<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 04 Jul 2026 18:18:34 +0000</lastBuildDate>
    <item>
      <title>b92cea3d-586b-41a2-aa2f-2eefc69a5c31</title>
      <link>https://vulnerability.circl.lu/sighting/b92cea3d-586b-41a2-aa2f-2eefc69a5c31/export</link>
      <description>{"uuid": "b92cea3d-586b-41a2-aa2f-2eefc69a5c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motnwzjsrp2l", "content": "\ud83d\udea8  ALERT: CVE-2026-25555\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nOpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an empty X-Api-Key header value. Attackers can explo", "creation_timestamp": "2026-06-22T00:46:44.713793Z"}</description>
      <content:encoded>{"uuid": "b92cea3d-586b-41a2-aa2f-2eefc69a5c31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/securitycyberuk.bsky.social/post/3motnwzjsrp2l", "content": "\ud83d\udea8  ALERT: CVE-2026-25555\n\nCVSS 9.8/10\n\n\ud83d\udccb WHAT IT IS:\nOpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an empty X-Api-Key header value. Attackers can explo", "creation_timestamp": "2026-06-22T00:46:44.713793Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/b92cea3d-586b-41a2-aa2f-2eefc69a5c31/export</guid>
      <pubDate>Mon, 22 Jun 2026 00:46:44 +0000</pubDate>
    </item>
    <item>
      <title>e87c147a-77af-4f56-ad96-3a5098a2edab</title>
      <link>https://vulnerability.circl.lu/sighting/e87c147a-77af-4f56-ad96-3a5098a2edab/export</link>
      <description>{"uuid": "e87c147a-77af-4f56-ad96-3a5098a2edab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-25555.yaml", "content": "", "creation_timestamp": "2026-06-16T03:30:23.000000Z"}</description>
      <content:encoded>{"uuid": "e87c147a-77af-4f56-ad96-3a5098a2edab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-25555.yaml", "content": "", "creation_timestamp": "2026-06-16T03:30:23.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e87c147a-77af-4f56-ad96-3a5098a2edab/export</guid>
      <pubDate>Tue, 16 Jun 2026 03:30:23 +0000</pubDate>
    </item>
    <item>
      <title>da5fccc7-5135-47cf-81f4-6ad6be6fcf33</title>
      <link>https://vulnerability.circl.lu/sighting/da5fccc7-5135-47cf-81f4-6ad6be6fcf33/export</link>
      <description>{"uuid": "da5fccc7-5135-47cf-81f4-6ad6be6fcf33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnsgrf6fel23", "content": "CVE-2026-25555 - OpenBullet2 0.3.2 Authentication Bypass via X-Api-Key Header\nCVE ID : CVE-2026-25555\n \n Published : June 8, 2026, 5:16 p.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API k...", "creation_timestamp": "2026-06-08T19:40:54.373974Z"}</description>
      <content:encoded>{"uuid": "da5fccc7-5135-47cf-81f4-6ad6be6fcf33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25555", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnsgrf6fel23", "content": "CVE-2026-25555 - OpenBullet2 0.3.2 Authentication Bypass via X-Api-Key Header\nCVE ID : CVE-2026-25555\n \n Published : June 8, 2026, 5:16 p.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API k...", "creation_timestamp": "2026-06-08T19:40:54.373974Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/da5fccc7-5135-47cf-81f4-6ad6be6fcf33/export</guid>
      <pubDate>Mon, 08 Jun 2026 19:40:54 +0000</pubDate>
    </item>
  </channel>
</rss>
