<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-08T19:05:12.279504+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ded08e9f-2dae-4163-bef1-4dd4738abbab/export</id>
    <title>ded08e9f-2dae-4163-bef1-4dd4738abbab</title>
    <updated>2026-07-08T19:05:12.297811+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ded08e9f-2dae-4163-bef1-4dd4738abbab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59800", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3ic5zo3y2v", "content": "CVE-2026-59800 - 9router\nAn attacker can execute arbitrary code with root privileges on your system. This can happen if you're using the 9router package and it's running as root. To fix this, update to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#9router #decolua #npm #CVE #infosec", "creation_timestamp": "2026-07-07T20:52:05.573398Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ded08e9f-2dae-4163-bef1-4dd4738abbab/export"/>
    <published>2026-07-07T20:52:05.573398+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9f3b34d5-5fbc-4d65-94fc-4e7aa9cdcc1c/export</id>
    <title>9f3b34d5-5fbc-4d65-94fc-4e7aa9cdcc1c</title>
    <updated>2026-07-08T19:05:12.300769+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "9f3b34d5-5fbc-4d65-94fc-4e7aa9cdcc1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-59800", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-g6g7-pvmx-m74p", "content": "", "creation_timestamp": "2026-07-07T20:35:03.190565Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9f3b34d5-5fbc-4d65-94fc-4e7aa9cdcc1c/export"/>
    <published>2026-07-07T20:35:03.190565+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/25f089cd-7682-48ff-8cc5-54f27013ca49/export</id>
    <title>25f089cd-7682-48ff-8cc5-54f27013ca49</title>
    <updated>2026-07-08T19:05:12.302177+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "25f089cd-7682-48ff-8cc5-54f27013ca49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59800", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq3dwalhqt22", "content": "CVE-2026-59800 - 9Router\nCVE ID : CVE-2026-59800\n \n Published : July 7, 2026, 6:19 p.m. | 55\u00a0minutes ago\n \n Description : 9Router before 0.4.44 contains an OS command injection vulnerability in the unauthenticated POST /api/tunnel/tailscale-install endpoint (this route is not ...", "creation_timestamp": "2026-07-07T19:33:50.831568Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/25f089cd-7682-48ff-8cc5-54f27013ca49/export"/>
    <published>2026-07-07T19:33:50.831568+00:00</published>
  </entry>
</feed>
