https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 16 Jun 2026 10:04:05 +0000 https://vulnerability.circl.lu/sighting/d161afe7-1171-421a-a0bd-3889f72df2a2/export {"uuid": "d161afe7-1171-421a-a0bd-3889f72df2a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50628", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mnzt3n3bgh2t", "content": "CVE-2026-50628: Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control", "creation_timestamp": "2026-06-11T18:09:35.218074Z"} {"uuid": "d161afe7-1171-421a-a0bd-3889f72df2a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50628", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mnzt3n3bgh2t", "content": "CVE-2026-50628: Apache CXF: OAuth2: Inverted IP Binding Check Defeats Security Control", "creation_timestamp": "2026-06-11T18:09:35.218074Z"} https://vulnerability.circl.lu/sighting/d161afe7-1171-421a-a0bd-3889f72df2a2/export Thu, 11 Jun 2026 18:09:35 +0000 https://vulnerability.circl.lu/sighting/bd0c9a71-fdc8-41ec-a1cd-ccaae7dce911/export {"uuid": "bd0c9a71-fdc8-41ec-a1cd-ccaae7dce911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50628", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3moduzgn7pc2o", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-50628\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nA logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while blindly allowing requests from any other IP address. Enabling this\n\nsecurity feature inadvertently creates an inverse security che", "creation_timestamp": "2026-06-15T18:10:45.933209Z"} {"uuid": "bd0c9a71-fdc8-41ec-a1cd-ccaae7dce911", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50628", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3moduzgn7pc2o", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-50628\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nA logic error in OAuthRequestFilter rejects legitimate requests originating from the bound IP address, while blindly allowing requests from any other IP address. Enabling this\n\nsecurity feature inadvertently creates an inverse security che", "creation_timestamp": "2026-06-15T18:10:45.933209Z"} https://vulnerability.circl.lu/sighting/bd0c9a71-fdc8-41ec-a1cd-ccaae7dce911/export Mon, 15 Jun 2026 18:10:45 +0000