<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Thu, 02 Jul 2026 07:54:32 +0000</lastBuildDate>
    <item>
      <title>a25866aa-b920-46b8-aa50-a66888fb608f</title>
      <link>https://vulnerability.circl.lu/sighting/a25866aa-b920-46b8-aa50-a66888fb608f/export</link>
      <description>{"uuid": "a25866aa-b920-46b8-aa50-a66888fb608f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mplt5l6xvz2r", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14198 \u0432 @fastify/middie: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/9B41E31B-2CF4-4154-8BF5-7CF74DC6622F", "creation_timestamp": "2026-07-01T15:23:47.178279Z"}</description>
      <content:encoded>{"uuid": "a25866aa-b920-46b8-aa50-a66888fb608f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mplt5l6xvz2r", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14198 \u0432 @fastify/middie: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/9B41E31B-2CF4-4154-8BF5-7CF74DC6622F", "creation_timestamp": "2026-07-01T15:23:47.178279Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a25866aa-b920-46b8-aa50-a66888fb608f/export</guid>
      <pubDate>Wed, 01 Jul 2026 15:23:47 +0000</pubDate>
    </item>
    <item>
      <title>cb0bd691-85c3-4101-967e-6143d77ba435</title>
      <link>https://vulnerability.circl.lu/sighting/cb0bd691-85c3-4101-967e-6143d77ba435/export</link>
      <description>{"uuid": "cb0bd691-85c3-4101-967e-6143d77ba435", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mplptqhx7q2v", "content": "**\u88fd\u54c1\u540d\u3068\u30d0\u30fc\u30b8\u30e7\u30f3**: `@fastify/middie` 9.1.0\uff5e9.3.2 **\u8106\u5f31\u6027\u306e\u5185\u5bb9**: \u30d1\u30b9\u30d1\u30e9\u30e1\u30fc\u30bf\u5185\u306e\u30a8\u30f3\u30b3\u30fc\u30c9\u3055\u308c\u305f\u30b9\u30e9\u30c3\u30b7\u30e5`%2F`\u306e\u30c7\u30b3\u30fc\u30c9\u51e6\u7406\u304c\u3001\u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u2026\nCVE-2026-14198 CVSS 9.1 | CRITICAL", "creation_timestamp": "2026-07-01T14:24:35.816436Z"}</description>
      <content:encoded>{"uuid": "cb0bd691-85c3-4101-967e-6143d77ba435", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mplptqhx7q2v", "content": "**\u88fd\u54c1\u540d\u3068\u30d0\u30fc\u30b8\u30e7\u30f3**: `@fastify/middie` 9.1.0\uff5e9.3.2 **\u8106\u5f31\u6027\u306e\u5185\u5bb9**: \u30d1\u30b9\u30d1\u30e9\u30e1\u30fc\u30bf\u5185\u306e\u30a8\u30f3\u30b3\u30fc\u30c9\u3055\u308c\u305f\u30b9\u30e9\u30c3\u30b7\u30e5`%2F`\u306e\u30c7\u30b3\u30fc\u30c9\u51e6\u7406\u304c\u3001\u30df\u30c9\u30eb\u30a6\u30a7\u30a2\u2026\nCVE-2026-14198 CVSS 9.1 | CRITICAL", "creation_timestamp": "2026-07-01T14:24:35.816436Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/cb0bd691-85c3-4101-967e-6143d77ba435/export</guid>
      <pubDate>Wed, 01 Jul 2026 14:24:35 +0000</pubDate>
    </item>
    <item>
      <title>65de3f7b-92f9-4bb2-95cb-0c514f03690a</title>
      <link>https://vulnerability.circl.lu/sighting/65de3f7b-92f9-4bb2-95cb-0c514f03690a/export</link>
      <description>{"uuid": "65de3f7b-92f9-4bb2-95cb-0c514f03690a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/giovanni-popolizio.bsky.social/post/3mplneu6flk2f", "content": "CVE: CVE-2026-14198\n\nGravit\u00e0: CVSS 9.1 CRITICAL (CVSS 3.1)\n\nAmbito: Open source / Web application / GitHub Advisory\n\nProdotto rilevato: Non rilevato automaticamente\n\nPoC pubblico: Non rilevato\n\nFonte: NVD / GitHub Advisory\n\nwww.aiutocomputerhelp.it/cve-2026-141...", "creation_timestamp": "2026-07-01T13:40:31.082534Z"}</description>
      <content:encoded>{"uuid": "65de3f7b-92f9-4bb2-95cb-0c514f03690a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/giovanni-popolizio.bsky.social/post/3mplneu6flk2f", "content": "CVE: CVE-2026-14198\n\nGravit\u00e0: CVSS 9.1 CRITICAL (CVSS 3.1)\n\nAmbito: Open source / Web application / GitHub Advisory\n\nProdotto rilevato: Non rilevato automaticamente\n\nPoC pubblico: Non rilevato\n\nFonte: NVD / GitHub Advisory\n\nwww.aiutocomputerhelp.it/cve-2026-141...", "creation_timestamp": "2026-07-01T13:40:31.082534Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/65de3f7b-92f9-4bb2-95cb-0c514f03690a/export</guid>
      <pubDate>Wed, 01 Jul 2026 13:40:31 +0000</pubDate>
    </item>
    <item>
      <title>c37cf8b9-32ef-4694-9eac-544e199a97f4</title>
      <link>https://vulnerability.circl.lu/sighting/c37cf8b9-32ef-4694-9eac-544e199a97f4/export</link>
      <description>{"uuid": "c37cf8b9-32ef-4694-9eac-544e199a97f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mplkphtcre2y", "content": "CVE-2026-14198 - @fastify/middie vulnerable to authorization bypass via encoded slash in path parameter values\nCVE ID : CVE-2026-14198\n \n Published : July 1, 2026, 11:29 a.m. | 17\u00a0minutes ago\n \n Description : @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slas...", "creation_timestamp": "2026-07-01T12:52:43.985053Z"}</description>
      <content:encoded>{"uuid": "c37cf8b9-32ef-4694-9eac-544e199a97f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mplkphtcre2y", "content": "CVE-2026-14198 - @fastify/middie vulnerable to authorization bypass via encoded slash in path parameter values\nCVE ID : CVE-2026-14198\n \n Published : July 1, 2026, 11:29 a.m. | 17\u00a0minutes ago\n \n Description : @fastify/middie versions 9.1.0 through 9.3.2 decode the encoded slas...", "creation_timestamp": "2026-07-01T12:52:43.985053Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c37cf8b9-32ef-4694-9eac-544e199a97f4/export</guid>
      <pubDate>Wed, 01 Jul 2026 12:52:43 +0000</pubDate>
    </item>
    <item>
      <title>14653c28-257c-4825-be70-18f8cd27ec9e</title>
      <link>https://vulnerability.circl.lu/sighting/14653c28-257c-4825-be70-18f8cd27ec9e/export</link>
      <description>{"uuid": "14653c28-257c-4825-be70-18f8cd27ec9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpljyqhw5522", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14198 \u0432 @fastify/middie: \u0447\u0442\u043e \u043d\u0443\u0436\u043d\u043e \u0437\u043d\u0430\u0442\u044c \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430\u043c\n\n\n\nhttps://kripta.biz/posts/9E259A6D-6BB5-4C8A-BA17-BBD7E41E2977", "creation_timestamp": "2026-07-01T12:40:01.153583Z"}</description>
      <content:encoded>{"uuid": "14653c28-257c-4825-be70-18f8cd27ec9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpljyqhw5522", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-14198 \u0432 @fastify/middie: \u0447\u0442\u043e \u043d\u0443\u0436\u043d\u043e \u0437\u043d\u0430\u0442\u044c \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0430\u043c\n\n\n\nhttps://kripta.biz/posts/9E259A6D-6BB5-4C8A-BA17-BBD7E41E2977", "creation_timestamp": "2026-07-01T12:40:01.153583Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/14653c28-257c-4825-be70-18f8cd27ec9e/export</guid>
      <pubDate>Wed, 01 Jul 2026 12:40:01 +0000</pubDate>
    </item>
    <item>
      <title>9eafc664-0c6f-4f4e-9159-ab54329bd91a</title>
      <link>https://vulnerability.circl.lu/sighting/9eafc664-0c6f-4f4e-9159-ab54329bd91a/export</link>
      <description>{"uuid": "9eafc664-0c6f-4f4e-9159-ab54329bd91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3mplgdvyl4c2z", "content": "\ud83d\udea8 Critical-severity security fix in @fastify/middie 9.3.3 just released!\n\nPatches CVE-2026-14198. @fastify/middie vulnerable to authorization bypass via encoded slash in path parameter values.\n\ngithub.com/fastify/midd...", "creation_timestamp": "2026-07-01T11:34:43.163665Z"}</description>
      <content:encoded>{"uuid": "9eafc664-0c6f-4f4e-9159-ab54329bd91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14198", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3mplgdvyl4c2z", "content": "\ud83d\udea8 Critical-severity security fix in @fastify/middie 9.3.3 just released!\n\nPatches CVE-2026-14198. @fastify/middie vulnerable to authorization bypass via encoded slash in path parameter values.\n\ngithub.com/fastify/midd...", "creation_timestamp": "2026-07-01T11:34:43.163665Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9eafc664-0c6f-4f4e-9159-ab54329bd91a/export</guid>
      <pubDate>Wed, 01 Jul 2026 11:34:43 +0000</pubDate>
    </item>
  </channel>
</rss>
