https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-30T15:31:40.198128+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/3ffc66d9-5865-4a14-96a0-f9508371bc0f/export3ffc66d9-5865-4a14-96a0-f9508371bc0f2026-06-30T15:31:40.215633+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "3ffc66d9-5865-4a14-96a0-f9508371bc0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/hookprobe.com/post/3mp545ijkce2p", "content": "\ud83c\udfac How HookProbe Detects CVE-2026-48907: Securing Widget Factory Joomla Content Editor \u2014 AI-native edge security on a $50 Raspberry Pi. #infosec #EdgeSecurity #RaspberryPi", "creation_timestamp": "2026-06-25T18:54:51.892390Z"}2026-06-25T18:54:51.892390+00:00https://vulnerability.circl.lu/sighting/1e3c94c5-c6c8-41ea-be50-715c31a3ce9d/export1e3c94c5-c6c8-41ea-be50-715c31a3ce9d2026-06-30T15:31:40.217907+00:00Joseph Leehttps://cvepremium.circl.lu/user/syspect{"uuid": "1e3c94c5-c6c8-41ea-be50-715c31a3ce9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-critical-vulnerability-joomla-content-editor-extension-jce-patch-immediately", "content": "", "creation_timestamp": "2026-06-25T13:45:05.932377Z"}2026-06-25T13:45:05.932377+00:00https://vulnerability.circl.lu/sighting/1da2d5f9-c5b2-4bcc-9453-3a777ef61216/export1da2d5f9-c5b2-4bcc-9453-3a777ef612162026-06-30T15:31:40.218868+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "1da2d5f9-c5b2-4bcc-9453-3a777ef61216", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mozp5jynyo2p", "content": "\u26a0\ufe0f CISA just added another Joomla bug to its exploited list. This one is already in the wild.\n\nCVE-2026-48907.\n\nhttps://www.yazoul.net/news/article/cisa-warns-of-actively-exploited-joomla-jce-flaw-allowing-php-code-execution/\n\n#CVE #CyberSecurity", "creation_timestamp": "2026-06-24T10:24:15.739524Z"}2026-06-24T10:24:15.739524+00:00https://vulnerability.circl.lu/sighting/708f5606-d759-4e23-bc63-1735743d3003/export708f5606-d759-4e23-bc63-1735743d30032026-06-30T15:31:40.218993+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "708f5606-d759-4e23-bc63-1735743d3003", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3moxxxkctdg2v", "content": "Third critical CVE added to CISA's KEV list this month. Same pattern every time.\n\nCVE-2026-48907.\n\nhttps://www.yazoul.net/news/article/cisa-warns-of-actively-exploited-joomla-jce-flaw-allowing-php-code-execution/\n\n#CVE #CyberSecurity", "creation_timestamp": "2026-06-23T17:56:38.852227Z"}2026-06-23T17:56:38.852227+00:00https://vulnerability.circl.lu/sighting/fd24c918-a3bf-4508-85fd-23fed150c9a9/exportfd24c918-a3bf-4508-85fd-23fed150c9a92026-06-30T15:31:40.219098+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "fd24c918-a3bf-4508-85fd-23fed150c9a9", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/0f2302f3-00e7-4d90-86fc-886701fba25b", "content": "", "creation_timestamp": "2026-06-23T14:02:57.116293Z"}2026-06-23T14:02:57.116293+00:00https://vulnerability.circl.lu/sighting/c30790da-9169-4eab-80c7-72e3bfe156e7/exportc30790da-9169-4eab-80c7-72e3bfe156e72026-06-30T15:31:40.219193+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "c30790da-9169-4eab-80c7-72e3bfe156e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3moxddqwy2c2b", "content": "Last week we added scanning for Joomla JCE editor extension CVE-2026-48907 vulnerable instances. This RCE vulnerability is exploited in the wild & on US CISA KEV. 4840 vulnerable instances seen 2026-06-22 down from 5146 on 2026-06-19. Top affected: US\n\ndashboard.shadowserver.org/statistics/c...", "creation_timestamp": "2026-06-23T11:47:43.750103Z"}2026-06-23T11:47:43.750103+00:00https://vulnerability.circl.lu/sighting/695f232c-6924-48f9-818b-3b5254e44962/export695f232c-6924-48f9-818b-3b5254e449622026-06-30T15:31:40.219295+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "695f232c-6924-48f9-818b-3b5254e44962", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/shadowserver.bsky.social/post/3moxddmglwk2b", "content": "Last week we added scanning for Joomla JCE editor extension CVE-2026-48907 vulnerable instances. This RCE vulnerability is exploited in the wild & on US CISA KEV. 4840 vulnerable instances seen 2026-06-22 down from 5146 on 2026-06-19. Top affected: US\n\ndashboard.shadowserver.org/statistics/c...", "creation_timestamp": "2026-06-23T11:47:42.936658Z"}2026-06-23T11:47:42.936658+00:00https://vulnerability.circl.lu/sighting/604041ed-cc6a-4bca-8035-af1ca5dd5660/export604041ed-cc6a-4bca-8035-af1ca5dd56602026-06-30T15:31:40.219408+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "604041ed-cc6a-4bca-8035-af1ca5dd5660", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48907", "type": "seen", "source": "https://infosec.exchange/users/shadowserver/statuses/116799252848428119", "content": "Last week we added scanning for Joomla JCE editor extension CVE-2026-48907 vulnerable instances. This RCE vulnerability is exploited in the wild & on US CISA KEV. 4840 vulnerable instances seen 2026-06-22 down from 5146 on 2026-06-19. Top affected: US\nhttps://dashboard.shadowserver.org/statistics/combined/map/?date_range=1&map_type=std&source=http_vulnerable&source=http_vulnerable6&tag=cve-2026-48907%2B&data_set=count&scale=log&auto_update=on\nRaw IP data shared in our Vulnerable HTTP reporting https://www.shadowserver.org/what-we-do/network-reporting/vulnerable-http-report/ tagged 'cve-2026-48907' filtered by network/constituency\nDashboard Tree Map view: https://dashboard.shadowserver.org/statistics/combined/tree/?date_range=1&source=http_vulnerable&source=http_vulnerable6&tag=cve-2026-48907%2B&data_set=count&scale=log&auto_update=on\nPatch info: https://www.joomlacontenteditor.net/news/jce-security-update-and-a-free-patch-for-older-sites", "creation_timestamp": "2026-06-23T11:46:03.212247Z"}2026-06-23T11:46:03.212247+00:00https://vulnerability.circl.lu/sighting/8c0368a3-e38e-45b5-a2eb-d1773ad895aa/export8c0368a3-e38e-45b5-a2eb-d1773ad895aa2026-06-30T15:31:40.219511+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "8c0368a3-e38e-45b5-a2eb-d1773ad895aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mox7eshbps2k", "content": "\u26a0\ufe0f CISA just added another Joomla bug to its exploited list. How many are still unpatched in your environment?\n\nCVE-2026-48907.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-21/\n\n#CyberSecurity #Security", "creation_timestamp": "2026-06-23T10:36:39.988959Z"}2026-06-23T10:36:39.988959+00:00https://vulnerability.circl.lu/sighting/9674ba59-37d6-4486-96f5-bf5185975b68/export9674ba59-37d6-4486-96f5-bf5185975b682026-06-30T15:31:40.219622+00:00Automation userhttps://cvepremium.circl.lu/user/automation{"uuid": "9674ba59-37d6-4486-96f5-bf5185975b68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48907", "type": "seen", "source": "https://bsky.app/profile/yazoul-alerts.bsky.social/post/3mouwfnax522r", "content": "\ud83d\udea8 CISA just added another Joomla bug to its active exploits list. That's three this year.\n\nCVE-2026-48907.\n\nhttps://www.yazoul.net/malware/mirai-2026-06/reports/2026-06-21/\n\n#InfoSec #DataBreach", "creation_timestamp": "2026-06-22T12:50:45.103170Z"}2026-06-22T12:50:45.103170+00:00