<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 06 Jul 2026 20:44:20 +0000</lastBuildDate>
    <item>
      <title>539db8f8-2dd3-4d46-9b47-b383a3469ee0</title>
      <link>https://vulnerability.circl.lu/sighting/539db8f8-2dd3-4d46-9b47-b383a3469ee0/export</link>
      <description>{"uuid": "539db8f8-2dd3-4d46-9b47-b383a3469ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpypo5e3fk2s", "content": "CVE-2026-46454 - apache camel\nApache Camel's CometD component doesn't check incoming messages for security. This allows unauthenticated clients to inject custom headers that can affect how the\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T18:26:04.940886Z"}</description>
      <content:encoded>{"uuid": "539db8f8-2dd3-4d46-9b47-b383a3469ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpypo5e3fk2s", "content": "CVE-2026-46454 - apache camel\nApache Camel's CometD component doesn't check incoming messages for security. This allows unauthenticated clients to inject custom headers that can affect how the\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#apachecamel #apachefoundation #CVE #infosec", "creation_timestamp": "2026-07-06T18:26:04.940886Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/539db8f8-2dd3-4d46-9b47-b383a3469ee0/export</guid>
      <pubDate>Mon, 06 Jul 2026 18:26:04 +0000</pubDate>
    </item>
    <item>
      <title>520a5c16-101f-4cd9-96d5-c2b06d0ecfda</title>
      <link>https://vulnerability.circl.lu/sighting/520a5c16-101f-4cd9-96d5-c2b06d0ecfda/export</link>
      <description>{"uuid": "520a5c16-101f-4cd9-96d5-c2b06d0ecfda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwd6qnra62b", "content": "CVE-2026-46454: Apache Camel: Camel-Cometd: Inbound Bayeux message headers are mapped into the Exchange without a HeaderFilterStrategy, allowing unauthenticated clients to inject Camel control headers", "creation_timestamp": "2026-07-05T19:37:23.534111Z"}</description>
      <content:encoded>{"uuid": "520a5c16-101f-4cd9-96d5-c2b06d0ecfda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-46454", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwd6qnra62b", "content": "CVE-2026-46454: Apache Camel: Camel-Cometd: Inbound Bayeux message headers are mapped into the Exchange without a HeaderFilterStrategy, allowing unauthenticated clients to inject Camel control headers", "creation_timestamp": "2026-07-05T19:37:23.534111Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/520a5c16-101f-4cd9-96d5-c2b06d0ecfda/export</guid>
      <pubDate>Sun, 05 Jul 2026 19:37:23 +0000</pubDate>
    </item>
  </channel>
</rss>
