "2026-06-21T01:30:28.581736Z"}, {"uuid": "a768fefc-26e7-4c97-ab63-900f25f78538", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48939", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116785507532685788", "content": "CVE-2026-48939 (CRITICAL): iCagenda for Joomla (v1.0.0-3.9.14, 4.0.0-4.0.7) allows unauthenticated PHP file upload &amp; execution. No patch yet \u2014 disable or restrict access, use WAF to block. Full site/server compromise risk. Details: https://radar.offseq.com/threat/cve-2026-48939-cwe-284-improper-access-control-in--bc923bedc1d1c47e #OffSeq #Joomla #infosec", "creation_timestamp": "2026-06-21T01:30:29.091535Z"}, {"uuid": "65930e07-941a-445f-b7e1-4d989341cc2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48933", "type": "seen", "source": "https://bsky.app/profile/securitylab-jp.bsky.social/post/3motlougng225", "content": "Node.js\u30012026\u5e746\u6708\u306e\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30ea\u30ea\u30fc\u30b9\u306712\u4ef6\u306e\u8106\u5f31\u6027\u3092\u4fee\u6b63(CVE-2026-48933,CVE-2026-48618)\u4ed6\n\nrocket-boys.co.jp/security-mea...\n\n#\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5bfe\u7b56Lab #security #securitynews", "creation_timestamp": "2026-06-22T00:06:27.079098Z"}, {"uuid": "c5cdcddd-1b26-4dc0-84a2-50d5e4dbf52e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48930", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "a6827eba-fe2a-40aa-9f1d-de5f20bf9f02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48931", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "95dc9194-0200-442e-9765-c4fa00395e2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48933", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "9cc0fdb1-417f-4953-a0d8-d6694567823e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48934", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "d9805c05-4e6f-4ec2-aeb1-ca9addeef6ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48935", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "da482ff1-5b08-42b7-8fb0-c211f600fe75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48936", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "30f32efc-07ab-4380-a57a-d00e42114866", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48937", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/node-js-multiple-vulnerabilities_20260622", "content": "", "creation_timestamp": "2026-06-21T19:00:00.000000Z"}, {"uuid": "262680c1-f9e0-4899-b58a-3e0abc5aceb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48931", "type": "seen", "source": "https://gist.github.com/muhamedfazalps/a3449070789a6a2c13d4d4e844af803b", "content": "# \u26a0\ufe0f SECURITY ALERT: Multiple CVEs Affecting Popular Packages (June 2026)\n\n## CVE-2026-48931 \u2014 Node.js 24.17 / node-fetch Premature Close\n- **Impact:** Affects Node.js 24.17 and any app using node-fetch\n- **Severity:** High\n- **Affected:** Backstage (20\ud83d\udc4d issue), any Node.js app on 24.17\n- **Fix:** Update Node.js or apply backport\n- **Issue:** https://github.com/backstage/backstage/issues/34651\n\n## CVE-2026-54297 \u2014 Faraday Dependency Vulnerability\n- **Impact:** Affects Fastlane and apps using Faraday\n- **Severity:** High\n- **Affected:** Fastlane (9\ud83d\udc4d issue), any Ruby app using Faraday\n- **Fix:** Update Faraday dependency\n- **Issue:** https://github.com/fastlane/fastlane/issues/30086\n\n## CVE-2026-42530 &amp; CVE-2026-42055 \u2014 nginx Vulnerabilities\n- **Impact:** Affects nginx and mailcow-dockerized\n- **Severity:** High\n- **Affected:** mailcow-dockerized (7\ud83d\udc4d issue), any nginx deployment\n- **Fix:** Update nginx to patched version\n- **Issue:** https://github.com/mailcow/mailcow-dockerized/issues/7299\n\n## js-yaml Quadratic DoS (v3.x)\n- **Impact:** Affects any app using js-yaml v3.x for YAML parsing\n- **Severity:** Medium-High\n- **Affected:** 15\ud83d\udc4d issue requesting backport from v4.2.0 to v3\n- **Fix:** Update to js-yaml v4.2.0+ or apply backport\n- **Issue:** https://github.com/nodeca/js-yaml/issues/762\n\n## How to Check If You're Affected\n1. Check your Node.js version: `node --version`\n2. Check your Ruby/Bundler dependencies: `bundle list | grep faraday`\n3. Check your nginx version: `nginx -v`\n4. Check your js-yaml version: `npm ls js-yaml`\n\n## What to Do\n1. Update affected dependencies immediately\n2. Review logs for suspicious activity\n3. Rotate credentials if exposure is suspected\n\n---\n*If this alert helped you: https://buymeacoffee.com/muhamedfazalps*\n", "creation_timestamp": "2026-06-23T13:41:44.000000Z"}, {"uuid": "2e759e89-9722-4ff8-abae-3350145970ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48933", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5vjkhvop2u", "content": "CVE-2026-48933 - Node.js WebCrypto Denial of Service\nCVE ID : CVE-2026-48933\n \n Published : June 26, 2026, 1:14 a.m. | 30\u00a0minutes ago\n \n Description : A flaw in Node.js WebCrypto implementation can crash the process if the input of `subtle.encrypt()` is a multiple of 2GiB.\n\nTh...", "creation_timestamp": "2026-06-26T02:29:00.087404Z"}, {"uuid": "17d04e9f-807b-4af0-a6a4-67d61876296b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48936", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5vogv5gr2z", "content": "CVE-2026-48936 - Node.js: Insufficient Permissions Check Leading to Unauthorized Socket Server Creation\nCVE ID : CVE-2026-48936\n \n Published : June 26, 2026, 1:14 a.m. | 30\u00a0minutes ago\n \n Description : A flaw in Node.js Permission API can cause a local server to be started (vi...", "creation_timestamp": "2026-06-26T02:31:44.008833Z"}, {"uuid": "ab841fab-bd6b-4fc0-aee1-8b212c00c36a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48930", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5vtsvk7v27", "content": "CVE-2026-48930 - Node.js TLS Hostname Handling Vulnerability\nCVE ID : CVE-2026-48930\n \n Published : June 26, 2026, 1:14 a.m. | 30\u00a0minutes ago\n \n Description : A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to...", "creation_timestamp": "2026-06-26T02:34:44.700255Z"}, {"uuid": "d02f7958-d34e-49e7-84cb-f81539b82532", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48935", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5wi743io2c", "content": "CVE-2026-48935 - Node.js Permission API File Metadata Modification Vulnerability\nCVE ID : CVE-2026-48935\n \n Published : June 26, 2026, 1:14 a.m. | 30\u00a0minutes ago\n \n Description : A flaw in Node.js Permission API can cause a file metadata to be modified even on a path that was ...", "creation_timestamp": "2026-06-26T02:46:08.325978Z"}, {"uuid": "2b98f057-3cea-4f4a-9947-7e83df4192cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48934", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5xlz53r627", "content": "CVE-2026-48934 - Node.js TLS Host Verification Bypass\nCVE ID : CVE-2026-48934\n \n Published : June 26, 2026, 1:14 a.m. | 30\u00a0minutes ago\n \n Description : A flaw in Node.js TLS host verification can cause an attacker to bypass certification validation.\n\nThis vulnerability affects...", "creation_timestamp": "2026-06-26T03:06:10.361160Z"}, {"uuid": "d27b5ca8-b7e3-4552-af25-bb7987a26943", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48933", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mp64cqknvp2o", "content": "Node.js WebCrypto (v22.22.3, 24.16.0, 26.3.0) faces a HIGH severity bug \u2014 CVE-2026-48933. Integer overflow in subtle.encrypt() can crash Node.js with 2 GiB+ input. Avoid large inputs &amp; watch for patches. \ud83d\udeab https://radar.offseq.com/threat/cve-2026-48933-cwe-190-integer-overflow-in-nodejs--5c33db78...", "creation_timestamp": "2026-06-26T04:30:28.498694Z"}, {"uuid": "91ac0e7a-e79d-4bd2-a8ff-0aa4f896c93f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48933", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116814526921125903", "content": "Node.js WebCrypto in v22.22.3, v24.16.0, v26.3.0 is affected by CVE-2026-48933 (HIGH). Integer overflow in subtle.encrypt() can crash processes with inputs \u2265 2 GiB, causing DoS. Avoid large inputs while awaiting a fix. \ud83d\udd10 https://radar.offseq.com/threat/cve-2026-48933-cwe-190-integer-overflow-in-nodejs--5c33db78fed81dbe #OffSeq #Nodejs #Vuln", "creation_timestamp": "2026-06-26T04:30:31.789409Z"}, {"uuid": "f6771f1b-a5eb-4856-9e12-2421659c80f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48930", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpalhvozva2d", "content": "\ud83d\udccc CVE-2026-48930 - A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver... https://www.cyberhub.blog/cves/CVE-2026-48930", "creation_timestamp": "2026-06-27T04:07:06.651862Z"}, {"uuid": "3e5c0599-d229-4f30-aeae-2e73519dada3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48931", "type": "seen", "source": "https://bsky.app/profile/tech-trending.bsky.social/post/3mpsjwo7hac2k", "content": "CVE-2026-48931 Shouldn't Have Been a CVE \nhttps://adventures.nodeland.dev/archive/cve-2026-48931-shouldnt-have-been-a-cve/", "creation_timestamp": "2026-07-04T07:27:31.104725Z"}, {"uuid": "089c3a53-db85-4a24-a3ff-1e46bb1818d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpwdjdape723", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48939 \u0432 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0438 iCagenda \u0434\u043b\u044f Joomla: \u0443\u0433\u0440\u043e\u0437\u0430 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/B4898F64-5D8B-4A50-BE10-C10F29B49F90", "creation_timestamp": "2026-07-05T19:43:19.156902Z"}, {"uuid": "0e3e73bb-b0a9-4ea6-af4e-e9d672c11839", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48931", "type": "seen", "source": "https://bsky.app/profile/sxa.fosstodon.org.ap.brid.gy/post/3mq2dhsxjusx2", "content": "An open, honest review of CVE-2026-48931 in #NodeJS by @mcollina and how the fix for it caused a problem for users of the \"node-fetch@2\" module.\n\nnode-fetch@2 is only receiving security fixes now and is kept active because @3 is an ESM module [1] and so may require some migration to use it. @2 [\u2026]", "creation_timestamp": "2026-07-07T09:53:12.686692Z"}, {"uuid": "928ad704-5f1d-4fd2-b3a1-53f3b6e2fcaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48931", "type": "seen", "source": "https://bsky.app/profile/u11g.com/post/3mqa4iyfwoz2y", "content": "The distinction between routine hardening and a CVE matters \u2014 mis-classified advisories create unnecessary panic and can break more downstream users than the original vulnerability ever would.\n\nhttps://adventures.nodeland.dev/archive/cve-2026-48931-shouldnt-have-been-a-cve", "creation_timestamp": "2026-07-09T17:04:29.033759Z"}, {"uuid": "0ca0bbd1-d8d0-4e95-906d-caf0e915a2c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://infosec.exchange/users/AAKL/statuses/116896829543133479", "content": "CISA has added two vulnerabilities to the KEV catalogue.\n-  CVE-2026-48939: iCagenda Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-48939\n-  CVE-2026-56291: Balbooa Forms Unrestricted Upload of File with Dangerous Type Vulnerability https://www.cve.org/CVERecord?id=CVE-2026-56291 #CISA #infosec #vulnerability", "creation_timestamp": "2026-07-10T17:21:04.761918Z"}, {"uuid": "3049c782-5bd4-44f0-bd93-16c94bc32fc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqcp6rngha2b", "content": "CVE-2026-48939 - icagenda [known exploited]\nThe iCagenda extension for Joomla allows attackers to upload malicious files, potentially leading to the execution of PHP code. This could compromise the security\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#icagenda #joomlic #CVE #infosec", "creation_timestamp": "2026-07-10T17:44:06.935410Z"}, {"uuid": "9a65cd2e-aa10-4798-9e2c-5aae9d583c9f", "vulnerability_lookup_origin": "405284c2-e461-4670-8979-7fd2c9755a60", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/349ea528-8815-4e8a-812a-918abda44b5f", "content": "", "creation_timestamp": "2026-07-10T18:00:02.701206Z"}, {"uuid": "b45bc1a1-6801-4c16-8b4e-503de277637b", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/e8ce3b4b-518e-4cc5-ad71-9781806a54ef", "content": "", "creation_timestamp": "2026-07-10T18:00:24.561275Z"}, {"uuid": "67235208-0c79-4d47-9f64-abd35b53e369", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/cvesentinel.bsky.social/post/3mqcr534agp2j", "content": "\ud83d\uded1 CVE-2026-48939\niCagenda iCagenda\nCVSS 10.0 / EPSS 1% / KEV \u2705\nTL;DR: A vulnerability in the iCagenda extension for Joomla allows the upload of arbitrary files \u2026\nhttps://cvesentinel.com/report/CVE-2026-48939?utm_source=bluesky&amp;utm_medium=social&amp;utm_campaign=cvesentinel\n#infosec #CVE #vulnerability", "creation_timestamp": "2026-07-10T18:18:56.671002Z"}, {"uuid": "a16f6222-bd3f-4cfa-b52a-289d73661f46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/happeningnow.news/post/3mqcww6zvhz2f", "content": "CISA Adds Two Known Exploited Vulnerabilities to Catalog\nCISA has added two new vulnerabilities to its Known Exploited Vulnerabilities (KEV) Catalog , based on evidence of active exploitation. CVE-2026-48939 iCagenda Unrestricted Upload\u2026\n\n\ud83d\udd17 https://hnow.live/a/1160719f", "creation_timestamp": "2026-07-10T20:02:28.893487Z"}, {"uuid": "1c5306a1-1caa-4f7d-9b50-b86f614471cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/6961009", "content": "2026-07-10: [CVE-2026-48939] iCagenda Unrestricted Upload of File with Dangerous Type VulnerabilityiCagenda contains an unrestricted upload of file with dangerous type vulnerability that allows the upload of arbitrary files in the file attachment feature, ultimately resulting in PHP code upload and execution.\ncisakev", "creation_timestamp": "2026-07-10T21:00:25.313943Z"}, {"uuid": "e370c894-aca2-4d93-aff9-c4e1429c8503", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdek725kc2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48939 \u0432 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0438 iCagenda \u0434\u043b\u044f Joomla: \u0443\u0433\u0440\u043e\u0437\u0430 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/394E4504-A538-422A-9DE6-D5EC7D4CA278", "creation_timestamp": "2026-07-11T00:06:18.378442Z"}, {"uuid": "6aeaae95-3095-4bed-a781-4fb73d453c01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdgjw633j2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48939 \u0432 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0438 iCagenda \u0434\u043b\u044f Joomla: \u0443\u0433\u0440\u043e\u0437\u0430 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/A1AB5475-6F6B-416C-A06D-67A3D02545AD", "creation_timestamp": "2026-07-11T00:41:56.155499Z"}, {"uuid": "84d4af59-6abe-4846-93a1-8873f69daa27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/qiancx.bsky.social/post/3mqdgk5sbg326", "content": "Joomla iCagenda \u63d2\u4ef6\u6f0f\u6d1e CVE-2026-48939:\u4efb\u610f\u6587\u4ef6\u4e0a\u4f20\u98ce\u9669\u4e0e\u5b89\u5168\u9632\u62a4\u6307\u5357\n\n\n\nhttps://qian.cx/posts/5DD651F3-1137-44AF-A3D0-A0FD2F28CEA2", "creation_timestamp": "2026-07-11T00:42:04.147611Z"}, {"uuid": "7d522890-0343-4303-8252-2d01cf761e3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116907369274600216", "content": "\ud83d\udcf0 CISA Adds Two Actively Exploited Joomla Plugin Flaws to KEV Catalog\n\ud83d\udce2 CISA KEV UPDATE: Two Joomla plugin vulnerabilities are now listed as actively exploited. CVE-2026-48939 (iCagenda) &amp; CVE-2026-56291 (Balbooa Forms) allow file uploads and server takeover. Patch immediately! #CISA #KEV #Joomla #Vulnerability\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/cisa-adds-joomla-icagenda-balbooa-flaws-to-kev-catalog/?utm_source=mastodon&amp;utm_medium=social&amp;utm_campaign=daily", "creation_timestamp": "2026-07-12T14:01:28.613265Z"}, {"uuid": "dc656c8a-c364-425d-b3e2-7cd83342b734", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48939", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mqhdpsawu725", "content": "\ud83d\udce2 CISA KEV UPDATE: Two Joomla plugin vulnerabilities are now listed as actively exploited. CVE-2026-48939 (iCagenda) &amp; CVE-2026-56291 (Balbooa Forms) allow file uploads and server takeover. Patch immediately! #CISA #KEV #Joomla #Vulnerability\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-07-12T14:02:12.055669Z"}]}