<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T12:17:51.706528+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fd11c8de-5237-4b80-98fd-ca4c4f595276/export</id>
    <title>fd11c8de-5237-4b80-98fd-ca4c4f595276</title>
    <updated>2026-07-12T12:17:51.730105+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fd11c8de-5237-4b80-98fd-ca4c4f595276", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq756vsjxn24", "content": "CVE-2026-47140 - @rootio/vm2\nA security patch has been released for the Root VM2 package. This update is important for users of Root's npm package to protect against potential security risks. You should check\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rootio #Rootnpm #CVE #infosec", "creation_timestamp": "2026-07-09T07:44:04.110917Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fd11c8de-5237-4b80-98fd-ca4c4f595276/export"/>
    <published>2026-07-09T07:44:04.110917+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/33b9f8de-495a-4b5b-984a-b7e2889d3273/export</id>
    <title>33b9f8de-495a-4b5b-984a-b7e2889d3273</title>
    <updated>2026-07-12T12:17:51.733190+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "33b9f8de-495a-4b5b-984a-b7e2889d3273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moafs7cl3y2d", "content": "\ud83d\udd34 CVE-2026-47140 - Critical (10)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM blocks several dang...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47140/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T09:00:18.904620Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/33b9f8de-495a-4b5b-984a-b7e2889d3273/export"/>
    <published>2026-06-14T09:00:18.904620+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5/export</id>
    <title>d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5</title>
    <updated>2026-07-12T12:17:51.733328+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47140", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4", "content": "", "creation_timestamp": "2026-05-18T12:48:43.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5/export"/>
    <published>2026-05-18T12:48:43+00:00</published>
  </entry>
</feed>
