<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-19T20:45:14.616232+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2807c78e-06e4-4ef4-97f7-0280a8e7cb01/export</id>
    <title>2807c78e-06e4-4ef4-97f7-0280a8e7cb01</title>
    <updated>2026-07-19T20:45:14.640670+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2807c78e-06e4-4ef4-97f7-0280a8e7cb01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59190", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqddb35rt72s", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59190 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Grav Admin: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/7F03F1C1-65CE-4D24-9E62-5B2687FE1002", "creation_timestamp": "2026-07-10T23:43:18.246494Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2807c78e-06e4-4ef4-97f7-0280a8e7cb01/export"/>
    <published>2026-07-10T23:43:18.246494+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cf492a3a-d358-4988-9dc9-4bd83ea15d24/export</id>
    <title>cf492a3a-d358-4988-9dc9-4bd83ea15d24</title>
    <updated>2026-07-19T20:45:14.642862+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cf492a3a-d358-4988-9dc9-4bd83ea15d24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59193", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdbicyild2z", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59193 \u0432 Grav: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f \u0444\u0430\u0439\u043b\u043e\u0432\u044b\u0445 \u0432\u0435\u0431-\u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\n\n\n\nhttps://kripta.biz/posts/B23F11D5-D91E-4846-95BD-96FFBD313EA2", "creation_timestamp": "2026-07-10T23:11:33.989454Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cf492a3a-d358-4988-9dc9-4bd83ea15d24/export"/>
    <published>2026-07-10T23:11:33.989454+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b034a43e-1478-4a1b-8ba0-8b10e6fa948b/export</id>
    <title>b034a43e-1478-4a1b-8ba0-8b10e6fa948b</title>
    <updated>2026-07-19T20:45:14.643084+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b034a43e-1478-4a1b-8ba0-8b10e6fa948b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59190", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdascvdwg2d", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59190 \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Grav Admin: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/8A0CAD34-416D-43F3-AE94-51B43564662B", "creation_timestamp": "2026-07-10T22:59:15.571452Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b034a43e-1478-4a1b-8ba0-8b10e6fa948b/export"/>
    <published>2026-07-10T22:59:15.571452+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9cd59299-36d8-49c5-b0fa-3ac161557a11/export</id>
    <title>9cd59299-36d8-49c5-b0fa-3ac161557a11</title>
    <updated>2026-07-19T20:45:14.643264+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9cd59299-36d8-49c5-b0fa-3ac161557a11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59195", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mq2akkns5g2g", "content": "CVE-2026-59195 - Path Traversal in pnpm. Malicious lockfile can create symlinks outside expected directory. CVSS 8.2. Update to 10.34.4 or 11.8.0 immediately. #CVE #pnpm #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-59195/", "creation_timestamp": "2026-07-07T09:00:57.706747Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9cd59299-36d8-49c5-b0fa-3ac161557a11/export"/>
    <published>2026-07-07T09:00:57.706747+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ec8a7115-e778-460f-8e02-e2f6685680af/export</id>
    <title>ec8a7115-e778-460f-8e02-e2f6685680af</title>
    <updated>2026-07-19T20:45:14.643399+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ec8a7115-e778-460f-8e02-e2f6685680af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59195", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpyiac7bhz2h", "content": "CVE-2026-59195 - pnpm: Path traversal in configDependencies env lockfile allows symlink creation outside node_modules/.pnpm-config\nCVE ID : CVE-2026-59195\n \n Published : July 6, 2026, 3:21 p.m. | 27\u00a0minutes ago\n \n Description : pnpm is a package manager. Prior to 10.34.4 and 1...", "creation_timestamp": "2026-07-06T16:13:06.107423Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ec8a7115-e778-460f-8e02-e2f6685680af/export"/>
    <published>2026-07-06T16:13:06.107423+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/591d88d5-6498-42dd-a09b-61339d5efa29/export</id>
    <title>591d88d5-6498-42dd-a09b-61339d5efa29</title>
    <updated>2026-07-19T20:45:14.643516+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "591d88d5-6498-42dd-a09b-61339d5efa29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59194", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpyi3sovst2q", "content": "CVE-2026-59194 - pnpm: patch-remove could delete project-selected files outside the patches directory\nCVE ID : CVE-2026-59194\n \n Published : July 6, 2026, 3:16 p.m. | 31\u00a0minutes ago\n \n Description : pnpm is a package manager. Prior to 10.34.4 and 11.7.0, a crafted patch entry ...", "creation_timestamp": "2026-07-06T16:10:33.447729Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/591d88d5-6498-42dd-a09b-61339d5efa29/export"/>
    <published>2026-07-06T16:10:33.447729+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/941b07c9-d711-4425-bc46-ac390eb5dbfe/export</id>
    <title>941b07c9-d711-4425-bc46-ac390eb5dbfe</title>
    <updated>2026-07-19T20:45:14.643590+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "941b07c9-d711-4425-bc46-ac390eb5dbfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59196", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpyhgmpw5b27", "content": "CVE-2026-59196 - pnpm: hoisted install imports lockfile alias outside node_modules\nCVE ID : CVE-2026-59196\n \n Published : July 6, 2026, 3:18 p.m. | 29\u00a0minutes ago\n \n Description : pnpm is a package manager. Prior to 10.34.4 and 11.7.0, a crafted lockfile alias could be joined ...", "creation_timestamp": "2026-07-06T15:58:42.371712Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/941b07c9-d711-4425-bc46-ac390eb5dbfe/export"/>
    <published>2026-07-06T15:58:42.371712+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/78e2fb22-f220-4dd0-a9b5-408555f2a81b/export</id>
    <title>78e2fb22-f220-4dd0-a9b5-408555f2a81b</title>
    <updated>2026-07-19T20:45:14.643660+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "78e2fb22-f220-4dd0-a9b5-408555f2a81b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5919", "type": "seen", "source": "https://www.thezdi.com/blog/2026/4/14/the-april-2026-security-update-review", "content": "", "creation_timestamp": "2026-04-14T15:49:19.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/78e2fb22-f220-4dd0-a9b5-408555f2a81b/export"/>
    <published>2026-04-14T15:49:19+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e6bffbc1-0460-419f-bf35-5f6a7ac96280/export</id>
    <title>e6bffbc1-0460-419f-bf35-5f6a7ac96280</title>
    <updated>2026-07-19T20:45:14.643734+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "e6bffbc1-0460-419f-bf35-5f6a7ac96280", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5919", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/microsoft-edge-multiple-vulnerabilities_20260413", "content": "", "creation_timestamp": "2026-04-12T20:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e6bffbc1-0460-419f-bf35-5f6a7ac96280/export"/>
    <published>2026-04-12T20:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4d9a2b07-c9cf-4e3e-b63f-30c923be2b5b/export</id>
    <title>4d9a2b07-c9cf-4e3e-b63f-30c923be2b5b</title>
    <updated>2026-07-19T20:45:14.644571+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cvepremium.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "4d9a2b07-c9cf-4e3e-b63f-30c923be2b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-5919", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities_20260409", "content": "", "creation_timestamp": "2026-04-08T18:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4d9a2b07-c9cf-4e3e-b63f-30c923be2b5b/export"/>
    <published>2026-04-08T18:00:00+00:00</published>
  </entry>
</feed>
