<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-03T13:32:20.198295+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/62076485-c56d-4056-a001-42e44f64298b/export</id>
    <title>62076485-c56d-4056-a001-42e44f64298b</title>
    <updated>2026-07-03T13:32:20.223707+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "62076485-c56d-4056-a001-42e44f64298b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49877", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqf7sfqii26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-49877 \u0432 Apache ActiveMQ: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/4DDD29AA-A73F-4235-AD75-3912EA28163D", "creation_timestamp": "2026-07-03T10:57:48.253367Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/62076485-c56d-4056-a001-42e44f64298b/export"/>
    <published>2026-07-03T10:57:48.253367+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/82692654-2027-49ef-b152-02129efb3fa9/export</id>
    <title>82692654-2027-49ef-b152-02129efb3fa9</title>
    <updated>2026-07-03T13:32:20.226949+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "82692654-2027-49ef-b152-02129efb3fa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49877", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mphfqgcalh2q", "content": "CVE-2026-49877: Apache ActiveMQ: Authenticated web users retain admin access by default in the Web Console", "creation_timestamp": "2026-06-29T21:13:08.162235Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/82692654-2027-49ef-b152-02129efb3fa9/export"/>
    <published>2026-06-29T21:13:08.162235+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3d5f934a-b981-4ec8-af2c-9edbc2dcd5b1/export</id>
    <title>3d5f934a-b981-4ec8-af2c-9edbc2dcd5b1</title>
    <updated>2026-07-03T13:32:20.227148+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3d5f934a-b981-4ec8-af2c-9edbc2dcd5b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49871", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116781763259383270", "content": "A lot of offensive activities were identified targeting Apache APISIX (CVE-2026-49871) https://vuldb.com/vuln/372401/cti", "creation_timestamp": "2026-06-20T09:38:14.531453Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3d5f934a-b981-4ec8-af2c-9edbc2dcd5b1/export"/>
    <published>2026-06-20T09:38:14.531453+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ddcace2a-70b4-4c0c-8d44-5b0c57995bb2/export</id>
    <title>ddcace2a-70b4-4c0c-8d44-5b0c57995bb2</title>
    <updated>2026-07-03T13:32:20.227254+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ddcace2a-70b4-4c0c-8d44-5b0c57995bb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49872", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3monocokqpd2x", "content": "CVE-2026-49872: Apache APISIX: Improper authentication in cas-auth plugin", "creation_timestamp": "2026-06-19T15:37:17.406858Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ddcace2a-70b4-4c0c-8d44-5b0c57995bb2/export"/>
    <published>2026-06-19T15:37:17.406858+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/654522ea-c085-46b4-969a-3b914614ca83/export</id>
    <title>654522ea-c085-46b4-969a-3b914614ca83</title>
    <updated>2026-07-03T13:32:20.227352+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "654522ea-c085-46b4-969a-3b914614ca83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49871", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3monnobmqmq2v", "content": "CVE-2026-49871: Apache APISIX: cas-auth login CSRF / session injection issue", "creation_timestamp": "2026-06-19T15:25:52.809042Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/654522ea-c085-46b4-969a-3b914614ca83/export"/>
    <published>2026-06-19T15:25:52.809042+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/10eadd50-2caa-4e11-927d-184beb938192/export</id>
    <title>10eadd50-2caa-4e11-927d-184beb938192</title>
    <updated>2026-07-03T13:32:20.227452+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "10eadd50-2caa-4e11-927d-184beb938192", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49875", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3modpy476mu2v", "content": "\ud83d\udea8 CRITICAL ALERT: CVE-2026-49875\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nApache CXF's EndpointReferenceUtils and W3CMultiSchemaFactory classes construct a SAXParserFactory without the necessary JAXP hardening configurations, enabling out-of-band (OOB) \nexternal entity resolution.\u00a0Users are recommended to upgrad", "creation_timestamp": "2026-06-15T16:40:32.796970Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/10eadd50-2caa-4e11-927d-184beb938192/export"/>
    <published>2026-06-15T16:40:32.796970+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b3284866-c330-4ceb-aa59-d47e6a810762/export</id>
    <title>b3284866-c330-4ceb-aa59-d47e6a810762</title>
    <updated>2026-07-03T13:32:20.227539+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b3284866-c330-4ceb-aa59-d47e6a810762", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49875", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mnzq3qks772t", "content": "CVE-2026-49875: Apache CXF: XML External Entity (XXE) Injection in W3CMultiSchemaFactory and EndpointReferenceUtils", "creation_timestamp": "2026-06-11T17:15:57.338657Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b3284866-c330-4ceb-aa59-d47e6a810762/export"/>
    <published>2026-06-11T17:15:57.338657+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f044d409-b166-4934-a12f-59f33959ef7e/export</id>
    <title>f044d409-b166-4934-a12f-59f33959ef7e</title>
    <updated>2026-07-03T13:32:20.227643+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f044d409-b166-4934-a12f-59f33959ef7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-4987", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116309400818400329", "content": "", "creation_timestamp": "2026-03-28T23:30:14.827775Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f044d409-b166-4934-a12f-59f33959ef7e/export"/>
    <published>2026-03-28T23:30:14.827775+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7ee24d25-9675-40b2-9a5f-4928379172de/export</id>
    <title>7ee24d25-9675-40b2-9a5f-4928379172de</title>
    <updated>2026-07-03T13:32:20.227711+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7ee24d25-9675-40b2-9a5f-4928379172de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-4987", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mi3xezlxof26", "content": "", "creation_timestamp": "2026-03-28T06:00:35.408771Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7ee24d25-9675-40b2-9a5f-4928379172de/export"/>
    <published>2026-03-28T06:00:35.408771+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5a7c7ca5-2b0d-45ce-beb7-d8d585bd114c/export</id>
    <title>5a7c7ca5-2b0d-45ce-beb7-d8d585bd114c</title>
    <updated>2026-07-03T13:32:20.227804+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5a7c7ca5-2b0d-45ce-beb7-d8d585bd114c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-4987", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116305273346870948", "content": "", "creation_timestamp": "2026-03-28T06:00:34.394432Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5a7c7ca5-2b0d-45ce-beb7-d8d585bd114c/export"/>
    <published>2026-03-28T06:00:34.394432+00:00</published>
  </entry>
</feed>
