<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T00:16:11.849091+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d80efb7e-af4a-4eef-93af-20726a16bd2c/export</id>
    <title>d80efb7e-af4a-4eef-93af-20726a16bd2c</title>
    <updated>2026-07-12T00:16:11.874052+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d80efb7e-af4a-4eef-93af-20726a16bd2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53511", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdggb7dsr2a", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-53511 \u0432 Calibre: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u044d\u043b\u0435\u043a\u0442\u0440\u043e\u043d\u043d\u044b\u0445 \u043a\u043d\u0438\u0433\n\n\n\nhttps://kripta.biz/posts/A90DDFE8-46DE-4692-95E1-A8817D9098B9", "creation_timestamp": "2026-07-11T00:39:53.811450Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d80efb7e-af4a-4eef-93af-20726a16bd2c/export"/>
    <published>2026-07-11T00:39:53.811450+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f4b83df8-0ebb-4326-8176-09f130f988d9/export</id>
    <title>f4b83df8-0ebb-4326-8176-09f130f988d9</title>
    <updated>2026-07-12T00:16:11.880333+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f4b83df8-0ebb-4326-8176-09f130f988d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53511", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq3quv37dx2k", "content": "CVE-2026-53511 - calibre: Arbitrary Code Execution in Template Formatter via Book Metadata\nCVE ID : CVE-2026-53511\n \n Published : July 7, 2026, 9:17 p.m. | 1\u00a0hour, 57\u00a0minutes ago\n \n Description : calibre is an e-book manager. Prior to 9.10.0, a malicious EPUB, OPF, or PDF file...", "creation_timestamp": "2026-07-07T23:25:43.880068Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f4b83df8-0ebb-4326-8176-09f130f988d9/export"/>
    <published>2026-07-07T23:25:43.880068+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/12f1bc61-7865-41d0-91cf-64bcf28ec9fb/export</id>
    <title>12f1bc61-7865-41d0-91cf-64bcf28ec9fb</title>
    <updated>2026-07-12T00:16:11.880951+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "12f1bc61-7865-41d0-91cf-64bcf28ec9fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53518", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3lgclew62b", "content": "CVE-2026-53518 - oauth-provider\nThe Better Auth OAuth Provider, used in some applications, can issue duplicate access tokens if two requests for the same authorization code are made at the same\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#oauthprovider #betterauth #npm #CVE #infosec", "creation_timestamp": "2026-07-07T21:48:06.588213Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/12f1bc61-7865-41d0-91cf-64bcf28ec9fb/export"/>
    <published>2026-07-07T21:48:06.588213+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d2d60bde-c697-4efe-a9ea-1431a68e5384/export</id>
    <title>d2d60bde-c697-4efe-a9ea-1431a68e5384</title>
    <updated>2026-07-12T00:16:11.881286+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d2d60bde-c697-4efe-a9ea-1431a68e5384", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53513", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3lgb7llz25", "content": "CVE-2026-53513 - sso\nIf you're using an outdated version of the @better-auth/sso plugin, an attacker can access your server by tricking your system into making unauthorized requests. This can happen even\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#sso #betterauth #npm #CVE #infosec", "creation_timestamp": "2026-07-07T21:48:04.619993Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d2d60bde-c697-4efe-a9ea-1431a68e5384/export"/>
    <published>2026-07-07T21:48:04.619993+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f07142ca-c1af-4b13-8bed-96199058bf71/export</id>
    <title>f07142ca-c1af-4b13-8bed-96199058bf71</title>
    <updated>2026-07-12T00:16:11.881585+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f07142ca-c1af-4b13-8bed-96199058bf71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53512", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3ifp5g5c2q", "content": "CVE-2026-53512 - better-auth\nSome Better Auth plugins don't verify client secrets for refresh tokens, which could allow an attacker to access sensitive data. If you use Better Auth with the oidc-provider or\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#betterauth #npm #CVE #infosec", "creation_timestamp": "2026-07-07T20:54:04.425045Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f07142ca-c1af-4b13-8bed-96199058bf71/export"/>
    <published>2026-07-07T20:54:04.425045+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e8382400-be50-4bd1-899e-03fbe2ed7bea/export</id>
    <title>e8382400-be50-4bd1-899e-03fbe2ed7bea</title>
    <updated>2026-07-12T00:16:11.881852+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "e8382400-be50-4bd1-899e-03fbe2ed7bea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-53519", "type": "published-proof-of-concept", "source": "https://github.com/nezhahq/nezha/security/advisories/GHSA-5c25-7vpj-9mqh", "content": "", "creation_timestamp": "2026-06-27T00:35:24.688398Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e8382400-be50-4bd1-899e-03fbe2ed7bea/export"/>
    <published>2026-06-27T00:35:24.688398+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d7315d11-aa87-41c0-94d6-76546d8e6341/export</id>
    <title>d7315d11-aa87-41c0-94d6-76546d8e6341</title>
    <updated>2026-07-12T00:16:11.886425+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d7315d11-aa87-41c0-94d6-76546d8e6341", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-53519", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116739855858486390", "content": "\ud83d\udee1\ufe0f CVE-2026-53519: CRITICAL path traversal in Nezha Monitoring (&amp;lt;2.0.13). Unauthenticated attackers can read arbitrary files via crafted URLs. Patch to 2.0.13+ ASAP! https://radar.offseq.com/threat/cve-2026-53519-cwe-22-improper-limitation-of-a-pat-3dc4f02c #OffSeq #CVE202653519 #infosec #vuln", "creation_timestamp": "2026-06-13T00:00:43.222613Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d7315d11-aa87-41c0-94d6-76546d8e6341/export"/>
    <published>2026-06-13T00:00:43.222613+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0802b86f-7544-4e6f-9d36-a513a2d1c2ef/export</id>
    <title>0802b86f-7544-4e6f-9d36-a513a2d1c2ef</title>
    <updated>2026-07-12T00:16:11.886541+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0802b86f-7544-4e6f-9d36-a513a2d1c2ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53510", "type": "seen", "source": "https://bsky.app/profile/connorshea.bsky.social/post/3mo2egnpf5s2u", "content": "I got my first CVE ever, in a Ruby gem! :) CVE-2026-53510\n\nI found it using Claude (Opus 4.6 IIRC) and Scrutineer.\n\ngithub.com/savonrb/savo...", "creation_timestamp": "2026-06-11T23:20:00.205115Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0802b86f-7544-4e6f-9d36-a513a2d1c2ef/export"/>
    <published>2026-06-11T23:20:00.205115+00:00</published>
  </entry>
</feed>
