<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T05:19:12.416327+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c9283e2c-67c8-4f57-9505-b26ec31d5787/export</id>
    <title>c9283e2c-67c8-4f57-9505-b26ec31d5787</title>
    <updated>2026-07-12T05:19:12.438039+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c9283e2c-67c8-4f57-9505-b26ec31d5787", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22182", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/2511", "content": "Hey Hunter's,\nDarkShadow is here back again!\n\nOpenCode RCE POC (CVE-2026-22182)\n\nin this CVE the interesting part is, you can execute arbitrary command on the Ai agent but not using any traditional prompting just pure command injection in json\ud83d\udc80\n\nSo guy's if you really enjoy to read POCs then show your love in react \u2764\ufe0f\n\n#bugbountytips #rce #cve", "creation_timestamp": "2026-07-12T00:00:51.718718Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c9283e2c-67c8-4f57-9505-b26ec31d5787/export"/>
    <published>2026-07-12T00:00:51.718718+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/325f3db0-418a-4fd7-97f1-1525158bfa77/export</id>
    <title>325f3db0-418a-4fd7-97f1-1525158bfa77</title>
    <updated>2026-07-12T05:19:12.440815+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "325f3db0-418a-4fd7-97f1-1525158bfa77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22182", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/2511", "content": "Hey Hunter's,\nDarkShadow is here back again!\n\nOpenCode RCE POC (CVE-2026-22182)\n\nin this CVE the interesting part is, you can execute arbitrary command on the Ai agent but not using any traditional prompting just pure command injection in json\ud83d\udc80\n\nSo guy's if you really enjoy to read POCs then show your love in react \u2764\ufe0f\n\n#bugbountytips #rce #cve", "creation_timestamp": "2026-07-11T11:00:05.070385Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/325f3db0-418a-4fd7-97f1-1525158bfa77/export"/>
    <published>2026-07-11T11:00:05.070385+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0c318681-cc65-43f1-86bd-9a41f699b70e/export</id>
    <title>0c318681-cc65-43f1-86bd-9a41f699b70e</title>
    <updated>2026-07-12T05:19:12.440940+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0c318681-cc65-43f1-86bd-9a41f699b70e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22182", "type": "seen", "source": "https://t.me/brutsecurity/2511", "content": "Hey Hunter's,\nDarkShadow is here back again!\n\nOpenCode RCE POC (CVE-2026-22182)\n\nin this CVE the interesting part is, you can execute arbitrary command on the Ai agent but not using any traditional prompting just pure command injection in json\ud83d\udc80\n\nSo guy's if you really enjoy to read POCs then show your love in react \u2764\ufe0f\n\n#bugbountytips #rce #cve", "creation_timestamp": "2026-07-10T00:00:13.221702Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0c318681-cc65-43f1-86bd-9a41f699b70e/export"/>
    <published>2026-07-10T00:00:13.221702+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d4b4d743-b5a1-4be9-8bba-29f1de3a4dd7/export</id>
    <title>d4b4d743-b5a1-4be9-8bba-29f1de3a4dd7</title>
    <updated>2026-07-12T05:19:12.441019+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d4b4d743-b5a1-4be9-8bba-29f1de3a4dd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22182", "type": "seen", "source": "https://t.me/brutsecurity/2511", "content": "Hey Hunter's,\nDarkShadow is here back again!\n\nOpenCode RCE POC (CVE-2026-22182)\n\nin this CVE the interesting part is, you can execute arbitrary command on the Ai agent but not using any traditional prompting just pure command injection in json\ud83d\udc80\n\nSo guy's if you really enjoy to read POCs then show your love in react \u2764\ufe0f\n\n#bugbountytips #rce #cve", "creation_timestamp": "2026-07-09T03:00:05.872422Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d4b4d743-b5a1-4be9-8bba-29f1de3a4dd7/export"/>
    <published>2026-07-09T03:00:05.872422+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c8737764-e919-4bd5-b96d-312c8d41daea/export</id>
    <title>c8737764-e919-4bd5-b96d-312c8d41daea</title>
    <updated>2026-07-12T05:19:12.441092+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c8737764-e919-4bd5-b96d-312c8d41daea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-22182", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhctssbx4f2m", "content": "", "creation_timestamp": "2026-03-18T06:20:09.502860Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c8737764-e919-4bd5-b96d-312c8d41daea/export"/>
    <published>2026-03-18T06:20:09.502860+00:00</published>
  </entry>
</feed>
