<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-19T16:28:23.303949+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f2fcd29c-df19-41f6-9ac4-a8092a529c8c/export</id>
    <title>f2fcd29c-df19-41f6-9ac4-a8092a529c8c</title>
    <updated>2026-07-19T16:28:23.330542+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f2fcd29c-df19-41f6-9ac4-a8092a529c8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54350", "type": "published-proof-of-concept", "source": "Telegram/Rc0b9T17FJVJElH6QZhazeHK_5sevkoWVsl-YVplQMonaEk", "content": "", "creation_timestamp": "2026-07-18T00:00:24.458945Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f2fcd29c-df19-41f6-9ac4-a8092a529c8c/export"/>
    <published>2026-07-18T00:00:24.458945+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e3c24855-e3cd-4550-a7b7-ae1e46cfa0cc/export</id>
    <title>e3c24855-e3cd-4550-a7b7-ae1e46cfa0cc</title>
    <updated>2026-07-19T16:28:23.334953+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e3c24855-e3cd-4550-a7b7-ae1e46cfa0cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54350", "type": "seen", "source": "Telegram/Rc0b9T17FJVJElH6QZhazeHK_5sevkoWVsl-YVplQMonaEk", "content": "", "creation_timestamp": "2026-07-17T00:00:35.760127Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e3c24855-e3cd-4550-a7b7-ae1e46cfa0cc/export"/>
    <published>2026-07-17T00:00:35.760127+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e53c9daf-cd10-46ae-8a0b-860aed3e3fec/export</id>
    <title>e53c9daf-cd10-46ae-8a0b-860aed3e3fec</title>
    <updated>2026-07-19T16:28:23.335041+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e53c9daf-cd10-46ae-8a0b-860aed3e3fec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54350", "type": "seen", "source": "Telegram/Rc0b9T17FJVJElH6QZhazeHK_5sevkoWVsl-YVplQMonaEk", "content": "", "creation_timestamp": "2026-07-16T19:00:18.747584Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e53c9daf-cd10-46ae-8a0b-860aed3e3fec/export"/>
    <published>2026-07-16T19:00:18.747584+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b8eabcea-1b56-447c-a121-40814aa488d2/export</id>
    <title>b8eabcea-1b56-447c-a121-40814aa488d2</title>
    <updated>2026-07-19T16:28:23.335103+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b8eabcea-1b56-447c-a121-40814aa488d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54350", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/92275", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC #Exploit\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-54350-Budibase-NoSQL-Injection\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a BiiTts\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-07 01:19:13\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-54350 \u2014 Budibase unauthenticated NoSQL operator injection (CVSS 10.0). Read/mass-write any document collection via a PUBLIC query.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-15T00:00:30.767428Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b8eabcea-1b56-447c-a121-40814aa488d2/export"/>
    <published>2026-07-15T00:00:30.767428+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bc95c3a3-6f26-431e-ad77-b8d37b39e352/export</id>
    <title>bc95c3a3-6f26-431e-ad77-b8d37b39e352</title>
    <updated>2026-07-19T16:28:23.335169+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bc95c3a3-6f26-431e-ad77-b8d37b39e352", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54353", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqlz6wpwhh2k", "content": "\ud83d\udccc CVE-2026-54353 - Budibase is an open-source low-code platform. Prior to 3.39.9, authenticated users with automation permissions can bypass Budibase's SSRF blacklist th... https://www.cyberhub.blog/cves/CVE-2026-54353", "creation_timestamp": "2026-07-14T10:37:07.090093Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bc95c3a3-6f26-431e-ad77-b8d37b39e352/export"/>
    <published>2026-07-14T10:37:07.090093+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f11f577f-70c6-467d-a8c8-ef95b1d8d1e7/export</id>
    <title>f11f577f-70c6-467d-a8c8-ef95b1d8d1e7</title>
    <updated>2026-07-19T16:28:23.335237+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f11f577f-70c6-467d-a8c8-ef95b1d8d1e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54350", "type": "seen", "source": "https://t.me/GithubRedTeam/92275", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC #Exploit\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-54350-Budibase-NoSQL-Injection\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a BiiTts\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-07 01:19:13\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-54350 \u2014 Budibase unauthenticated NoSQL operator injection (CVSS 10.0). Read/mass-write any document collection via a PUBLIC query.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-14T00:00:19.481810Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f11f577f-70c6-467d-a8c8-ef95b1d8d1e7/export"/>
    <published>2026-07-14T00:00:19.481810+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ebafe9fa-2047-49fa-ac24-ab769cf95a9c/export</id>
    <title>ebafe9fa-2047-49fa-ac24-ab769cf95a9c</title>
    <updated>2026-07-19T16:28:23.335307+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ebafe9fa-2047-49fa-ac24-ab769cf95a9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54350", "type": "seen", "source": "https://t.me/GithubRedTeam/92275", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC #Exploit\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-54350-Budibase-NoSQL-Injection\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a BiiTts\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-07 01:19:13\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nPoC for CVE-2026-54350 \u2014 Budibase unauthenticated NoSQL operator injection (CVSS 10.0). Read/mass-write any document collection via a PUBLIC query.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-13T22:00:11.025909Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ebafe9fa-2047-49fa-ac24-ab769cf95a9c/export"/>
    <published>2026-07-13T22:00:11.025909+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9a93dbf4-06ec-4bb3-a9fc-29bc7848f7f4/export</id>
    <title>9a93dbf4-06ec-4bb3-a9fc-29bc7848f7f4</title>
    <updated>2026-07-19T16:28:23.335374+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9a93dbf4-06ec-4bb3-a9fc-29bc7848f7f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5435", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mqf6dud3zz25", "content": "[Backport staging-26.05] glibc: fix CVE-2026-5435 and CVE-2026-6238\n\nhttps://github.com/NixOS/nixpkgs/pull/540777\n\n#security", "creation_timestamp": "2026-07-11T17:20:42.722187Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9a93dbf4-06ec-4bb3-a9fc-29bc7848f7f4/export"/>
    <published>2026-07-11T17:20:42.722187+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c974d78c-b5c2-4d72-bf50-020c10a27760/export</id>
    <title>c974d78c-b5c2-4d72-bf50-020c10a27760</title>
    <updated>2026-07-19T16:28:23.335439+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c974d78c-b5c2-4d72-bf50-020c10a27760", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54352", "type": "seen", "source": "https://bsky.app/profile/roguelogics.bsky.social/post/3mplhihbycq2r", "content": "\ud83d\udea8 Patch Alert: CVE-2026-54352 is a high-severity vulnerability affecting widely-used software. This flaw can allow unauthorized remote code execution, putting sensitive data at risk. Our team urges you to patch this vulnerability immediately to mitigate potential threats. Staying ahead of threats\u2026", "creation_timestamp": "2026-07-01T11:55:08.001881Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c974d78c-b5c2-4d72-bf50-020c10a27760/export"/>
    <published>2026-07-01T11:55:08.001881+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9c5e4e6d-5a26-4abf-b92c-08851a6412b6/export</id>
    <title>9c5e4e6d-5a26-4abf-b92c-08851a6412b6</title>
    <updated>2026-07-19T16:28:23.335502+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9c5e4e6d-5a26-4abf-b92c-08851a6412b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-54352", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpkqov5yzy2e", "content": "\ud83d\udccc CVE-2026-54352 - Budibase is an open-source low-code platform. Prior to 3.39.9, `POST /api/pwa/process-zip` at packages/server/src/api/routes/static.ts:24 accepts a bu... https://www.cyberhub.blog/cves/CVE-2026-54352", "creation_timestamp": "2026-07-01T05:07:07.931884Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9c5e4e6d-5a26-4abf-b92c-08851a6412b6/export"/>
    <published>2026-07-01T05:07:07.931884+00:00</published>
  </entry>
</feed>
