<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-03T01:44:51.540324+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d0f835fb-ca0a-4929-bdc2-ec2f84fa028b/export</id>
    <title>d0f835fb-ca0a-4929-bdc2-ec2f84fa028b</title>
    <updated>2026-07-03T01:44:51.566699+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d0f835fb-ca0a-4929-bdc2-ec2f84fa028b", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/b390f7a2-0450-49f7-add2-30396d9cf753", "content": "", "creation_timestamp": "2026-06-23T14:03:01.758712Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d0f835fb-ca0a-4929-bdc2-ec2f84fa028b/export"/>
    <published>2026-06-23T14:03:01.758712+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/38a1c334-1b08-4b94-b6c3-d669c77ec0e2/export</id>
    <title>38a1c334-1b08-4b94-b6c3-d669c77ec0e2</title>
    <updated>2026-07-03T01:44:51.570837+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "38a1c334-1b08-4b94-b6c3-d669c77ec0e2", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/00dbc2e7-258a-400e-9f4e-3481d9b96758", "content": "", "creation_timestamp": "2026-06-19T12:45:09.916596Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/38a1c334-1b08-4b94-b6c3-d669c77ec0e2/export"/>
    <published>2026-06-19T12:45:09.916596+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c18265d1-85af-4cdb-a8f7-0daf9f8bd2f0/export</id>
    <title>c18265d1-85af-4cdb-a8f7-0daf9f8bd2f0</title>
    <updated>2026-07-03T01:44:51.570970+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c18265d1-85af-4cdb-a8f7-0daf9f8bd2f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-3300.yaml", "content": "", "creation_timestamp": "2026-06-09T10:03:15.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c18265d1-85af-4cdb-a8f7-0daf9f8bd2f0/export"/>
    <published>2026-06-09T10:03:15+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/aca7a039-0836-4d82-b02a-b9ada9ec9b4f/export</id>
    <title>aca7a039-0836-4d82-b02a-b9ada9ec9b4f</title>
    <updated>2026-07-03T01:44:51.571072+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "aca7a039-0836-4d82-b02a-b9ada9ec9b4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mntth7xbws2h", "content": "Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access\n\nHackers exploit CVE-2026-3300 in Everest Forms Pro to inject PHP via form fields, creating rogue admin accounts. 29,300 attempts blocked. Researcher h0xilo submitted a flaw in Everest Forms Pro for WordPress, trac\u2026\n#hackernews #news", "creation_timestamp": "2026-06-09T09:00:05.915630Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/aca7a039-0836-4d82-b02a-b9ada9ec9b4f/export"/>
    <published>2026-06-09T09:00:05.915630+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/959d3cf6-4b30-4a5a-95c0-75cc69687ce6/export</id>
    <title>959d3cf6-4b30-4a5a-95c0-75cc69687ce6</title>
    <updated>2026-07-03T01:44:51.571171+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "959d3cf6-4b30-4a5a-95c0-75cc69687ce6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-3300", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mnsolkljqo2t", "content": "\ud83d\udce2 Exploitation active de CVE-2026-3300 dans Everest Forms Pro pour compromettre des sites WordPress\n\ud83d\udcdd \ud83d\udcf0 **Source** : BleepingCompute\u2026\nhttps://cyberveille.ch/posts/2026-06-08-exploitation-active-de-cve-2026-3300-dans-everest-forms-pro-pour-compromettre-des-sites-wordpress/ #CVE_2026_3300 #Cyberveille", "creation_timestamp": "2026-06-08T22:00:22.649052Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/959d3cf6-4b30-4a5a-95c0-75cc69687ce6/export"/>
    <published>2026-06-08T22:00:22.649052+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/516380ba-a606-467e-a3c8-c63b78fabe45/export</id>
    <title>516380ba-a606-467e-a3c8-c63b78fabe45</title>
    <updated>2026-07-03T01:44:51.571276+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "516380ba-a606-467e-a3c8-c63b78fabe45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnrzn3kuyf27", "content": "Critical Everest Forms Pro flaw (CVE-2026-3300) has been exploited for months to inject PHP, create admin accounts, and deploy web shells on WordPress sites. #EverestForms #CVE2026 #WordPress", "creation_timestamp": "2026-06-08T15:45:26.162100Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/516380ba-a606-467e-a3c8-c63b78fabe45/export"/>
    <published>2026-06-08T15:45:26.162100+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9f13f543-2046-4c26-a0c5-de8139f68fbe/export</id>
    <title>9f13f543-2046-4c26-a0c5-de8139f68fbe</title>
    <updated>2026-07-03T01:44:51.571368+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9f13f543-2046-4c26-a0c5-de8139f68fbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/FunctionalProgramming.activitypub.awakari.com.ap.brid.gy/post/3mnrynlbdy422", "content": "Everest Forms Pro WordPress Flaw is Handing Attackers Admin Access Hackers exploit CVE-2026-3300 in Everest Forms Pro to inject PHP via form fields, creating rogue admin accounts. 29,300 attempts b...\n\n#Breaking #News #Hacking #Security #Cybercrime [\u2026] \n\n[Original post on securityaffairs.com]", "creation_timestamp": "2026-06-08T15:27:55.147685Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9f13f543-2046-4c26-a0c5-de8139f68fbe/export"/>
    <published>2026-06-08T15:27:55.147685+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/31854fc4-f4ae-4e3d-9bd1-a93c1528124a/export</id>
    <title>31854fc4-f4ae-4e3d-9bd1-a93c1528124a</title>
    <updated>2026-07-03T01:44:51.571464+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "31854fc4-f4ae-4e3d-9bd1-a93c1528124a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/365tipu.cz/post/3mnrttaipd22r", "content": "Defiant varuje p\u0159ed kritickou zranitelnost\u00ed CVE-2026-3300 v pluginu Everest Forms Pro pro WordPress", "creation_timestamp": "2026-06-08T14:01:29.872262Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/31854fc4-f4ae-4e3d-9bd1-a93c1528124a/export"/>
    <published>2026-06-08T14:01:29.872262+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6976cc1b-ba93-4dc6-b66b-f05462d348e3/export</id>
    <title>6976cc1b-ba93-4dc6-b66b-f05462d348e3</title>
    <updated>2026-07-03T01:44:51.571560+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6976cc1b-ba93-4dc6-b66b-f05462d348e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3300", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mnrowknshm2k", "content": "Unauthenticated attackers can exploit CVE-2026-3300 in Everest Forms Pro to inject and execute arbitrary PHP via Complex Calculation, enabling site takeover.\n", "creation_timestamp": "2026-06-08T12:33:52.582629Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6976cc1b-ba93-4dc6-b66b-f05462d348e3/export"/>
    <published>2026-06-08T12:33:52.582629+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/902e6d1e-85b2-46b9-8ad8-15337c91376a/export</id>
    <title>902e6d1e-85b2-46b9-8ad8-15337c91376a</title>
    <updated>2026-07-03T01:44:51.571652+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "902e6d1e-85b2-46b9-8ad8-15337c91376a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-3300", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mnqwfd2dok2g", "content": "\ud83d\udcf0 Celah Keamanan Kritis Everest Forms Pro Dieksploitasi untuk Ambil Alih Situs WordPress\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/06/08/celah-everest-forms-pro-dieksploitasi-untuk-ambil-alih-wordpress/\n\n#cve-2026-3300 #diksimarina #eksploitasiRce #everestFormsPro #hacker #in", "creation_timestamp": "2026-06-08T05:14:44.523881Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/902e6d1e-85b2-46b9-8ad8-15337c91376a/export"/>
    <published>2026-06-08T05:14:44.523881+00:00</published>
  </entry>
</feed>
