<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-10T22:07:37.323469+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f74aff9a-14bc-47c6-9dde-0f9fc2984711/export</id>
    <title>f74aff9a-14bc-47c6-9dde-0f9fc2984711</title>
    <updated>2026-07-10T22:07:37.345324+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f74aff9a-14bc-47c6-9dde-0f9fc2984711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25604", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mppzmuuth32m", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-25604 \u0432 AWS Auth Manager: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/5907F8A5-215F-49D1-A241-8302EE823273", "creation_timestamp": "2026-07-03T07:30:25.353011Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f74aff9a-14bc-47c6-9dde-0f9fc2984711/export"/>
    <published>2026-07-03T07:30:25.353011+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cee1a12f-eb4c-4670-803f-c79b91a8c380/export</id>
    <title>cee1a12f-eb4c-4670-803f-c79b91a8c380</title>
    <updated>2026-07-10T22:07:37.348283+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cee1a12f-eb4c-4670-803f-c79b91a8c380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25600", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mna53iop2j2j", "content": "CVE-2026-25600 - Credential Exposure Vulnerability in Trac PDBM\nCVE ID : CVE-2026-25600\n \n Published : June 1, 2026, 11:16 a.m. | 1\u00a0hour, 16\u00a0minutes ago\n \n Description : The PDBM application relies on a static, hard\u2011coded secret embedded \nin the PDBM.exe executable. This secre...", "creation_timestamp": "2026-06-01T12:59:14.591475Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cee1a12f-eb4c-4670-803f-c79b91a8c380/export"/>
    <published>2026-06-01T12:59:14.591475+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c602b720-9f76-4551-8f48-34602bd382fd/export</id>
    <title>c602b720-9f76-4551-8f48-34602bd382fd</title>
    <updated>2026-07-10T22:07:37.348455+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c602b720-9f76-4551-8f48-34602bd382fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25608", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgzrv4iaa2e", "content": "CVE-2026-25608 - Lack of traffic encryption in STER\nCVE ID : CVE-2026-25608\n \n Published : May 22, 2026, 10:16 a.m. | 2\u00a0hours, 3\u00a0minutes ago\n \n Description : STER uses unencrypted TCP traffic to transmit data over the network. It allows an attacker to\u00a0conduct a Man-In-The-Midd...", "creation_timestamp": "2026-05-22T13:23:37.563676Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c602b720-9f76-4551-8f48-34602bd382fd/export"/>
    <published>2026-05-22T13:23:37.563676+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/88463fe8-25d1-485d-a538-28c15964c358/export</id>
    <title>88463fe8-25d1-485d-a538-28c15964c358</title>
    <updated>2026-07-10T22:07:37.348571+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "88463fe8-25d1-485d-a538-28c15964c358", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25607", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgybe5ykk2p", "content": "CVE-2026-25607 - Weak password encoding in STER\nCVE ID : CVE-2026-25607\n \n Published : May 22, 2026, 10:16 a.m. | 2\u00a0hours, 3\u00a0minutes ago\n \n Description : Use of a weak password encoding algorithm in STER software allows the value of the password to be guessed after analyzing h...", "creation_timestamp": "2026-05-22T12:56:29.127402Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/88463fe8-25d1-485d-a538-28c15964c358/export"/>
    <published>2026-05-22T12:56:29.127402+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c583e31b-30da-469b-a77f-1836e5321283/export</id>
    <title>c583e31b-30da-469b-a77f-1836e5321283</title>
    <updated>2026-07-10T22:07:37.348681+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c583e31b-30da-469b-a77f-1836e5321283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25606", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmgqtymixw2i", "content": "CVE-2026-25606 - SQL Injection in STER\nCVE ID : CVE-2026-25606\n \n Published : May 22, 2026, 9:14 a.m. | 1\u00a0hour, 7\u00a0minutes ago\n \n Description : A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filt...", "creation_timestamp": "2026-05-22T10:43:44.641414Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c583e31b-30da-469b-a77f-1836e5321283/export"/>
    <published>2026-05-22T10:43:44.641414+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/91607148-defd-48b8-9d42-fb110a67c7ab/export</id>
    <title>91607148-defd-48b8-9d42-fb110a67c7ab</title>
    <updated>2026-07-10T22:07:37.348785+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "91607148-defd-48b8-9d42-fb110a67c7ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25606", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmgq4dhyyh2o", "content": "HIGH severity SQL Injection in STER (CIOP-PIB)! Authenticated users can access sensitive data. Fix: upgrade to v9.5 ASAP. \ud83d\udd12 https://radar.offseq.com/threat/cve-2026-25606-cwe-89-improper-neutralization-of-s-41b4f04f #OffSeq #SQLInjection #Security", "creation_timestamp": "2026-05-22T10:30:31.184147Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/91607148-defd-48b8-9d42-fb110a67c7ab/export"/>
    <published>2026-05-22T10:30:31.184147+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d760fc24-8e37-4417-965f-255c593592e9/export</id>
    <title>d760fc24-8e37-4417-965f-255c593592e9</title>
    <updated>2026-07-10T22:07:37.348884+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d760fc24-8e37-4417-965f-255c593592e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-25606", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116617761811334726", "content": "STER (Centralny Instytut Ochrony Pracy) faces a HIGH severity SQL Injection (CVE-2026-25606, CVSS 8.7). Authenticated attackers can access sensitive data via search filters. Patch by upgrading to v9.5. \ud83d\udee1\ufe0f https://radar.offseq.com/threat/cve-2026-25606-cwe-89-improper-neutralization-of-s-41b4f04f #OffSeq #SQLInjection #Vuln #Infosec", "creation_timestamp": "2026-05-22T10:30:29.600059Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d760fc24-8e37-4417-965f-255c593592e9/export"/>
    <published>2026-05-22T10:30:29.600059+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d79fd5d5-87f4-49e2-941a-a5b4d72513ec/export</id>
    <title>d79fd5d5-87f4-49e2-941a-a5b4d72513ec</title>
    <updated>2026-07-10T22:07:37.349001+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "d79fd5d5-87f4-49e2-941a-a5b4d72513ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-25608", "type": "seen", "source": "https://cert.pl/en/posts/2026/05/CVE-2026-25606", "content": "", "creation_timestamp": "2026-05-22T03:55:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d79fd5d5-87f4-49e2-941a-a5b4d72513ec/export"/>
    <published>2026-05-22T03:55:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/643a756d-a3e1-4609-8b6e-9006d6a4c187/export</id>
    <title>643a756d-a3e1-4609-8b6e-9006d6a4c187</title>
    <updated>2026-07-10T22:07:37.350201+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "643a756d-a3e1-4609-8b6e-9006d6a4c187", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-25606", "type": "seen", "source": "https://cert.pl/en/posts/2026/05/CVE-2026-25606", "content": "", "creation_timestamp": "2026-05-22T03:55:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/643a756d-a3e1-4609-8b6e-9006d6a4c187/export"/>
    <published>2026-05-22T03:55:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/32ab2ee7-0b0f-496b-a0a4-d57cd0dca9ba/export</id>
    <title>32ab2ee7-0b0f-496b-a0a4-d57cd0dca9ba</title>
    <updated>2026-07-10T22:07:37.350332+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "32ab2ee7-0b0f-496b-a0a4-d57cd0dca9ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-25607", "type": "seen", "source": "https://cert.pl/en/posts/2026/05/CVE-2026-25606", "content": "", "creation_timestamp": "2026-05-22T03:55:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/32ab2ee7-0b0f-496b-a0a4-d57cd0dca9ba/export"/>
    <published>2026-05-22T03:55:00+00:00</published>
  </entry>
</feed>
