{"vulnerability": "cve-2026-4530", "sightings": [{"uuid": "7cc02c71-169d-458a-a848-1c8b37e9e339", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4530", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhmafmfmzm24", "content": "", "creation_timestamp": "2026-03-21T23:59:22.359494Z"}, {"uuid": "29e9cb8a-c057-4c60-9ecd-362124a0bb97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45300", "type": "published-proof-of-concept", "source": "https://github.com/AsyncHttpClient/async-http-client/security/advisories/GHSA-fmxf-pm6p-7xgm", "content": "", "creation_timestamp": "2026-05-12T21:02:02.000000Z"}, {"uuid": "eb86e4d5-0177-4e83-9d54-2c68e460aa1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45303", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlwljnotjv2n", "content": "CVE-2026-45303 - Open WebUI: Stored XSS via the HTML renedering view\nCVE ID : CVE-2026-45303\n \n Published : May 15, 2026, 10:16 p.m. | 1\u00a0hour, 19\u00a0minutes ago\n \n Description : Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Pri...", "creation_timestamp": "2026-05-16T00:25:52.929913Z"}, {"uuid": "861f1611-e6b5-4399-bc9c-75587e9b620f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45304", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqvwpzgz2u", "content": "\ud83d\udd10 CVE-2026-45304: YAML Parser Exponential Memory Allocation via Recursive Collection-Alias Expansion (\"Billion Laughs\")\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45304-yaml-parser-exponential-memory-allocation-via-recursive-collection-alias-expansion-billion-laughs", "creation_timestamp": "2026-05-20T11:01:30.942875Z"}, {"uuid": "146994bc-8842-4d39-936c-e6924a8aade1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-45305", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqw55zbs2b", "content": "\ud83d\udd10 CVE-2026-45305: YAML Parser ReDoS via Catastrophic Backtracking in Parser::cleanup() Regex\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-45305-yaml-parser-redos-via-catastrophic-backtracking-in-parser-cleanup-regex", "creation_timestamp": "2026-05-20T11:01:41.071087Z"}, {"uuid": "9a7c4987-15cb-4c91-82cf-a39693bf67a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45301", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmbxwk4kdn2s", "content": "\ud83d\udccc CVE-2026-45301 - Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.3.16, a missing permission check in all ... https://www.cyberhub.blog/cves/CVE-2026-45301", "creation_timestamp": "2026-05-20T13:07:07.627855Z"}, {"uuid": "525a1397-46b9-4f0b-be86-94aa715cf8c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45304", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:12.957796Z"}, {"uuid": "f7bb16ec-b55b-45b5-acf0-257af5db31c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45305", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qc4eg22q", "content": "\ud83d\udd17 CVE : CVE-2026-45070, CVE-2026-45077, CVE-2026-45304, CVE-2026-45305, CVE-2026-45753, CVE-2026-45754, CVE-2026-45755, CVE-2026-45756, CVE-2026-46626, CVE-2026-47212", "creation_timestamp": "2026-05-20T14:15:13.088251Z"}, {"uuid": "02c0495a-6873-43ab-af8a-8f130ac34f9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45303", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-4vrc-m9ch-6m3r", "content": "", "creation_timestamp": "2026-05-08T20:57:40.000000Z"}, {"uuid": "aeebfdd2-46d7-4c88-9640-486d7484aa92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45301", "type": "published-proof-of-concept", "source": "https://github.com/open-webui/open-webui/security/advisories/GHSA-r8wh-8m7r-fh33", "content": "", "creation_timestamp": "2026-05-08T20:57:06.000000Z"}, {"uuid": "4b52b411-3ca8-4212-98db-77c22e4ed657", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45300", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnl2nqfonh2z", "content": "CVE-2026-45300 - async-http-client: Cookie header not stripped on cross-origin redirect\nCVE ID : CVE-2026-45300\n \n Published : June 5, 2026, 8:17 p.m. | 15\u00a0minutes ago\n \n Description : The AsyncHttpClient (AHC) library allows Java applications to easily execute HTTP requests a...", "creation_timestamp": "2026-06-05T21:15:07.032356Z"}, {"uuid": "18c4bfd1-7daf-49cc-a838-ec0f0aad6b6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45306", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-w727-595x-pc3r", "content": "", "creation_timestamp": "2026-05-14T20:17:27.000000Z"}]}