<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T14:16:39.163520+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/98aea405-3fe8-47b4-96ef-b931b1726c9a/export</id>
    <title>98aea405-3fe8-47b4-96ef-b931b1726c9a</title>
    <updated>2026-07-12T14:16:39.186526+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "98aea405-3fe8-47b4-96ef-b931b1726c9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3mqdsxtkkno2x", "content": "WP-SHELLSTORM: 25.000 sitios WordPress hackeados\n\n\u00bfTu sitio WordPress usa Breeze Cache? WP-SHELLSTORM comprometi\u00f3 25.195 sitios con CVE-2026-3844 (CVSS 9.8). Cheque\u00e1 si fuiste afectado y limpi\u00e1 el backdoor\n\n#wpshellstorm #backdoorwordpress #cve20263844 #breezecache #webshell", "creation_timestamp": "2026-07-11T04:24:28.827487Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/98aea405-3fe8-47b4-96ef-b931b1726c9a/export"/>
    <published>2026-07-11T04:24:28.827487+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/647f9f72-3020-4420-8040-b456641d772c/export</id>
    <title>647f9f72-3020-4420-8040-b456641d772c</title>
    <updated>2026-07-12T14:16:39.189173+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "647f9f72-3020-4420-8040-b456641d772c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "seen", "source": "https://bsky.app/profile/kotosecurity.bsky.social/post/3mqcctoyqs52s", "content": "\ud83c\udf0a WP-SHELLSTORM: an exposed server (left open 22 days) revealed a crew backdooring WP/Joomla via 27 known flaws. Breeze plugin CVE-2026-3844 alone hit 45k targets, 17k+ backdoored. Patch plugins.\n\n\ud83d\udd17 https://thehackernews.com/2026/07/exposed-hacker-server-reveals-wp.html", "creation_timestamp": "2026-07-10T14:03:09.829160Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/647f9f72-3020-4420-8040-b456641d772c/export"/>
    <published>2026-07-10T14:03:09.829160+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/38f2c2e9-b7c1-4b07-afcb-cd7031ba33a1/export</id>
    <title>38f2c2e9-b7c1-4b07-afcb-cd7031ba33a1</title>
    <updated>2026-07-12T14:16:39.189313+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "38f2c2e9-b7c1-4b07-afcb-cd7031ba33a1", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/bcdf9335-f583-4a7a-ad00-5b6afa914fc4", "content": "", "creation_timestamp": "2026-06-19T12:45:34.197901Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/38f2c2e9-b7c1-4b07-afcb-cd7031ba33a1/export"/>
    <published>2026-06-19T12:45:34.197901+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ba27f236-b65b-4561-a5ea-b041ae2c4ae6/export</id>
    <title>ba27f236-b65b-4561-a5ea-b041ae2c4ae6</title>
    <updated>2026-07-12T14:16:39.189441+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ba27f236-b65b-4561-a5ea-b041ae2c4ae6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "published-proof-of-concept", "source": "Telegram/MkZ_OGQrZR4dMhKDK0OVbcEjJF0IE8jmF8NR0mdJeKW4f6Q", "content": "", "creation_timestamp": "2026-06-06T11:00:14.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ba27f236-b65b-4561-a5ea-b041ae2c4ae6/export"/>
    <published>2026-06-06T11:00:14+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/47b5d931-6b9e-436d-8db6-8a8ca879775a/export</id>
    <title>47b5d931-6b9e-436d-8db6-8a8ca879775a</title>
    <updated>2026-07-12T14:16:39.189537+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "47b5d931-6b9e-436d-8db6-8a8ca879775a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-38444", "type": "seen", "source": "Telegram/6s3VRd-d_5V93Kqqbw2bpShp3KD9FSCashxK24K-SibeAsU", "content": "", "creation_timestamp": "2026-05-29T03:00:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/47b5d931-6b9e-436d-8db6-8a8ca879775a/export"/>
    <published>2026-05-29T03:00:06+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1738187b-a584-472f-9f59-2e21aea96406/export</id>
    <title>1738187b-a584-472f-9f59-2e21aea96406</title>
    <updated>2026-07-12T14:16:39.189643+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1738187b-a584-472f-9f59-2e21aea96406", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-38444", "type": "seen", "source": "Telegram/HU_yRfo-cHzZ51Yw_pZ3y69e-xyV8JPGd2HpDpSewcZn78Q", "content": "", "creation_timestamp": "2026-05-28T23:00:11.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1738187b-a584-472f-9f59-2e21aea96406/export"/>
    <published>2026-05-28T23:00:11+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ef7c76eb-f03e-4901-ae05-122fd32cb2a2/export</id>
    <title>ef7c76eb-f03e-4901-ae05-122fd32cb2a2</title>
    <updated>2026-07-12T14:16:39.189740+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ef7c76eb-f03e-4901-ae05-122fd32cb2a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "seen", "source": "https://gist.github.com/skizofrenic/4204cd4fced5d254fe3bb8d9eb411fc8", "content": "", "creation_timestamp": "2026-05-26T16:23:59.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ef7c76eb-f03e-4901-ae05-122fd32cb2a2/export"/>
    <published>2026-05-26T16:23:59+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8d0b6093-3ad5-4e41-b3da-bfecfcceb245/export</id>
    <title>8d0b6093-3ad5-4e41-b3da-bfecfcceb245</title>
    <updated>2026-07-12T14:16:39.189843+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8d0b6093-3ad5-4e41-b3da-bfecfcceb245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "seen", "source": "Telegram/W1vRPSZWweVUHMSWt8CrUKCu5wOz0SjAywl1baktpA9KBTI", "content": "", "creation_timestamp": "2026-05-11T03:00:13.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8d0b6093-3ad5-4e41-b3da-bfecfcceb245/export"/>
    <published>2026-05-11T03:00:13+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7d07ec93-7202-4765-b9ad-d79cfb56482a/export</id>
    <title>7d07ec93-7202-4765-b9ad-d79cfb56482a</title>
    <updated>2026-07-12T14:16:39.189940+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7d07ec93-7202-4765-b9ad-d79cfb56482a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "seen", "source": "https://t.me/GithubRedTeam/83721", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-3844\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a zycoder0day\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-10 22:56:03\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\n\u65e0\u63cf\u8ff0\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-10T23:00:03.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7d07ec93-7202-4765-b9ad-d79cfb56482a/export"/>
    <published>2026-05-10T23:00:03+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/afe1ab50-eb8b-4c5a-99f7-b6699d14e394/export</id>
    <title>afe1ab50-eb8b-4c5a-99f7-b6699d14e394</title>
    <updated>2026-07-12T14:16:39.190044+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "afe1ab50-eb8b-4c5a-99f7-b6699d14e394", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3844", "type": "published-proof-of-concept", "source": "Telegram/eNyXP0VFcQtqPlK-8vkGtqhnCSC85Z7lTOQp_rxjHxWaPHc", "content": "", "creation_timestamp": "2026-05-08T15:00:13.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/afe1ab50-eb8b-4c5a-99f7-b6699d14e394/export"/>
    <published>2026-05-08T15:00:13+00:00</published>
  </entry>
</feed>
