<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-16T13:04:30.175676+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1c78d135-0a20-4da1-bfda-0d8310cdcbbd/export</id>
    <title>1c78d135-0a20-4da1-bfda-0d8310cdcbbd</title>
    <updated>2026-07-16T13:04:30.194442+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1c78d135-0a20-4da1-bfda-0d8310cdcbbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59891", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqmyusdtuq25", "content": "CVE-2026-59891 - sigstore-js\nA security issue in the Sigstore library for JavaScript affects Docker registry credentials. If not updated to the latest version, this could allow attackers to access\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#sigstorejs #sigstore #CVE #infosec", "creation_timestamp": "2026-07-14T20:04:06.240258Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1c78d135-0a20-4da1-bfda-0d8310cdcbbd/export"/>
    <published>2026-07-14T20:04:06.240258+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d16bac5c-5953-47a0-8026-f494aee3af7d/export</id>
    <title>d16bac5c-5953-47a0-8026-f494aee3af7d</title>
    <updated>2026-07-16T13:04:30.196593+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d16bac5c-5953-47a0-8026-f494aee3af7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59896", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdk5bfkh22e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59896 \u0432 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0435 Hono: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/40E7192F-62BD-4229-B11C-B8DE26F01D52", "creation_timestamp": "2026-07-11T01:46:26.875177Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d16bac5c-5953-47a0-8026-f494aee3af7d/export"/>
    <published>2026-07-11T01:46:26.875177+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6dac1746-5145-4b4b-8972-0a32b0ad3442/export</id>
    <title>6dac1746-5145-4b4b-8972-0a32b0ad3442</title>
    <updated>2026-07-16T13:04:30.196692+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6dac1746-5145-4b4b-8972-0a32b0ad3442", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59897", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdjp6lzib27", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59897 \u0432 \u0444\u0440\u0435\u0439\u043c\u0432\u043e\u0440\u043a\u0435 Hono: \u0443\u0433\u0440\u043e\u0437\u044b \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/B596B5CD-2CBF-4E07-934C-D63B267E5758", "creation_timestamp": "2026-07-11T01:38:34.203790Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6dac1746-5145-4b4b-8972-0a32b0ad3442/export"/>
    <published>2026-07-11T01:38:34.203790+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4d847aba-005b-447d-801d-4a1ff16cd7d1/export</id>
    <title>4d847aba-005b-447d-801d-4a1ff16cd7d1</title>
    <updated>2026-07-16T13:04:30.196765+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4d847aba-005b-447d-801d-4a1ff16cd7d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59897", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5vv5sjnq2i", "content": "CVE-2026-59897 - Hono: API Gateway v1 adapter can drop a distinct repeated request header value during de-duplication\nCVE ID : CVE-2026-59897\n \n Published : July 8, 2026, 5:17 p.m. | 31\u00a0minutes ago\n \n Description : Hono is a Web application framework that provides support for ...", "creation_timestamp": "2026-07-08T20:00:41.268358Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4d847aba-005b-447d-801d-4a1ff16cd7d1/export"/>
    <published>2026-07-08T20:00:41.268358+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/33521735-ecab-423c-b163-0a8360c6f10e/export</id>
    <title>33521735-ecab-423c-b163-0a8360c6f10e</title>
    <updated>2026-07-16T13:04:30.196839+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "33521735-ecab-423c-b163-0a8360c6f10e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59890", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5vm6vmlj2i", "content": "CVE-2026-59890 - setuptools: MANIFEST.in exclusion bypass in sdist via Unicode normalization collision (NFC/NFD) on macOS APFS/HFS+\nCVE ID : CVE-2026-59890\n \n Published : July 8, 2026, 5:17 p.m. | 31\u00a0minutes ago\n \n Description : setuptools is a package that allows users to dow...", "creation_timestamp": "2026-07-08T19:55:40.311996Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/33521735-ecab-423c-b163-0a8360c6f10e/export"/>
    <published>2026-07-08T19:55:40.311996+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ced88740-bcf9-487a-8cc3-3bcfe6c254ff/export</id>
    <title>ced88740-bcf9-487a-8cc3-3bcfe6c254ff</title>
    <updated>2026-07-16T13:04:30.196910+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ced88740-bcf9-487a-8cc3-3bcfe6c254ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59896", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5tg7c5df2g", "content": "CVE-2026-59896 - hono/jsx does not isolate context per request, leading to cross-request data disclosure\nCVE ID : CVE-2026-59896\n \n Published : July 8, 2026, 5:17 p.m. | 31\u00a0minutes ago\n \n Description : Hono is a Web application framework that provides support for any JavaScrip...", "creation_timestamp": "2026-07-08T19:16:32.003313Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ced88740-bcf9-487a-8cc3-3bcfe6c254ff/export"/>
    <published>2026-07-08T19:16:32.003313+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cfe458f9-b89d-4532-82a2-ec2a6d60cd26/export</id>
    <title>cfe458f9-b89d-4532-82a2-ec2a6d60cd26</title>
    <updated>2026-07-16T13:04:30.196978+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cfe458f9-b89d-4532-82a2-ec2a6d60cd26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59895", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5tcmefry2e", "content": "CVE-2026-59895 - Hono: Server-Side XSS via JSX Escaping Bypass in cx() Utility\nCVE ID : CVE-2026-59895\n \n Published : July 8, 2026, 5:17 p.m. | 31\u00a0minutes ago\n \n Description : Hono is a Web application framework that provides support for any JavaScript runtime. From 4.0.0 befo...", "creation_timestamp": "2026-07-08T19:14:31.510642Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cfe458f9-b89d-4532-82a2-ec2a6d60cd26/export"/>
    <published>2026-07-08T19:14:31.510642+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4c5bd2ad-a208-4543-8036-7cf45e252a2c/export</id>
    <title>4c5bd2ad-a208-4543-8036-7cf45e252a2c</title>
    <updated>2026-07-16T13:04:30.197046+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4c5bd2ad-a208-4543-8036-7cf45e252a2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5989", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mkqrsngb442r", "content": "\ud83d\udccc CVE-2026-5989 - A flaw has been found in Tenda F451 1.0.0.7. Affected is the function fromRouteStatic of the file /goform/RouteStatic. Executing a manipulation of the... https://www.cyberhub.blog/cves/CVE-2026-5989", "creation_timestamp": "2026-04-30T23:37:14.269056Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4c5bd2ad-a208-4543-8036-7cf45e252a2c/export"/>
    <published>2026-04-30T23:37:14.269056+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8b23c1e6-3a22-490b-b8b8-ed817c1f8e17/export</id>
    <title>8b23c1e6-3a22-490b-b8b8-ed817c1f8e17</title>
    <updated>2026-07-16T13:04:30.197117+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8b23c1e6-3a22-490b-b8b8-ed817c1f8e17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5989", "type": "seen", "source": "Telegram/r2aLRB54Ih_OSR-P7tVQ1PquPIQ5c0jGeGUejuuUUcNPCN8", "content": "", "creation_timestamp": "2026-04-10T01:19:02.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8b23c1e6-3a22-490b-b8b8-ed817c1f8e17/export"/>
    <published>2026-04-10T01:19:02+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3d482d64-0b28-41f1-aea3-e97f7f70a876/export</id>
    <title>3d482d64-0b28-41f1-aea3-e97f7f70a876</title>
    <updated>2026-07-16T13:04:30.197183+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3d482d64-0b28-41f1-aea3-e97f7f70a876", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5989", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mj44ymxfzy2i", "content": "", "creation_timestamp": "2026-04-10T01:06:13.146062Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3d482d64-0b28-41f1-aea3-e97f7f70a876/export"/>
    <published>2026-04-10T01:06:13.146062+00:00</published>
  </entry>
</feed>
