<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T20:02:52.143811+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/213f94c5-7c26-43d0-8b58-e0b0e0d5957a/export</id>
    <title>213f94c5-7c26-43d0-8b58-e0b0e0d5957a</title>
    <updated>2026-07-17T20:02:52.166678+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "213f94c5-7c26-43d0-8b58-e0b0e0d5957a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61462", "type": "seen", "source": "https://bsky.app/profile/khesefxyz.bsky.social/post/3mqqskth4na2g", "content": "\u05d7\u05e9\u05d9\u05e4\u05d4: \u05e4\u05d2\u05d9\u05e2\u05d4 \u05e7\u05e9\u05d4 \u05d1\u05de\u05e2\u05e8\u05db\u05ea mcp-gitlab - CVE-2026-61462 \u05d5\u05de\u05d4 \u05d6\u05d4 \u05d0\u05d5\u05de\u05e8 \u05dc\u05da\n\n\n\nhttps://khesef.xyz/posts/EBC74CAE-B20E-4CD7-9229-4A67D6F464CC", "creation_timestamp": "2026-07-16T08:21:48.538579Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/213f94c5-7c26-43d0-8b58-e0b0e0d5957a/export"/>
    <published>2026-07-16T08:21:48.538579+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/72a708de-c2f2-40e3-a205-7e863de0db0c/export</id>
    <title>72a708de-c2f2-40e3-a205-7e863de0db0c</title>
    <updated>2026-07-17T20:02:52.170800+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "72a708de-c2f2-40e3-a205-7e863de0db0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61463", "type": "seen", "source": "https://bsky.app/profile/khesefxyz.bsky.social/post/3mqqsjrjhz62b", "content": "\u05d4\u05e4\u05d2\u05d9\u05e2\u05d4 \u05d4\u05e7\u05e8\u05d9\u05d8\u05d9\u05ea \u05d1-Shiori: CVE-2026-61463 \u05d5\u05de\u05d4 \u05d6\u05d4 \u05d0\u05d5\u05de\u05e8 \u05dc\u05da\n\n\n\nhttps://khesef.xyz/posts/3557721E-C69B-4487-A433-58739833712F", "creation_timestamp": "2026-07-16T08:21:13.342655Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/72a708de-c2f2-40e3-a205-7e863de0db0c/export"/>
    <published>2026-07-16T08:21:13.342655+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fe4e2ba4-5412-4c63-89ba-0b505394ea03/export</id>
    <title>fe4e2ba4-5412-4c63-89ba-0b505394ea03</title>
    <updated>2026-07-17T20:02:52.170985+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fe4e2ba4-5412-4c63-89ba-0b505394ea03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61462", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqld3dppxo2y", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61462 \u0432 mcp-gitlab: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u0443\u0442\u0438 \u043f\u0435\u0440\u0435\u0431\u043e\u0440\u0430 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/44B86A96-6435-4217-BD96-8E04B556FC59", "creation_timestamp": "2026-07-14T04:01:23.939605Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fe4e2ba4-5412-4c63-89ba-0b505394ea03/export"/>
    <published>2026-07-14T04:01:23.939605+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5bcf3c8d-6b15-475e-84e7-28566abee8e3/export</id>
    <title>5bcf3c8d-6b15-475e-84e7-28566abee8e3</title>
    <updated>2026-07-17T20:02:52.171127+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5bcf3c8d-6b15-475e-84e7-28566abee8e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61463", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqlck67g3c2w", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61463 \u0432 Shiori: \u043a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u0441\u0432\u043e\u0439 \u043f\u0440\u043e\u0435\u043a\u0442 \u043e\u0442 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439\n\n\n\nhttps://kripta.biz/posts/CCDCAAB4-53E1-442E-AF1B-F36390E41DC9", "creation_timestamp": "2026-07-14T03:51:47.625512Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5bcf3c8d-6b15-475e-84e7-28566abee8e3/export"/>
    <published>2026-07-14T03:51:47.625512+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/65aa78bf-aff8-4491-aa84-295c4e4e959e/export</id>
    <title>65aa78bf-aff8-4491-aa84-295c4e4e959e</title>
    <updated>2026-07-17T20:02:52.171258+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "65aa78bf-aff8-4491-aa84-295c4e4e959e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61462", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkexp5qxn2t", "content": "CVE-2026-61462 - mcp-gitlab Path Traversal via job_id Parameter\nCVE ID : CVE-2026-61462\n \n Published : July 13, 2026, 6:16 p.m. | 17\u00a0minutes ago\n \n Description : mcp-gitlab contains a path traversal vulnerability in the job_id parameter of build/index.js that allows attackers ...", "creation_timestamp": "2026-07-13T19:02:29.529211Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/65aa78bf-aff8-4491-aa84-295c4e4e959e/export"/>
    <published>2026-07-13T19:02:29.529211+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ba6cc3e7-1458-4c4c-bb3d-abe9562ee64f/export</id>
    <title>ba6cc3e7-1458-4c4c-bb3d-abe9562ee64f</title>
    <updated>2026-07-17T20:02:52.171379+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ba6cc3e7-1458-4c4c-bb3d-abe9562ee64f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61463", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqkeoqqymn2k", "content": "CVE-2026-61463 - Shiori Authenticated Privilege Escalation via PATCH /api/v1/auth/account\nCVE ID : CVE-2026-61463\n \n Published : July 13, 2026, 6:16 p.m. | 17\u00a0minutes ago\n \n Description : Shiori contains a privilege escalation vulnerability in the account update endpoint that ...", "creation_timestamp": "2026-07-13T18:57:29.294932Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ba6cc3e7-1458-4c4c-bb3d-abe9562ee64f/export"/>
    <published>2026-07-13T18:57:29.294932+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/021a9fbc-8870-443e-a5ac-6d061f97d7d9/export</id>
    <title>021a9fbc-8870-443e-a5ac-6d061f97d7d9</title>
    <updated>2026-07-17T20:02:52.171505+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "021a9fbc-8870-443e-a5ac-6d061f97d7d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61462", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqke5w7ni22d", "content": "CVE-2026-61462\nMCP-GitLab has a security flaw that allows attackers to redirect GitLab API requests to any endpoint. This means an attacker could potentially access sensitive information or take unauthorized actions within\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-13T18:48:04.759299Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/021a9fbc-8870-443e-a5ac-6d061f97d7d9/export"/>
    <published>2026-07-13T18:48:04.759299+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0a5ff1a1-6f68-43e5-9352-39d660a6969c/export</id>
    <title>0a5ff1a1-6f68-43e5-9352-39d660a6969c</title>
    <updated>2026-07-17T20:02:52.171628+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0a5ff1a1-6f68-43e5-9352-39d660a6969c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61461", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqezuzs5f32l", "content": "\ud83d\udfe0 CVE-2026-61461 - High (8.8)\n\nDify before 1.16.0-rc1 contains a SQL injection vulnerability in the MyScale vector store backend...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-61461/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-11T16:00:52.725032Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0a5ff1a1-6f68-43e5-9352-39d660a6969c/export"/>
    <published>2026-07-11T16:00:52.725032+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2359ffcc-1010-40fd-83b1-047545b1aab2/export</id>
    <title>2359ffcc-1010-40fd-83b1-047545b1aab2</title>
    <updated>2026-07-17T20:02:52.171802+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2359ffcc-1010-40fd-83b1-047545b1aab2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61465", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqeyzhasa22x", "content": "CVE-2026-61465 - ImageMagick before 7.1.2-26 Memory Allocation Policy Bypass\nCVE ID : CVE-2026-61465\n \n Published : July 11, 2026, 2:16 p.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : ImageMagick before 7.1.2-26 and 6.9.13-51 is missing a check for the allowed memory allocation ...", "creation_timestamp": "2026-07-11T15:45:35.424391Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2359ffcc-1010-40fd-83b1-047545b1aab2/export"/>
    <published>2026-07-11T15:45:35.424391+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ccfbadb7-0820-46b4-9597-61eea83e53d6/export</id>
    <title>ccfbadb7-0820-46b4-9597-61eea83e53d6</title>
    <updated>2026-07-17T20:02:52.171903+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ccfbadb7-0820-46b4-9597-61eea83e53d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61465", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqev2g7vee2w", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61465 \u0432 ImageMagick: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/2D2A3D73-6827-4B9D-AB3B-D235819BB595", "creation_timestamp": "2026-07-11T14:34:22.452426Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ccfbadb7-0820-46b4-9597-61eea83e53d6/export"/>
    <published>2026-07-11T14:34:22.452426+00:00</published>
  </entry>
</feed>
