https://vulnerability.circl.lu/sightings/feed 2026-05-28T12:42:11.296168+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/840387a9-063c-4f48-8266-daf631f873d5/export 2026-05-28T12:42:11.302216+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "840387a9-063c-4f48-8266-daf631f873d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmqw5wvnly22", "content": "CISA added CVE-2026-9082 to its exploited list, ordering federal agencies to patch Drupal by Wednesday after active SQL injection attacks hit thousands of sites. #Drupal #CISA #US", "creation_timestamp": "2026-05-26T11:45:25.066777Z"} 2026-05-26T11:45:25.066777+00:00 https://vulnerability.circl.lu/sighting/fa006438-20c2-4e0e-8f18-ee25203828a4/export 2026-05-28T12:42:11.302149+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "fa006438-20c2-4e0e-8f18-ee25203828a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mmqy2oh5ey2s", "content": "A critical SQL injection vulnerability (CVE-2026-9082) in Drupal's core has CISA mandating federal agencies patch by May 27. This unauthenticated flaw allows data theft and RCE, making immediate action crucial for all organizations.\n\nhttps://www.tpp.blog/1geynk1\n\n#cybersecurity #cisa #drupal", "creation_timestamp": "2026-05-26T12:19:22.659478Z"} 2026-05-26T12:19:22.659478+00:00 https://vulnerability.circl.lu/sighting/c59570ea-867a-4436-bb96-c3b0d5f04a67/export 2026-05-28T12:42:11.302081+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "c59570ea-867a-4436-bb96-c3b0d5f04a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mmqz25bamm26", "content": "A critical SQL injection vulnerability (CVE-2026-9082) in Drupal's core has CISA mandating federal agencies patch by May 27. This unauthenticated flaw allows data theft and RCE, making immediate action crucial for all organizations.\n\nhttps://www.tpp.blog/1geynk1\n\n#potatosecurity #cisa #drupal", "creation_timestamp": "2026-05-26T12:36:58.066373Z"} 2026-05-26T12:36:58.066373+00:00 https://vulnerability.circl.lu/sighting/5e003968-33c9-4c0b-aaac-7e4c7fc66129/export 2026-05-28T12:42:11.302019+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "5e003968-33c9-4c0b-aaac-7e4c7fc66129", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/flingjore.com/post/3mmrnjjpdpt26", "content": "CISA mandates all federal agencies secure systems against a critical Drupal SQL injection vulnerability (CVE-2026-9082) by May 27. Flaw currently targets financial and gaming services, prompting urgent warnings for all private-sector administrators to prioritize patching.", "creation_timestamp": "2026-05-26T18:43:29.988759Z"} 2026-05-26T18:43:29.988759+00:00 https://vulnerability.circl.lu/sighting/d65558e4-19bf-438b-b1a3-257d936c827d/export 2026-05-28T12:42:11.301955+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "d65558e4-19bf-438b-b1a3-257d936c827d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/Xuzyh-Oty.closednetwork.social.ap.brid.gy/post/3mmseyse7kcp2", "content": "https://cyberpress.org/exploited-drupal-sql-injection/\nCISA flags exploited Drupal SQL injection flaw CISA added CVE-2026-9082 to its Known Exploited Vulnerabilities catalog after active abuse of a highly critical Drupal Core SQL injection bug", "creation_timestamp": "2026-05-27T01:43:43.112922Z"} 2026-05-27T01:43:43.112922+00:00 https://vulnerability.circl.lu/sighting/5ff6c681-efc2-4212-aade-cbe9f3efbb14/export 2026-05-28T12:42:11.301889+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "5ff6c681-efc2-4212-aade-cbe9f3efbb14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mmskdt7wsi2a", "content": "\ud83d\udcf0 CISA Perintahkan Instansi Pemerintah Segera Tambal Kerentanan SQL Injection Kritis \"CVE-2026-9082\" pada Drupal CMS\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/05/27/cisa-perintahkan-tambal-kerentanan-sql-injection-drupal/\n\n#beritaTeknologi #bindingOperationalDirective #cisaKe", "creation_timestamp": "2026-05-27T03:19:16.403752Z"} 2026-05-27T03:19:16.403752+00:00 https://vulnerability.circl.lu/sighting/59e480e0-7268-47f7-91fc-beba7c8f12d6/export 2026-05-28T12:42:11.301824+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "59e480e0-7268-47f7-91fc-beba7c8f12d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3mmsou2itsc2r", "content": "The latest update for #Indusface includes \"CVE-2026-9082: Critical Drupal SQL Injection Vulnerability Affects #PostgreSQL Deployments\" and \"CVE-2026-44575: Middleware Authorization Bypass in Next.js App Router\".\n \n#cybersecurity #infosec https://opsmtrs.com/3ySs2VF", "creation_timestamp": "2026-05-27T04:39:56.096520Z"} 2026-05-27T04:39:56.096520+00:00 https://vulnerability.circl.lu/sighting/272e47f5-1190-4edb-8d3f-5c50369cf932/export 2026-05-28T12:42:11.301753+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "272e47f5-1190-4edb-8d3f-5c50369cf932", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/86099", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-9082-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a thinhap\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-27 10:27:28\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\n\u65e0\u63cf\u8ff0\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-27T11:00:06.000000Z"} 2026-05-27T11:00:06+00:00 https://vulnerability.circl.lu/sighting/b99fac13-3249-49d9-8d4a-88e9127861ac/export 2026-05-28T12:42:11.301666+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "b99fac13-3249-49d9-8d4a-88e9127861ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "Telegram/ymQhnDFcziGLHK8SJX7axBvcDuNVbRkzysaenktlRf2qI3g", "content": "", "creation_timestamp": "2026-05-27T21:02:47.000000Z"} 2026-05-27T21:02:47+00:00 https://vulnerability.circl.lu/sighting/12777109-9f59-4b89-8a6a-a9b6cdfe94ed/export 2026-05-28T12:42:11.300606+00:00 Automation user https://cvepremium.circl.lu/user/automation {"uuid": "12777109-9f59-4b89-8a6a-a9b6cdfe94ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9082", "type": "seen", "source": "https://bsky.app/profile/PostgreSQL.activitypub.awakari.com.ap.brid.gy/post/3mmvyd4ykvap2", "content": "CVE-2026-9082: Highly Critical SQL Injection Vulnerability in Drupal Core (SA-CORE-2026-004) A highly critical SQL injection vulnerability in Drupal core's database abstraction layer affects si...\n\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-28T12:07:29.191217Z"} 2026-05-28T12:07:29.191217+00:00