https://vulnerability.circl.lu/sightings/feed 2026-06-17T06:45:48.315461+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/bb065a28-ae5e-4284-b74e-033022fae06c/export 2026-06-17T06:45:48.710700+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "bb065a28-ae5e-4284-b74e-033022fae06c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9595", "type": "seen", "source": "https://bsky.app/profile/bjohansebas.me/post/3modjudajts2z", "content": "\ud83d\udd12 New advisory: webpack-dev-server (CVE-2026-9595).\nA proxy with context / and ws: true intercepts the HMR WebSocket, leaking cookies to the backend.\n\u2705 Patched in 5.2.5\n github.com/webpack/webp...", "creation_timestamp": "2026-06-15T14:51:06.228928Z"} 2026-06-15T14:51:06.228928+00:00 https://vulnerability.circl.lu/sighting/edb51ece-b908-430a-a63b-f46779ab398d/export 2026-06-17T06:45:48.708830+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "edb51ece-b908-430a-a63b-f46779ab398d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9595", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3modkqrbuns27", "content": "\ud83d\udea8 Medium-severity security fix in webpack-dev-server@5.2.5 just released!\n\nPatches CVE-2026-9595. webpack-dev-server vulnerable to HMR WebSocket interception via permissive user proxies.\n\ngithub.com/webpack/webp...", "creation_timestamp": "2026-06-15T15:06:59.611656Z"} 2026-06-15T15:06:59.611656+00:00