{"vulnerability": "CVE-2026-50559", "sightings": [{"uuid": "b42cfc88-2790-43cb-b9f3-c999d2b9ecc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50559", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mooeqikk4j2g", "content": "CVE-2026-50559 - Authentication/Authorization Bypass via Advanced Path Normalization Vulnerabilities\nCVE ID : CVE-2026-50559\n \n Published : June 19, 2026, 8:26 p.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : Quarkus is a Java framework for building cloud-native applications. Pr...", "creation_timestamp": "2026-06-19T22:18:43.283587Z"}, {"uuid": "b7967b47-afd3-441a-a334-89ed8dcd525b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-50559", "type": "seen", "source": "https://bsky.app/profile/suriq.io/post/3mooa7iyulz2r", "content": "Quarkus patched a semicolon auth bypass in May. CVE-2026-50559 reopens it with URL-encoded characters, so an unauthenticated request can reach protected routes and files. Patch now; the May fix does not cover it.\n\n#CVE #infosec #cybersecurity", "creation_timestamp": "2026-06-19T20:57:38.885937Z"}]}