{"vulnerability": "cve-2026-4575", "sightings": [{"uuid": "7febde09-8c57-418c-95c3-53bd8baba275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4575", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhq2pzbq3k2n", "content": "", "creation_timestamp": "2026-03-23T12:28:28.131324Z"}, {"uuid": "56fa3762-99a2-4755-8e77-60ca24c7a90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45753", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqvsz2q42w", "content": "\ud83d\udd10 CVE-2026-45753: HtmlSanitizer UrlAttributeSanitizer Omits action/formaction/poster/cite: javascript: URI Survives Sanitization (XSS)\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45753-htmlsanitizer-urlattributesanitizer-omits-action-formaction-poster-cite-javascript-uri-survives-sanitization-xss", "creation_timestamp": "2026-05-20T11:01:27.201234Z"}, {"uuid": "303eaead-1fcb-45c7-86d7-0f26ff9a1909", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45756", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqwc2mjq2v", "content": "\ud83d\udd10 CVE-2026-45756: JsonPath Evaluates Attacker-Controlled Regular Expressions in match()/search() Without Limits: ReDoS\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45756-jsonpath-evaluates-attacker-controlled-regular-expressions-in-match-search-without-limits-redos", "creation_timestamp": "2026-05-20T11:01:42.721785Z"}, {"uuid": "c87d8ca9-72ad-48ce-a0d1-2d5ece17a88a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45755", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqwiy2rm2n", "content": "\ud83d\udd10 CVE-2026-45755: Mailtrap Mailer Webhook Parser Never Verifies the X-Mt-Signature HMAC: Unauthenticated Webhook Event Injection\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45755-mailtrap-mailer-webhook-parser-never-verifies-the-x-mt-signature-hmac-unauthenticated-webhook-event-injection", "creation_timestamp": "2026-05-20T11:01:49.967953Z"}, {"uuid": "74ede8d4-f389-4977-a084-eb951c86a9ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45754", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqwngpbt23", "content": "\ud83d\udd10 CVE-2026-45754: Mailjet and LOX24 Webhook Parsers Never Verify the Configured Secret: Unauthenticated Event Injection\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45754-mailjet-and-lox24-webhook-parsers-never-verify-the-configured-secret-unauthenticated-event-injection", "creation_timestamp": "2026-05-20T11:01:54.661697Z"}, {"uuid": "eb35077e-1bcc-468d-8636-4525bd3b129f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45753", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:13.259304Z"}, {"uuid": "01fd1bac-be9d-4867-9b07-a2628ec1f57c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45754", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:13.424178Z"}, {"uuid": "57bbdc01-162c-41d7-854e-d943c5a33ad6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45755", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:13.563851Z"}, {"uuid": "7ff0be15-d610-4b95-9e26-0d07e0f39dbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45756", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:13.715590Z"}, {"uuid": "58bad188-f555-4816-a0a7-57aa6d82a0d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45751", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c", "content": "\ud83d\udd17 CVE : CVE-2026-45747, CVE-2026-45751, CVE-2026-45752, CVE-2026-45759, CVE-2026-45761, CVE-2026-45762, CVE-2026-45763, CVE-2026-45764, CVE-2026-45765, CVE-2026-45766, CVE-2026-45767, CVE-2026-45768, CVE-2026-45769, CVE-2026-45770, CVE-2026-46352, CVE-2026-46387", "creation_timestamp": "2026-05-20T14:15:31.041600Z"}, {"uuid": "90702a50-a60d-466e-ac62-de934d72349a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45752", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c", "content": "\ud83d\udd17 CVE : CVE-2026-45747, CVE-2026-45751, CVE-2026-45752, CVE-2026-45759, CVE-2026-45761, CVE-2026-45762, CVE-2026-45763, CVE-2026-45764, CVE-2026-45765, CVE-2026-45766, CVE-2026-45767, CVE-2026-45768, CVE-2026-45769, CVE-2026-45770, CVE-2026-46352, CVE-2026-46387", "creation_timestamp": "2026-05-20T14:15:31.207855Z"}, {"uuid": "4abb9789-a6f4-4503-83da-8a3ead25b10e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45759", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c", "content": "\ud83d\udd17 CVE : CVE-2026-45747, CVE-2026-45751, CVE-2026-45752, CVE-2026-45759, CVE-2026-45761, CVE-2026-45762, CVE-2026-45763, CVE-2026-45764, CVE-2026-45765, CVE-2026-45766, CVE-2026-45767, CVE-2026-45768, CVE-2026-45769, CVE-2026-45770, CVE-2026-46352, CVE-2026-46387", "creation_timestamp": "2026-05-20T14:15:31.365204Z"}, {"uuid": "17ac7cc4-7aa9-4dc3-9f96-62c7179ebb16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45758", "type": "seen", "source": "https://bsky.app/profile/skuebeck.graz.social.ap.brid.gy/post/3mmnl6set7sc2", "content": "Next supply chain compromise on PyPI! \ud83d\udd25 \ud83d\udd25 \ud83d\udd25\n\nhttps://advisories.gitlab.com/pypi/guardrails-ai/CVE-2026-45758/\n\nUse PipCanary or similar to protect your secrets!\n\nhttps://pypi.org/project/pipcanary/\n\n#cybersecurity #python #pypi", "creation_timestamp": "2026-05-25T03:51:09.034967Z"}, {"uuid": "7d7ef797-1c90-4d54-afbc-5b35a9713002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45750", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnkvpixkry26", "content": "CVE-2026-45750 - Termix Vulnerable to Arbitrary Command Execution in File Manager\nCVE ID : CVE-2026-45750\n \n Published : June 5, 2026, 6:17 p.m. | 57\u00a0minutes ago\n \n Description : Termix is a web-based server management platform with SSH terminal, tunneling, and file editing ca...", "creation_timestamp": "2026-06-05T19:46:33.213013Z"}, {"uuid": "fe0e3427-a838-48ab-be1b-0356da1b0ace", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45750", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnkwktpurz2b", "content": "\ud83d\udd34 CVE-2026-45750 - Critical (9)\n\nTermix is a web-based server management platform with SSH terminal, tunneling, and file editing c...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45750/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-05T20:01:51.977827Z"}, {"uuid": "827c9aa7-a85d-42c1-9c85-c9915b0020d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45758", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnkypx7yrf2l", "content": "CVE-2026-45758 - Malicious code in guardrails-ai 0.10.1 (supply chain compromise)\nCVE ID : CVE-2026-45758\n \n Published : June 5, 2026, 8:17 p.m. | 15\u00a0minutes ago\n \n Description : Guardrails AI is a Python framework that helps build AI applications. On May 11, 2026 at approxima...", "creation_timestamp": "2026-06-05T20:40:29.581622Z"}, {"uuid": "96d2e0f6-13f8-4cb6-b2cd-d250c16f78e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45758", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnkztgtj2x2b", "content": "\ud83d\udd34 CVE-2026-45758 - Critical (9.6)\n\nGuardrails AI is a Python framework that helps build AI applications. On May 11, 2026 at approxim...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-45758/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-05T21:00:21.145921Z"}, {"uuid": "d197b9e0-35fb-4917-bd9c-2dc8b82ec5e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45758", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mnlxza77nx2p", "content": "CRITICAL: Malicious guardrails-ai v0.10.1 on PyPI risked credential leaks. Upgrade to 0.10.2 or downgrade now. Rotate credentials & audit GitHub if affected. More: https://radar.offseq.com/threat/cve-2026-45758-cwe-506-embedded-malicious-code-in--296c81fb #OffSeq #infosec #Python", "creation_timestamp": "2026-06-06T06:00:27.414542Z"}, {"uuid": "e7fde595-e053-4aa3-8840-aca0eff6e167", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45758", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116701634540314139", "content": "\ud83d\udea9 CRITICAL threat: guardrails-ai 0.10.1 (PyPI) was malicious for ~2 hrs, risking credential theft. No exfil evidence, but rotate keys & audit if installed. Upgrade to 0.10.2 or downgrade to 0.10.0. CVE-2026-45758 https://radar.offseq.com/threat/cve-2026-45758-cwe-506-embedded-malicious-code-in--296c81fb #OffSeq #infosec #supplychain", "creation_timestamp": "2026-06-06T06:00:39.480141Z"}, {"uuid": "00a78bfa-6635-4b6f-865f-df44929fd30d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45750", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mno3l4i72n2y", "content": "CVE-2026-45750 - Critical OS Command Injection in Termix. Unpatched. CVSS 9.0. Exploitable via file manager path parameter. Upgrade to 2.3.2 or restrict access immediately. #CVE #infosec #Termix\n\nhttps://www.valtersit.com/cve/CVE-2026-45750/", "creation_timestamp": "2026-06-07T02:09:27.796658Z"}, {"uuid": "4fee7005-4957-48d8-8bd0-f78edd882142", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45758", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mns676o4oy2x", "content": "\ud83d\udccc CVE-2026-45758 - Guardrails AI is a Python framework that helps build AI applications. On May 11, 2026 at approximately 6:00 PM Pacific, an attacker published a malici... https://www.cyberhub.blog/cves/CVE-2026-45758", "creation_timestamp": "2026-06-08T17:07:07.759765Z"}, {"uuid": "0eac0fa9-3ca7-4500-a769-9aa33f3871e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45750", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mns7urry4r2b", "content": "\ud83d\udccc CVE-2026-45750 - Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities. Prior to version 2.3.2, the GET /ssh/fil... https://www.cyberhub.blog/cves/CVE-2026-45750", "creation_timestamp": "2026-06-08T17:37:05.934140Z"}, {"uuid": "e491f813-002a-4422-8add-79ff21ad7b54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45758", "type": "seen", "source": "https://bsky.app/profile/cyberowi.pl/post/3mo3zequknl2s", "content": "\ud83d\udea8 Krytyczna luka w guardrails-ai: z\u0142o\u015bliwy pakiet w PyPI krad\u0142 klucze API\n\nZidentyfikowano krytyczn\u0105 luk\u0119 CVE-2026-45758 (CVSS 9.6) w pakiecie Pythona guardrails-ai. Z\u0142o\u015bliwa wersja 0.10.1,\n\nhttps://cyberowi.pl/krytyczna-luka-w-guardrails-ai-zosliwy-pakiet-w-pypi-krad/\n\n#cyberbezpieczenstwo", "creation_timestamp": "2026-06-12T15:07:22.836814Z"}, {"uuid": "d6b9e050-5766-45cc-9970-7d2a0a41ca87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45757", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp2xdfcte427", "content": "CVE-2026-45757 - Rocket.Chat: users.deactivateIdle` deactivates accounts without revoking existing login tokens\nCVE ID : CVE-2026-45757\n \n Published : June 24, 2026, 9:01 p.m. | 42\u00a0minutes ago\n \n Description : Rocket.Chat is an open-source, secure, fully customizable communica...", "creation_timestamp": "2026-06-24T22:23:21.858831Z"}]}