<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-11T05:33:29.276707+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/45ced357-7eea-47e1-b0b8-fe720646a7b3/export</id>
    <title>45ced357-7eea-47e1-b0b8-fe720646a7b3</title>
    <updated>2026-07-11T05:33:29.298389+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "45ced357-7eea-47e1-b0b8-fe720646a7b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26773", "type": "seen", "source": "Telegram/EgY-3dooiREg-dALgS8idmo8jFkn1Hp5AACRbJP7ZYbsQN4", "content": "", "creation_timestamp": "2026-04-01T21:28:26.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/45ced357-7eea-47e1-b0b8-fe720646a7b3/export"/>
    <published>2026-04-01T21:28:26+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d501912c-c488-4b85-ab2d-e1a1e01d3dad/export</id>
    <title>d501912c-c488-4b85-ab2d-e1a1e01d3dad</title>
    <updated>2026-07-11T05:33:29.300502+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d501912c-c488-4b85-ab2d-e1a1e01d3dad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26779", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d501912c-c488-4b85-ab2d-e1a1e01d3dad/export"/>
    <published>2025-08-25T18:31:43+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/633e62ec-49c5-457a-bb54-376ea9607749/export</id>
    <title>633e62ec-49c5-457a-bb54-376ea9607749</title>
    <updated>2026-07-11T05:33:29.300597+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "633e62ec-49c5-457a-bb54-376ea9607749", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26776", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-19T02:47:48.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/633e62ec-49c5-457a-bb54-376ea9607749/export"/>
    <published>2025-08-19T02:47:48+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/96ac5073-b251-4de9-9ed1-cedf165174f8/export</id>
    <title>96ac5073-b251-4de9-9ed1-cedf165174f8</title>
    <updated>2026-07-11T05:33:29.300675+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "96ac5073-b251-4de9-9ed1-cedf165174f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26776", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-18T13:31:24.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/96ac5073-b251-4de9-9ed1-cedf165174f8/export"/>
    <published>2025-08-18T13:31:24+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6348ffec-e3dd-425e-b2a8-63b39019fe5d/export</id>
    <title>6348ffec-e3dd-425e-b2a8-63b39019fe5d</title>
    <updated>2026-07-11T05:33:29.300739+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6348ffec-e3dd-425e-b2a8-63b39019fe5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2677", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ll3vwl2b2s24", "content": "", "creation_timestamp": "2025-03-24T04:24:01.127212Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6348ffec-e3dd-425e-b2a8-63b39019fe5d/export"/>
    <published>2025-03-24T04:24:01.127212+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bbeecf61-826b-4828-b751-555fef80a1b2/export</id>
    <title>bbeecf61-826b-4828-b751-555fef80a1b2</title>
    <updated>2026-07-11T05:33:29.300801+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bbeecf61-826b-4828-b751-555fef80a1b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2677", "type": "seen", "source": "https://t.me/cvedetector/20928", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2677 - PHPGurukul Bank Locker Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2677 \nPublished : March 24, 2025, 2:15 a.m. | 25\u00a0minutes ago \nDescription : A vulnerability has been found in PHPGurukul Bank Locker Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /changeidproof.php. The manipulation of the argument editid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-24T04:11:16.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bbeecf61-826b-4828-b751-555fef80a1b2/export"/>
    <published>2025-03-24T04:11:16+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9caca901-9815-462e-8601-8fe5b0215fa7/export</id>
    <title>9caca901-9815-462e-8601-8fe5b0215fa7</title>
    <updated>2026-07-11T05:33:29.300869+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9caca901-9815-462e-8601-8fe5b0215fa7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26776", "type": "seen", "source": "Telegram/gOAPc_68FAytvjpQcxQDSHOoNzTXG0sdIgqMI4upjjdos8Y", "content": "", "creation_timestamp": "2025-03-07T00:31:15.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9caca901-9815-462e-8601-8fe5b0215fa7/export"/>
    <published>2025-03-07T00:31:15+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/77585484-7297-4176-8ae3-292b70a8a853/export</id>
    <title>77585484-7297-4176-8ae3-292b70a8a853</title>
    <updated>2026-07-11T05:33:29.300942+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "77585484-7297-4176-8ae3-292b70a8a853", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26776", "type": "seen", "source": "https://t.me/cybersecplayground/125", "content": "\ud83d\udea8 Critical Zero-Day in Chaty Pro Plugin \u2013 CVE-2025-26776 \ud83d\udea8\n\n\ud83d\udd34 Severity: 10.0 (Critical)\n\ud83d\udd34 Vulnerability: Unrestricted File Upload\n\ud83d\udd34 Impact: Full website takeover via malicious file execution\n\n\u26a0\ufe0f What\u2019s the Risk?\nThe Chaty Pro Plugin is affected by a dangerous file upload vulnerability, allowing attackers to:\n\ud83d\udd25 Upload and execute malicious PHP scripts\n\ud83d\udd25 Gain remote access &amp;amp; escalate privileges\n\ud83d\udd25 Modify or delete website data\n\ud83d\udd25 Deploy web shells for persistent control\n\n\ud83d\udd0d How to Detect Affected Sites?\n\ud83d\udd17 Netlas.io\n\ud83d\udc49\ud83c\udffb Query : http.body:\"plugins/chaty-pro\"\n\n\n\ud83d\udca1 Manual Check:\n1\ufe0f\u20e3 Inspect /wp-content/uploads/chaty/ for suspicious files\n2\ufe0f\u20e3 Review server logs for unexpected file upload activity\n3\ufe0f\u20e3 Ensure the plugin is updated to the latest patched version\n\n\ud83d\ude80 Mitigation Steps\n\u2705 Update Chaty Pro Plugin to the latest security patch\n\u2705 Restrict file upload permissions (only allow safe file types)\n\u2705 Monitor /uploads/ directory for unauthorized files\n\u2705 Implement a Web Application Firewall (WAF)\n\n\ud83d\udcf0 Stay Tuned for more information and poc\n\n\ud83d\udce2 Protect your website today! Join us \ud83d\udc49 @cybersecplayground\n\n#WordPress #ChatyPro #CyberSecurity #WebSecurity #Pentesting", "creation_timestamp": "2025-03-06T23:30:03.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/77585484-7297-4176-8ae3-292b70a8a853/export"/>
    <published>2025-03-06T23:30:03+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bac679fa-e5c7-4bc2-b566-e4615d350139/export</id>
    <title>bac679fa-e5c7-4bc2-b566-e4615d350139</title>
    <updated>2026-07-11T05:33:29.301015+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bac679fa-e5c7-4bc2-b566-e4615d350139", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-26776", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3ljotiuzw622l", "content": "", "creation_timestamp": "2025-03-06T06:10:45.016916Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bac679fa-e5c7-4bc2-b566-e4615d350139/export"/>
    <published>2025-03-06T06:10:45.016916+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a7a79034-075e-4d0e-9fb1-cf88a840942c/export</id>
    <title>a7a79034-075e-4d0e-9fb1-cf88a840942c</title>
    <updated>2026-07-11T05:33:29.301087+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a7a79034-075e-4d0e-9fb1-cf88a840942c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26776", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3litrvidjwc2r", "content": "", "creation_timestamp": "2025-02-23T12:00:07.418990Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a7a79034-075e-4d0e-9fb1-cf88a840942c/export"/>
    <published>2025-02-23T12:00:07.418990+00:00</published>
  </entry>
</feed>
