https://vulnerability.circl.lu/sightings/feed 2026-06-28T13:46:29.696477+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/0f1b55e3-7997-48fa-b2d8-bded33edf556/export 2026-06-28T13:46:29.718863+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0f1b55e3-7997-48fa-b2d8-bded33edf556", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49984", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp7wmr6lqu2c", "content": "CVE-2026-49984 - Kestra: Path traversal in `LocalStorage` allows any authenticated user to read arbitrary server files via the execution file-download API (`\\..\\` bypasses the `..` guard)\nCVE ID : CVE-2026-49984\n \n Published : June 26, 2026, 8:55 p.m. | 49\u00a0minutes ago\n \n Descr...", "creation_timestamp": "2026-06-26T21:54:01.143420Z"} 2026-06-26T21:54:01.143420+00:00 https://vulnerability.circl.lu/sighting/b6517141-cde1-4bc6-a874-b910d4417e4b/export 2026-06-28T13:46:29.717281+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b6517141-cde1-4bc6-a874-b910d4417e4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49984", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mpbwpywek52m", "content": "\ud83d\udfe0 CVE-2026-49984 - High (7.7)\n\nKestra is an open-source, event-driven orchestration platform. Prior to 1.0.45 and 1.3.23, the lo...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-49984/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-27T17:01:10.784284Z"} 2026-06-27T17:01:10.784284+00:00