<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-07T03:38:19.786108+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9b1db1d0-a6c7-4ca7-ad95-05ef96cd1551/export</id>
    <title>9b1db1d0-a6c7-4ca7-ad95-05ef96cd1551</title>
    <updated>2026-07-07T03:38:19.814316+00:00</updated>
    <author>
      <name>Cédric Bonhomme</name>
      <uri>https://cvepremium.circl.lu/user/cedric</uri>
    </author>
    <content>{"uuid": "9b1db1d0-a6c7-4ca7-ad95-05ef96cd1551", "vulnerability_lookup_origin": "c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2026-41176", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/2c111d36-9f60-4dbf-863b-2308f9998f4d", "content": "", "creation_timestamp": "2026-06-30T09:23:53.748382Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9b1db1d0-a6c7-4ca7-ad95-05ef96cd1551/export"/>
    <published>2026-06-30T09:23:53.748382+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/82c47ac8-a8d6-439b-b055-dd981f435ce0/export</id>
    <title>82c47ac8-a8d6-439b-b055-dd981f435ce0</title>
    <updated>2026-07-07T03:38:19.816492+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "82c47ac8-a8d6-439b-b055-dd981f435ce0", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41176", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9564adb4-13e0-4337-99fd-cedc89d283d7", "content": "", "creation_timestamp": "2026-06-23T14:03:02.134891Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/82c47ac8-a8d6-439b-b055-dd981f435ce0/export"/>
    <published>2026-06-23T14:03:02.134891+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e2a0f36d-513f-4163-a742-546908129291/export</id>
    <title>e2a0f36d-513f-4163-a742-546908129291</title>
    <updated>2026-07-07T03:38:19.817435+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e2a0f36d-513f-4163-a742-546908129291", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41175", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mosjwafv3w2c", "content": "CVE-2026-49287 - Supply chain risk in Statamic. Unaddressed incomplete fix from CVE-2026-41175. Sort param manipulation could delete content/assets. CVSS 7.4. No patch; review templates immediately. #CVE #Statamic #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-49287/", "creation_timestamp": "2026-06-21T14:02:04.061482Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e2a0f36d-513f-4163-a742-546908129291/export"/>
    <published>2026-06-21T14:02:04.061482+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3b4c3795-961b-43f9-9aa8-f4d9deb03f1d/export</id>
    <title>3b4c3795-961b-43f9-9aa8-f4d9deb03f1d</title>
    <updated>2026-07-07T03:38:19.817541+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3b4c3795-961b-43f9-9aa8-f4d9deb03f1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41175", "type": "seen", "source": "https://bsky.app/profile/euvd-bot.bsky.social/post/3monznlbtm72y", "content": "\ud83d\udea8 EUVD-2026-38057\n\ud83d\udcca 7.4/10\n\ud83c\udfe2 statamic\n\n\ud83d\udcdd Statamic is a Laravel and Git powered content management system (CMS). Prior to 5.73.23 and 6.20.0, the fix for CVE-2026-41175 was incomplete. It address...\n\n\ud83d\udd17 https://euvd.enisa.europa.eu/vulnerability/EUVD-2026-38057\n\n#cybersecurity #infosec #cve #euvd", "creation_timestamp": "2026-06-19T19:00:14.488191Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3b4c3795-961b-43f9-9aa8-f4d9deb03f1d/export"/>
    <published>2026-06-19T19:00:14.488191+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/167bc5ef-d726-45b2-b942-25ce9d2787df/export</id>
    <title>167bc5ef-d726-45b2-b942-25ce9d2787df</title>
    <updated>2026-07-07T03:38:19.817634+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "167bc5ef-d726-45b2-b942-25ce9d2787df", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41176", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/9ceb5d54-e8d1-41b4-b4e0-a14d2149f4cb", "content": "", "creation_timestamp": "2026-06-19T12:45:11.011443Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/167bc5ef-d726-45b2-b942-25ce9d2787df/export"/>
    <published>2026-06-19T12:45:11.011443+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/79cebba2-1bbe-4f1e-8c94-65cc9d7deb4f/export</id>
    <title>79cebba2-1bbe-4f1e-8c94-65cc9d7deb4f</title>
    <updated>2026-07-07T03:38:19.817726+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "79cebba2-1bbe-4f1e-8c94-65cc9d7deb4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41176", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-13)", "content": "", "creation_timestamp": "2026-06-13T00:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/79cebba2-1bbe-4f1e-8c94-65cc9d7deb4f/export"/>
    <published>2026-06-13T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6a6d80c4-024a-4655-bf54-11b89528d5a6/export</id>
    <title>6a6d80c4-024a-4655-bf54-11b89528d5a6</title>
    <updated>2026-07-07T03:38:19.817812+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6a6d80c4-024a-4655-bf54-11b89528d5a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41176", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6a6d80c4-024a-4655-bf54-11b89528d5a6/export"/>
    <published>2026-06-04T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/155e3abb-24dc-4036-b242-232a60d08361/export</id>
    <title>155e3abb-24dc-4036-b242-232a60d08361</title>
    <updated>2026-07-07T03:38:19.817888+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "155e3abb-24dc-4036-b242-232a60d08361", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41176", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-03)", "content": "", "creation_timestamp": "2026-06-03T00:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/155e3abb-24dc-4036-b242-232a60d08361/export"/>
    <published>2026-06-03T00:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0158f1ae-8539-4c96-947c-af6cad9d80b0/export</id>
    <title>0158f1ae-8539-4c96-947c-af6cad9d80b0</title>
    <updated>2026-07-07T03:38:19.817971+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "0158f1ae-8539-4c96-947c-af6cad9d80b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-41178", "type": "published-proof-of-concept", "source": "https://github.com/advisories/GHSA-5wrp-cwcj-q835", "content": "", "creation_timestamp": "2026-05-28T17:04:19.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0158f1ae-8539-4c96-947c-af6cad9d80b0/export"/>
    <published>2026-05-28T17:04:19+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/50563070-2059-4cb4-a463-133ad23d3a94/export</id>
    <title>50563070-2059-4cb4-a463-133ad23d3a94</title>
    <updated>2026-07-07T03:38:19.818852+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "50563070-2059-4cb4-a463-133ad23d3a94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41174", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mkqragm5z42k", "content": "CVE-2026-41174 - Traefik Kubernetes CRD allows unauthorized cross-namespace middleware binding\nCVE ID : CVE-2026-41174\n \n Published : April 30, 2026, 9:16 p.m. | 1\u00a0hour, 2\u00a0minutes ago\n \n Description : Traefik is an HTTP reverse proxy and load balancer. Prior to versions 2.11.4...", "creation_timestamp": "2026-04-30T23:26:56.201861Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/50563070-2059-4cb4-a463-133ad23d3a94/export"/>
    <published>2026-04-30T23:26:56.201861+00:00</published>
  </entry>
</feed>
