<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T05:27:55.649418+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b8ec84d5-d36a-49bd-9d82-38d1ce8361d3/export</id>
    <title>b8ec84d5-d36a-49bd-9d82-38d1ce8361d3</title>
    <updated>2026-07-15T05:27:55.676856+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b8ec84d5-d36a-49bd-9d82-38d1ce8361d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12582", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqlalbf6pv26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-12582 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Library Management System \u0434\u043b\u044f WordPress: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/5B03882E-1602-4687-BC5E-9004D5760E4C", "creation_timestamp": "2026-07-14T03:16:37.157310Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b8ec84d5-d36a-49bd-9d82-38d1ce8361d3/export"/>
    <published>2026-07-14T03:16:37.157310+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/af3c061e-bbda-48bc-ac7b-4c7b951d7d30/export</id>
    <title>af3c061e-bbda-48bc-ac7b-4c7b951d7d30</title>
    <updated>2026-07-15T05:27:55.679248+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "af3c061e-bbda-48bc-ac7b-4c7b951d7d30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12582", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqkvlzkiil22", "content": "CVE-2026-12582. CVSS 8.6. Library Management System plugin leaks password hashes and database credentials via SQL injection. No auth needed. Any visitor executes it. No patch available \u2014 disable the plugin now. Scan your WordPress site: pulse-wp.com\n#WordPress #SQLi #CyberSecurity", "creation_timestamp": "2026-07-14T00:00:12.795592Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/af3c061e-bbda-48bc-ac7b-4c7b951d7d30/export"/>
    <published>2026-07-14T00:00:12.795592+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e539f9c5-67c3-4eaa-bdba-de298bba6eda/export</id>
    <title>e539f9c5-67c3-4eaa-bdba-de298bba6eda</title>
    <updated>2026-07-15T05:27:55.679350+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e539f9c5-67c3-4eaa-bdba-de298bba6eda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12582", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqj6pwb4zr22", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-12582 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Library Management System \u0434\u043b\u044f WordPress: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/F55727B7-0C8A-4A5B-9BD3-C8D557E02AA6", "creation_timestamp": "2026-07-13T07:38:06.488378Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e539f9c5-67c3-4eaa-bdba-de298bba6eda/export"/>
    <published>2026-07-13T07:38:06.488378+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/539b9cf8-d7a1-4670-a751-49889a9f3940/export</id>
    <title>539b9cf8-d7a1-4670-a751-49889a9f3940</title>
    <updated>2026-07-15T05:27:55.679421+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "539b9cf8-d7a1-4670-a751-49889a9f3940", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12582", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqj6cbiqal2d", "content": "SQL injection (CVE-2026-12582) in Library Management System plugin v3.5 (HIGH) lets unauthenticated attackers steal sensitive data. Restrict plugin use &amp;amp; watch for suspicious activity. https://radar.offseq.com/threat/cve-2026-12582-cwe-89-sql-injection-in-library-man-58d0848d2e854832 #OffSeq #Wor...", "creation_timestamp": "2026-07-13T07:30:28.848452Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/539b9cf8-d7a1-4670-a751-49889a9f3940/export"/>
    <published>2026-07-13T07:30:28.848452+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2f8c7d94-756d-41be-bdaf-d8a03fa461a2/export</id>
    <title>2f8c7d94-756d-41be-bdaf-d8a03fa461a2</title>
    <updated>2026-07-15T05:27:55.679488+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2f8c7d94-756d-41be-bdaf-d8a03fa461a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-12582", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116911494012539173", "content": "CVE-2026-12582: HIGH severity SQL injection in Library Management System plugin v3.5 for WordPress. Unauthenticated attackers can extract sensitive DB data. No official fix yet \u2014 restrict use &amp;amp; monitor logs. https://radar.offseq.com/threat/cve-2026-12582-cwe-89-sql-injection-in-library-man-58d0848d2e854832 #OffSeq #WordPress #Infosec", "creation_timestamp": "2026-07-13T07:30:26.837230Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2f8c7d94-756d-41be-bdaf-d8a03fa461a2/export"/>
    <published>2026-07-13T07:30:26.837230+00:00</published>
  </entry>
</feed>
