<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-09T22:20:11.385389+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/aeb37a58-3593-488b-aa85-e65e994eab95/export</id>
    <title>aeb37a58-3593-488b-aa85-e65e994eab95</title>
    <updated>2026-07-09T22:20:11.408157+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "aeb37a58-3593-488b-aa85-e65e994eab95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47137", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq75n7h44f2r", "content": "CVE-2026-47137 - @rootio/vm2\nThe Root VM2 software has a security issue that could allow unauthorized access. This issue affects users who rely on the software for secure operations. To stay secure, update to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rootio #Rootnpm #CVE #infosec", "creation_timestamp": "2026-07-09T07:52:04.189920Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/aeb37a58-3593-488b-aa85-e65e994eab95/export"/>
    <published>2026-07-09T07:52:04.189920+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/051740ef-c1b7-41f3-bcd0-d062d51adc64/export</id>
    <title>051740ef-c1b7-41f3-bcd0-d062d51adc64</title>
    <updated>2026-07-09T22:20:11.411157+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "051740ef-c1b7-41f3-bcd0-d062d51adc64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47131", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq75jnrniv24", "content": "CVE-2026-47131 - @rootio/vm2\nThe Root:npm vm2 package had a security flaw that could allow an attacker to execute malicious code on a server. This could lead to unauthorized access or data theft. Root has\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rootio #Rootnpm #CVE #infosec", "creation_timestamp": "2026-07-09T07:50:05.789648Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/051740ef-c1b7-41f3-bcd0-d062d51adc64/export"/>
    <published>2026-07-09T07:50:05.789648+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b65689c8-a8d0-4131-a03d-9d497490663a/export</id>
    <title>b65689c8-a8d0-4131-a03d-9d497490663a</title>
    <updated>2026-07-09T22:20:11.411320+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b65689c8-a8d0-4131-a03d-9d497490663a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47139", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moachjvqva2u", "content": "\ud83d\udfe0 CVE-2026-47139 - High (8.6)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM supports excluding ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47139/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T08:02:44.565830Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b65689c8-a8d0-4131-a03d-9d497490663a/export"/>
    <published>2026-06-14T08:02:44.565830+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9781a793-08d7-4afd-81f0-8d93d0c02834/export</id>
    <title>9781a793-08d7-4afd-81f0-8d93d0c02834</title>
    <updated>2026-07-09T22:20:11.411440+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9781a793-08d7-4afd-81f0-8d93d0c02834", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47137", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moachcwmfn2c", "content": "\ud83d\udd34 CVE-2026-47137 - Critical (10)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, the fix for GHSA-8hg8-63c5...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47137/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T08:00:32.529844Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9781a793-08d7-4afd-81f0-8d93d0c02834/export"/>
    <published>2026-06-14T08:00:32.529844+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8df0002f-d59e-4b9b-a9c5-6cc8a3ebcdf4/export</id>
    <title>8df0002f-d59e-4b9b-a9c5-6cc8a3ebcdf4</title>
    <updated>2026-07-09T22:20:11.411547+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8df0002f-d59e-4b9b-a9c5-6cc8a3ebcdf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47135", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moach3z7ag2d", "content": "\ud83d\udfe0 CVE-2026-47135 - High (8.7)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, Symbol.for override in set...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47135/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T08:00:25.324345Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8df0002f-d59e-4b9b-a9c5-6cc8a3ebcdf4/export"/>
    <published>2026-06-14T08:00:25.324345+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bb017722-5187-4596-ba55-ce353f1eab89/export</id>
    <title>bb017722-5187-4596-ba55-ce353f1eab89</title>
    <updated>2026-07-09T22:20:11.411670+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bb017722-5187-4596-ba55-ce353f1eab89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47138", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo4o75lknj2t", "content": "CVE-2026-47138 - Parse Server: Pre-authentication denial of service via client version header regex backtracking\nCVE ID : CVE-2026-47138\n \n Published : June 12, 2026, 7:16 p.m. | 1\u00a0hour, 51\u00a0minutes ago\n \n Description : Parse Server is an open source backend that can be deploye...", "creation_timestamp": "2026-06-12T21:20:06.233796Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bb017722-5187-4596-ba55-ce353f1eab89/export"/>
    <published>2026-06-12T21:20:06.233796+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7db1fc65-da7c-43fe-bbd0-e6ba7f3cd361/export</id>
    <title>7db1fc65-da7c-43fe-bbd0-e6ba7f3cd361</title>
    <updated>2026-07-09T22:20:11.411774+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "7db1fc65-da7c-43fe-bbd0-e6ba7f3cd361", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47139", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-r9pm-gxmw-wv6p", "content": "", "creation_timestamp": "2026-05-18T12:48:57.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7db1fc65-da7c-43fe-bbd0-e6ba7f3cd361/export"/>
    <published>2026-05-18T12:48:57+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3e1d725f-66c9-4596-aa14-112bcaf3f2c9/export</id>
    <title>3e1d725f-66c9-4596-aa14-112bcaf3f2c9</title>
    <updated>2026-07-09T22:20:11.414411+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "3e1d725f-66c9-4596-aa14-112bcaf3f2c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47131", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v6mx-mf47-r5wg", "content": "", "creation_timestamp": "2026-05-18T12:45:44.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3e1d725f-66c9-4596-aa14-112bcaf3f2c9/export"/>
    <published>2026-05-18T12:45:44+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fb182b25-76c8-441a-b137-bc0888e0b57f/export</id>
    <title>fb182b25-76c8-441a-b137-bc0888e0b57f</title>
    <updated>2026-07-09T22:20:11.414576+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fb182b25-76c8-441a-b137-bc0888e0b57f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4713", "type": "seen", "source": "https://bsky.app/profile/slackers.it/post/3mhu7d5fxxt2w", "content": "", "creation_timestamp": "2026-03-25T04:01:25.621523Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fb182b25-76c8-441a-b137-bc0888e0b57f/export"/>
    <published>2026-03-25T04:01:25.621523+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/05edebc9-88e7-4d41-b5eb-c7cc0d9eae85/export</id>
    <title>05edebc9-88e7-4d41-b5eb-c7cc0d9eae85</title>
    <updated>2026-07-09T22:20:11.414686+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "05edebc9-88e7-4d41-b5eb-c7cc0d9eae85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4713", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mhtrvp7lay2r", "content": "", "creation_timestamp": "2026-03-25T00:01:14.539802Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/05edebc9-88e7-4d41-b5eb-c7cc0d9eae85/export"/>
    <published>2026-03-25T00:01:14.539802+00:00</published>
  </entry>
</feed>
