<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 11 Jul 2026 20:38:39 +0000</lastBuildDate>
    <item>
      <title>7158696b-1725-4be7-be94-bf02036c2a67</title>
      <link>https://vulnerability.circl.lu/sighting/7158696b-1725-4be7-be94-bf02036c2a67/export</link>
      <description>{"uuid": "7158696b-1725-4be7-be94-bf02036c2a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26759", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</description>
      <content:encoded>{"uuid": "7158696b-1725-4be7-be94-bf02036c2a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26759", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7158696b-1725-4be7-be94-bf02036c2a67/export</guid>
      <pubDate>Mon, 25 Aug 2025 18:31:43 +0000</pubDate>
    </item>
    <item>
      <title>db7efb39-34a0-48bd-a56a-2811840d437e</title>
      <link>https://vulnerability.circl.lu/sighting/db7efb39-34a0-48bd-a56a-2811840d437e/export</link>
      <description>{"uuid": "db7efb39-34a0-48bd-a56a-2811840d437e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26755", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</description>
      <content:encoded>{"uuid": "db7efb39-34a0-48bd-a56a-2811840d437e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26755", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/db7efb39-34a0-48bd-a56a-2811840d437e/export</guid>
      <pubDate>Mon, 25 Aug 2025 18:31:43 +0000</pubDate>
    </item>
    <item>
      <title>9b2417fc-dfd5-45e0-a57a-dd0df5b243df</title>
      <link>https://vulnerability.circl.lu/sighting/9b2417fc-dfd5-45e0-a57a-dd0df5b243df/export</link>
      <description>{"uuid": "9b2417fc-dfd5-45e0-a57a-dd0df5b243df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ll3vwklrbk2l", "content": "", "creation_timestamp": "2025-03-24T04:23:58.794982Z"}</description>
      <content:encoded>{"uuid": "9b2417fc-dfd5-45e0-a57a-dd0df5b243df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ll3vwklrbk2l", "content": "", "creation_timestamp": "2025-03-24T04:23:58.794982Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9b2417fc-dfd5-45e0-a57a-dd0df5b243df/export</guid>
      <pubDate>Mon, 24 Mar 2025 04:23:58 +0000</pubDate>
    </item>
    <item>
      <title>c0402614-560f-4299-8971-a43d50008942</title>
      <link>https://vulnerability.circl.lu/sighting/c0402614-560f-4299-8971-a43d50008942/export</link>
      <description>{"uuid": "c0402614-560f-4299-8971-a43d50008942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "seen", "source": "https://t.me/cvedetector/20930", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2675 - PHPGurukul Bank Locker Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2675 \nPublished : March 24, 2025, 1:15 a.m. | 1\u00a0hour, 25\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in PHPGurukul Bank Locker Management System 1.0. Affected by this issue is some unknown functionality of the file /add-lockertype.php. The manipulation of the argument lockerprice leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-24T04:11:17.000000Z"}</description>
      <content:encoded>{"uuid": "c0402614-560f-4299-8971-a43d50008942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "seen", "source": "https://t.me/cvedetector/20930", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2675 - PHPGurukul Bank Locker Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2675 \nPublished : March 24, 2025, 1:15 a.m. | 1\u00a0hour, 25\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in PHPGurukul Bank Locker Management System 1.0. Affected by this issue is some unknown functionality of the file /add-lockertype.php. The manipulation of the argument lockerprice leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-24T04:11:17.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c0402614-560f-4299-8971-a43d50008942/export</guid>
      <pubDate>Mon, 24 Mar 2025 04:11:17 +0000</pubDate>
    </item>
    <item>
      <title>90c6edb4-65f3-461a-b0c7-6408e85c095b</title>
      <link>https://vulnerability.circl.lu/sighting/90c6edb4-65f3-461a-b0c7-6408e85c095b/export</link>
      <description>{"uuid": "90c6edb4-65f3-461a-b0c7-6408e85c095b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "published-proof-of-concept", "source": "Telegram/TxYF2rNxgao0QlSERqOAIAGczvgtgedogrr1QU2ew4YiRfY", "content": "", "creation_timestamp": "2025-03-24T02:31:04.000000Z"}</description>
      <content:encoded>{"uuid": "90c6edb4-65f3-461a-b0c7-6408e85c095b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2675", "type": "published-proof-of-concept", "source": "Telegram/TxYF2rNxgao0QlSERqOAIAGczvgtgedogrr1QU2ew4YiRfY", "content": "", "creation_timestamp": "2025-03-24T02:31:04.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/90c6edb4-65f3-461a-b0c7-6408e85c095b/export</guid>
      <pubDate>Mon, 24 Mar 2025 02:31:04 +0000</pubDate>
    </item>
    <item>
      <title>91d60598-de4d-48ca-8254-1cd396b7e472</title>
      <link>https://vulnerability.circl.lu/sighting/91d60598-de4d-48ca-8254-1cd396b7e472/export</link>
      <description>{"uuid": "91d60598-de4d-48ca-8254-1cd396b7e472", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26752", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114065783798975123", "content": "", "creation_timestamp": "2025-02-25T17:48:55.666960Z"}</description>
      <content:encoded>{"uuid": "91d60598-de4d-48ca-8254-1cd396b7e472", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26752", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114065783798975123", "content": "", "creation_timestamp": "2025-02-25T17:48:55.666960Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/91d60598-de4d-48ca-8254-1cd396b7e472/export</guid>
      <pubDate>Tue, 25 Feb 2025 17:48:55 +0000</pubDate>
    </item>
    <item>
      <title>37630df8-674c-4b86-a31a-77985e45cc25</title>
      <link>https://vulnerability.circl.lu/sighting/37630df8-674c-4b86-a31a-77985e45cc25/export</link>
      <description>{"uuid": "37630df8-674c-4b86-a31a-77985e45cc25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26757", "type": "seen", "source": "https://t.me/cvedetector/18727", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26757 - Full Services Full Customer PHP Remote File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26757 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FULL SERVICES FULL Customer allows PHP Local File Inclusion. This issue affects FULL Customer: from n/a through 3.1.26. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:16.000000Z"}</description>
      <content:encoded>{"uuid": "37630df8-674c-4b86-a31a-77985e45cc25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26757", "type": "seen", "source": "https://t.me/cvedetector/18727", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26757 - Full Services Full Customer PHP Remote File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26757 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in FULL SERVICES FULL Customer allows PHP Local File Inclusion. This issue affects FULL Customer: from n/a through 3.1.26. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:16.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/37630df8-674c-4b86-a31a-77985e45cc25/export</guid>
      <pubDate>Sat, 22 Feb 2025 19:10:16 +0000</pubDate>
    </item>
    <item>
      <title>8bd8078a-e1b4-46dd-a698-f611d34c33d9</title>
      <link>https://vulnerability.circl.lu/sighting/8bd8078a-e1b4-46dd-a698-f611d34c33d9/export</link>
      <description>{"uuid": "8bd8078a-e1b4-46dd-a698-f611d34c33d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26756", "type": "seen", "source": "https://t.me/cvedetector/18726", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26756 - Grimdonkey Magic the Gathering Card Tooltips Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-26756 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grimdonkey Magic the Gathering Card Tooltips allows Stored XSS. This issue affects Magic the Gathering Card Tooltips: from n/a through 3.5.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:15.000000Z"}</description>
      <content:encoded>{"uuid": "8bd8078a-e1b4-46dd-a698-f611d34c33d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26756", "type": "seen", "source": "https://t.me/cvedetector/18726", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26756 - Grimdonkey Magic the Gathering Card Tooltips Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-26756 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in grimdonkey Magic the Gathering Card Tooltips allows Stored XSS. This issue affects Magic the Gathering Card Tooltips: from n/a through 3.5.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:15.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8bd8078a-e1b4-46dd-a698-f611d34c33d9/export</guid>
      <pubDate>Sat, 22 Feb 2025 19:10:15 +0000</pubDate>
    </item>
    <item>
      <title>5e21852e-18f3-4e16-b142-d2bc59603d2d</title>
      <link>https://vulnerability.circl.lu/sighting/5e21852e-18f3-4e16-b142-d2bc59603d2d/export</link>
      <description>{"uuid": "5e21852e-18f3-4e16-b142-d2bc59603d2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26750", "type": "seen", "source": "https://t.me/cvedetector/18725", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26750 - Vitepos Appsbd Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26750 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Vitepos: from n/a through 3.1.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:11.000000Z"}</description>
      <content:encoded>{"uuid": "5e21852e-18f3-4e16-b142-d2bc59603d2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26750", "type": "seen", "source": "https://t.me/cvedetector/18725", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-26750 - Vitepos Appsbd Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-26750 \nPublished : Feb. 22, 2025, 4:15 p.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Vitepos: from n/a through 3.1.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-22T19:10:11.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/5e21852e-18f3-4e16-b142-d2bc59603d2d/export</guid>
      <pubDate>Sat, 22 Feb 2025 19:10:11 +0000</pubDate>
    </item>
    <item>
      <title>7fb2e5d8-7601-47dd-b378-df7761f87a28</title>
      <link>https://vulnerability.circl.lu/sighting/7fb2e5d8-7601-47dd-b378-df7761f87a28/export</link>
      <description>{"uuid": "7fb2e5d8-7601-47dd-b378-df7761f87a28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26750", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5041", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-26750\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Vitepos: from n/a through 3.1.3.\n\ud83d\udccf Published: 2025-02-22T15:52:11.429Z\n\ud83d\udccf Modified: 2025-02-22T15:52:11.429Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/vitepos-lite/vulnerability/wordpress-vitepos-plugin-3-1-3-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-02-22T16:25:13.000000Z"}</description>
      <content:encoded>{"uuid": "7fb2e5d8-7601-47dd-b378-df7761f87a28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-26750", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5041", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-26750\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: Missing Authorization vulnerability in appsbd Vitepos allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Vitepos: from n/a through 3.1.3.\n\ud83d\udccf Published: 2025-02-22T15:52:11.429Z\n\ud83d\udccf Modified: 2025-02-22T15:52:11.429Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/vitepos-lite/vulnerability/wordpress-vitepos-plugin-3-1-3-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-02-22T16:25:13.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7fb2e5d8-7601-47dd-b378-df7761f87a28/export</guid>
      <pubDate>Sat, 22 Feb 2025 16:25:13 +0000</pubDate>
    </item>
  </channel>
</rss>
