<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-11T20:38:38.587858+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7158696b-1725-4be7-be94-bf02036c2a67/export</id>
    <title>7158696b-1725-4be7-be94-bf02036c2a67</title>
    <updated>2026-07-11T20:38:38.610395+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7158696b-1725-4be7-be94-bf02036c2a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26759", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7158696b-1725-4be7-be94-bf02036c2a67/export"/>
    <published>2025-08-25T18:31:43+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/db7efb39-34a0-48bd-a56a-2811840d437e/export</id>
    <title>db7efb39-34a0-48bd-a56a-2811840d437e</title>
    <updated>2026-07-11T20:38:38.613961+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "db7efb39-34a0-48bd-a56a-2811840d437e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26755", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/db7efb39-34a0-48bd-a56a-2811840d437e/export"/>
    <published>2025-08-25T18:31:43+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9b2417fc-dfd5-45e0-a57a-dd0df5b243df/export</id>
    <title>9b2417fc-dfd5-45e0-a57a-dd0df5b243df</title>
    <updated>2026-07-11T20:38:38.614196+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9b2417fc-dfd5-45e0-a57a-dd0df5b243df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ll3vwklrbk2l", "content": "", "creation_timestamp": "2025-03-24T04:23:58.794982Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9b2417fc-dfd5-45e0-a57a-dd0df5b243df/export"/>
    <published>2025-03-24T04:23:58.794982+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c0402614-560f-4299-8971-a43d50008942/export</id>
    <title>c0402614-560f-4299-8971-a43d50008942</title>
    <updated>2026-07-11T20:38:38.614381+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c0402614-560f-4299-8971-a43d50008942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "seen", "source": "https://t.me/cvedetector/20930", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2675 - PHPGurukul Bank Locker Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2675 \nPublished : March 24, 2025, 1:15 a.m. | 1\u00a0hour, 25\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in PHPGurukul Bank Locker Management System 1.0. Affected by this issue is some unknown functionality of the file /add-lockertype.php. The manipulation of the argument lockerprice leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-24T04:11:17.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c0402614-560f-4299-8971-a43d50008942/export"/>
    <published>2025-03-24T04:11:17+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/90c6edb4-65f3-461a-b0c7-6408e85c095b/export</id>
    <title>90c6edb4-65f3-461a-b0c7-6408e85c095b</title>
    <updated>2026-07-11T20:38:38.614579+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "90c6edb4-65f3-461a-b0c7-6408e85c095b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "published-proof-of-concept", "source": "Telegram/TxYF2rNxgao0QlSERqOAIAGczvgtgedogrr1QU2ew4YiRfY", "content": "", "creation_timestamp": "2025-03-24T02:31:04.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/90c6edb4-65f3-461a-b0c7-6408e85c095b/export"/>
    <published>2025-03-24T02:31:04+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/91d60598-de4d-48ca-8254-1cd396b7e472/export</id>
    <title>91d60598-de4d-48ca-8254-1cd396b7e472</title>
    <updated>2026-07-11T20:38:38.614748+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "91d60598-de4d-48ca-8254-1cd396b7e472", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26752", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114065783798975123", "content": "", "creation_timestamp": "2025-02-25T17:48:55.666960Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/91d60598-de4d-48ca-8254-1cd396b7e472/export"/>
    <published>2025-02-25T17:48:55.666960+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/37630df8-674c-4b86-a31a-77985e45cc25/export</id>
    <title>37630df8-674c-4b86-a31a-77985e45cc25</title>
    <updated>2026-07-11T20:38:38.614857+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "37630df8-674c-4b86-a31a-77985e45cc25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26757", "type": "seen", "source": "https://t.me/cvedetector/18727", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26757 - Full Services Full Customer PHP Remote File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26757 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FULL SERVICES FULL Customer allows PHP Local File Inclusion. This issue affects FULL Customer: from n/a through 3.1.26. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:16.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/37630df8-674c-4b86-a31a-77985e45cc25/export"/>
    <published>2025-02-22T19:10:16+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8bd8078a-e1b4-46dd-a698-f611d34c33d9/export</id>
    <title>8bd8078a-e1b4-46dd-a698-f611d34c33d9</title>
    <updated>2026-07-11T20:38:38.614956+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8bd8078a-e1b4-46dd-a698-f611d34c33d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26756", "type": "seen", "source": "https://t.me/cvedetector/18726", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26756 - Grimdonkey Magic the Gathering Card Tooltips Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-26756 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grimdonkey Magic the Gathering Card Tooltips allows Stored XSS. This issue affects Magic the Gathering Card Tooltips: from n/a through 3.5.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:15.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8bd8078a-e1b4-46dd-a698-f611d34c33d9/export"/>
    <published>2025-02-22T19:10:15+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5e21852e-18f3-4e16-b142-d2bc59603d2d/export</id>
    <title>5e21852e-18f3-4e16-b142-d2bc59603d2d</title>
    <updated>2026-07-11T20:38:38.615052+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5e21852e-18f3-4e16-b142-d2bc59603d2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26750", "type": "seen", "source": "https://t.me/cvedetector/18725", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26750 - Vitepos Appsbd Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26750 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Vitepos: from n/a through 3.1.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:11.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5e21852e-18f3-4e16-b142-d2bc59603d2d/export"/>
    <published>2025-02-22T19:10:11+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7fb2e5d8-7601-47dd-b378-df7761f87a28/export</id>
    <title>7fb2e5d8-7601-47dd-b378-df7761f87a28</title>
    <updated>2026-07-11T20:38:38.615149+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7fb2e5d8-7601-47dd-b378-df7761f87a28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26750", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5041", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-26750\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Vitepos: from n/a through 3.1.3.\n\ud83d\udccf Published: 2025-02-22T15:52:11.429Z\n\ud83d\udccf Modified: 2025-02-22T15:52:11.429Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/vitepos-lite/vulnerability/wordpress-vitepos-plugin-3-1-3-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-02-22T16:25:13.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7fb2e5d8-7601-47dd-b378-df7761f87a28/export"/>
    <published>2025-02-22T16:25:13+00:00</published>
  </entry>
</feed>
