<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-18T01:43:57.627688+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d3969a48-c746-4395-abe2-930443c02c98/export</id>
    <title>d3969a48-c746-4395-abe2-930443c02c98</title>
    <updated>2026-07-18T01:43:57.648401+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d3969a48-c746-4395-abe2-930443c02c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9810", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqtszon5z62j", "content": "CVE-2026-9810 - ai copilot\nThe AIWU plugin for WordPress doesn't properly check user access, allowing attackers to gain administrator privileges without logging in. This can lead to sensitive tasks being\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#aicopilot #unknown #CVE #infosec", "creation_timestamp": "2026-07-17T13:08:06.158135Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d3969a48-c746-4395-abe2-930443c02c98/export"/>
    <published>2026-07-17T13:08:06.158135+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/42d1876a-93f3-4935-98b9-8de8fda7596a/export</id>
    <title>42d1876a-93f3-4935-98b9-8de8fda7596a</title>
    <updated>2026-07-18T01:43:57.651785+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "42d1876a-93f3-4935-98b9-8de8fda7596a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-9810", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqtbdb7t3m24", "content": "CVE-2026-9810 - AI Chatbot &amp;amp; Workflow Automation by AIWU\nCVE ID : CVE-2026-9810\n \n Published : July 17, 2026, 7:16 a.m. | 20\u00a0minutes ago\n \n Description : The AI Copilot WordPress plugin before 1.5.4 does not bind OAuth access tokens to a WordPress user, and accepts any valid t...", "creation_timestamp": "2026-07-17T07:51:20.307382Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/42d1876a-93f3-4935-98b9-8de8fda7596a/export"/>
    <published>2026-07-17T07:51:20.307382+00:00</published>
  </entry>
</feed>
