{"vulnerability": "CVE-2026-49858", "sightings": [{"uuid": "83afe1e3-1598-47ba-b7ce-081ab848cfce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49858", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mnj3tf3oaw2f", "content": "Top 3 CVE for last 7 days:\nCVE-2025-48595: 136 interactions\nCVE-2026-0257: 43 interactions\nCVE-2026-48778: 23 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-49858: 11 interactions\nCVE-2026-20230: 6 interactions\nCVE-2026-10737: 4 interactions\n", "creation_timestamp": "2026-06-05T02:30:47.601272Z"}, {"uuid": "aa01435f-1c85-4a48-ac84-415f5d37e2d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49858", "type": "seen", "source": "https://bsky.app/profile/soyuka.me/post/3mnhlnpjjpc23", "content": "\ud83d\udd12 API Platform CVE-2026-49858: JSON:API & HAL normalizers cached components across users on long-running runtimes (FrankenPHP, RoadRunner, Swoole).\n\nPatched in 4.1.29 / 4.2.25 / 4.3.8 \u2014 upgrade now.\n\ngithub.com/api-platform...", "creation_timestamp": "2026-06-04T12:08:39.389097Z"}]}