<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T21:19:43.359426+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5681df38-07b0-4ce2-82cb-609c59a704b4/export</id>
    <title>5681df38-07b0-4ce2-82cb-609c59a704b4</title>
    <updated>2026-07-17T21:19:43.389716+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5681df38-07b0-4ce2-82cb-609c59a704b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56774", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mqa3pfiovd2y", "content": "[Backport release-26.05] kanboard: patch CVE-2026-56774\n\nhttps://github.com/NixOS/nixpkgs/pull/540022\n\n#security", "creation_timestamp": "2026-07-09T16:50:09.977683Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5681df38-07b0-4ce2-82cb-609c59a704b4/export"/>
    <published>2026-07-09T16:50:09.977683+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e65a03eb-9fbc-489e-b586-3b0b1d6d78ae/export</id>
    <title>e65a03eb-9fbc-489e-b586-3b0b1d6d78ae</title>
    <updated>2026-07-17T21:19:43.392316+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e65a03eb-9fbc-489e-b586-3b0b1d6d78ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56775", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5jcs7swc2k", "content": "CVE-2026-56775 - n8n - Incorrect OAuth Scope Validation in Evaluation Test Runs Endpoints\nCVE ID : CVE-2026-56775\n \n Published : July 8, 2026, 2:17 p.m. | 42\u00a0minutes ago\n \n Description : n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization vulnerability in three m...", "creation_timestamp": "2026-07-08T16:15:39.995405Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e65a03eb-9fbc-489e-b586-3b0b1d6d78ae/export"/>
    <published>2026-07-08T16:15:39.995405+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/248b918d-e869-479a-8e14-51215adbafea/export</id>
    <title>248b918d-e869-479a-8e14-51215adbafea</title>
    <updated>2026-07-17T21:19:43.392465+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "248b918d-e869-479a-8e14-51215adbafea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56776", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5iyjp3my2w", "content": "CVE-2026-56776 - n8n - Incorrect OAuth Scope Validation in Workflow Test Run Endpoint\nCVE ID : CVE-2026-56776\n \n Published : July 8, 2026, 2:17 p.m. | 42\u00a0minutes ago\n \n Description : n8n before 1.123.55, 2.25.7, and 2.26.2 contains an authorization bypass in the POST /workflow...", "creation_timestamp": "2026-07-08T16:09:55.679625Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/248b918d-e869-479a-8e14-51215adbafea/export"/>
    <published>2026-07-08T16:09:55.679625+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0bc557af-088e-4d24-9fa5-6794928c0fd5/export</id>
    <title>0bc557af-088e-4d24-9fa5-6794928c0fd5</title>
    <updated>2026-07-17T21:19:43.392583+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0bc557af-088e-4d24-9fa5-6794928c0fd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56778", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5i3z3kwf2q", "content": "CVE-2026-56778 - n8n - Authorization Bypass in Public API Execution Retry Endpoint\nCVE ID : CVE-2026-56778\n \n Published : July 8, 2026, 2:17 p.m. | 42\u00a0minutes ago\n \n Description : n8n before 2.25.7 and 2.26.x before 2.26.2 contains an authorization bypass in the Public API exe...", "creation_timestamp": "2026-07-08T15:53:58.638364Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0bc557af-088e-4d24-9fa5-6794928c0fd5/export"/>
    <published>2026-07-08T15:53:58.638364+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/32495aab-95d8-4646-b11b-a1c157d9ab5e/export</id>
    <title>32495aab-95d8-4646-b11b-a1c157d9ab5e</title>
    <updated>2026-07-17T21:19:43.392685+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "32495aab-95d8-4646-b11b-a1c157d9ab5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56770", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mp66nw4ici27", "content": "CVE-2026-56770 - Out-of-bounds access in Libais &amp;lt;=0.15. Remote attackers can crash systems via crafted AIS sentences. CVSS 7.5. No patch available. Mitigate immediately. #CVE #infosec #maritime\n\nhttps://www.valtersit.com/cve/CVE-2026-56770/", "creation_timestamp": "2026-06-26T05:12:30.427075Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/32495aab-95d8-4646-b11b-a1c157d9ab5e/export"/>
    <published>2026-06-26T05:12:30.427075+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fb319b60-13e9-4cd0-b598-5bf08d7b0f4e/export</id>
    <title>fb319b60-13e9-4cd0-b598-5bf08d7b0f4e</title>
    <updated>2026-07-17T21:19:43.392789+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fb319b60-13e9-4cd0-b598-5bf08d7b0f4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56770", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5lihmy3u2p", "content": "CVE-2026-56770 - libais 0.15 - Out-of-bounds Vector Access in VdmStream::AddLine via Invalid Sequential Message ID\nCVE ID : CVE-2026-56770\n \n Published : June 25, 2026, 6:06 p.m. | 3\u00a0hours, 4\u00a0minutes ago\n \n Description : libais through 0.15 VdmStream::AddLine uses an unchecked...", "creation_timestamp": "2026-06-25T23:29:26.316468Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fb319b60-13e9-4cd0-b598-5bf08d7b0f4e/export"/>
    <published>2026-06-25T23:29:26.316468+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2c71a37b-5d6a-42e3-b279-e590ae554ac9/export</id>
    <title>2c71a37b-5d6a-42e3-b279-e590ae554ac9</title>
    <updated>2026-07-17T21:19:43.392888+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2c71a37b-5d6a-42e3-b279-e590ae554ac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56771", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp5jtglqfg27", "content": "CVE-2026-56771 - NewsBlur\nCVE ID : CVE-2026-56771\n \n Published : June 25, 2026, 6:07 p.m. | 3\u00a0hours, 3\u00a0minutes ago\n \n Description : NewsBlur before version 14.5.0 contains a server-side request forgery vulnerability in the add_url endpoint that allows authenticated users to ma...", "creation_timestamp": "2026-06-25T22:59:46.713868Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2c71a37b-5d6a-42e3-b279-e590ae554ac9/export"/>
    <published>2026-06-25T22:59:46.713868+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/314569f8-4ad9-47b4-a9cb-ec4d39fd1aea/export</id>
    <title>314569f8-4ad9-47b4-a9cb-ec4d39fd1aea</title>
    <updated>2026-07-17T21:19:43.392989+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "314569f8-4ad9-47b4-a9cb-ec4d39fd1aea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5677", "type": "published-proof-of-concept", "source": "Telegram/MEpsfFR7A3mQ2dGKH0pRdtzvADr6R8o0dal6eRm_pMO8wsk", "content": "", "creation_timestamp": "2026-04-06T21:20:35.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/314569f8-4ad9-47b4-a9cb-ec4d39fd1aea/export"/>
    <published>2026-04-06T21:20:35+00:00</published>
  </entry>
</feed>
