https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 28 Jun 2026 04:35:43 +0000 https://vulnerability.circl.lu/sighting/2368a10a-c9a7-41f1-8cc3-d282f61b249c/export {"uuid": "2368a10a-c9a7-41f1-8cc3-d282f61b249c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-44727", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mow3tlg6pj2y", "content": "CRITICAL: CVE-2026-44727 impacts jupyter_server <2.20. Stored XSS lets attackers steal cookies & execute code. Patch now \u2014 upgrade to 2.20+ for protection. https://radar.offseq.com/threat/cve-2026-44727-cwe-79-improper-neutralization-of-i-2f84cbe7cd47cddc #OffSeq #Jupyter #XSS", "creation_timestamp": "2026-06-23T00:00:41.809778Z"} {"uuid": "2368a10a-c9a7-41f1-8cc3-d282f61b249c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-44727", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mow3tlg6pj2y", "content": "CRITICAL: CVE-2026-44727 impacts jupyter_server <2.20. Stored XSS lets attackers steal cookies & execute code. Patch now \u2014 upgrade to 2.20+ for protection. https://radar.offseq.com/threat/cve-2026-44727-cwe-79-improper-neutralization-of-i-2f84cbe7cd47cddc #OffSeq #Jupyter #XSS", "creation_timestamp": "2026-06-23T00:00:41.809778Z"} https://vulnerability.circl.lu/sighting/2368a10a-c9a7-41f1-8cc3-d282f61b249c/export Tue, 23 Jun 2026 00:00:41 +0000 https://vulnerability.circl.lu/sighting/7139da80-a26b-491e-adf8-65527bc2a091/export {"uuid": "7139da80-a26b-491e-adf8-65527bc2a091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-44727", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116796479180840470", "content": "CVE-2026-44727: CRITICAL XSS in jupyter_server <2.20. Malicious notebooks can lead to cookie theft & remote code execution due to missing CSP sandboxing. Upgrade to 2.20+ to secure your server. Details: https://radar.offseq.com/threat/cve-2026-44727-cwe-79-improper-neutralization-of-i-2f84cbe7cd47cddc #OffSeq #XSS #Jupyter #Security", "creation_timestamp": "2026-06-23T00:00:43.481582Z"} {"uuid": "7139da80-a26b-491e-adf8-65527bc2a091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-44727", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116796479180840470", "content": "CVE-2026-44727: CRITICAL XSS in jupyter_server <2.20. Malicious notebooks can lead to cookie theft & remote code execution due to missing CSP sandboxing. Upgrade to 2.20+ to secure your server. Details: https://radar.offseq.com/threat/cve-2026-44727-cwe-79-improper-neutralization-of-i-2f84cbe7cd47cddc #OffSeq #XSS #Jupyter #Security", "creation_timestamp": "2026-06-23T00:00:43.481582Z"} https://vulnerability.circl.lu/sighting/7139da80-a26b-491e-adf8-65527bc2a091/export Tue, 23 Jun 2026 00:00:43 +0000 https://vulnerability.circl.lu/sighting/8ce74fe3-74ba-4647-a179-4b0f83cfad27/export {"uuid": "8ce74fe3-74ba-4647-a179-4b0f83cfad27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44727", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpc7guiumt2l", "content": "\ud83d\udccc CVE-2026-44727 - Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyter_server render user-authored notebook... https://www.cyberhub.blog/cves/CVE-2026-44727", "creation_timestamp": "2026-06-27T19:37:06.942079Z"} {"uuid": "8ce74fe3-74ba-4647-a179-4b0f83cfad27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44727", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpc7guiumt2l", "content": "\ud83d\udccc CVE-2026-44727 - Jupyter Server is the backend for Jupyter web applications. Prior to 2.20, the nbconvert HTTP handlers in jupyter_server render user-authored notebook... https://www.cyberhub.blog/cves/CVE-2026-44727", "creation_timestamp": "2026-06-27T19:37:06.942079Z"} https://vulnerability.circl.lu/sighting/8ce74fe3-74ba-4647-a179-4b0f83cfad27/export Sat, 27 Jun 2026 19:37:06 +0000