https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 08 Jun 2026 23:07:32 +0000 https://vulnerability.circl.lu/sighting/153fdcc8-0404-4497-ab9b-a4446512c4b3/export {"uuid": "153fdcc8-0404-4497-ab9b-a4446512c4b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} {"uuid": "153fdcc8-0404-4497-ab9b-a4446512c4b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} https://vulnerability.circl.lu/sighting/153fdcc8-0404-4497-ab9b-a4446512c4b3/export Thu, 04 Jun 2026 00:00:00 +0000 https://vulnerability.circl.lu/sighting/b14573e4-9d4e-48e3-adf4-e51b3f8be249/export {"uuid": "b14573e4-9d4e-48e3-adf4-e51b3f8be249", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} {"uuid": "b14573e4-9d4e-48e3-adf4-e51b3f8be249", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} https://vulnerability.circl.lu/sighting/b14573e4-9d4e-48e3-adf4-e51b3f8be249/export Thu, 04 Jun 2026 00:00:00 +0000 https://vulnerability.circl.lu/sighting/0c02cad5-ed03-445a-9a29-9be77e18a6c1/export {"uuid": "0c02cad5-ed03-445a-9a29-9be77e18a6c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3mnhe2g72vk2v", "content": "We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, in CISA KEV).\nAnd new research: we asked 241 devs who use AI coding tools whether the validation gap widened. 76% use AI always or usually. Only 9% say testing keeps pace.\nWatch the full video walkthrough.", "creation_timestamp": "2026-06-04T09:52:33.527482Z"} {"uuid": "0c02cad5-ed03-445a-9a29-9be77e18a6c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3mnhe2g72vk2v", "content": "We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, in CISA KEV).\nAnd new research: we asked 241 devs who use AI coding tools whether the validation gap widened. 76% use AI always or usually. Only 9% say testing keeps pace.\nWatch the full video walkthrough.", "creation_timestamp": "2026-06-04T09:52:33.527482Z"} https://vulnerability.circl.lu/sighting/0c02cad5-ed03-445a-9a29-9be77e18a6c1/export Thu, 04 Jun 2026 09:52:33 +0000 https://vulnerability.circl.lu/sighting/aaf5057e-adc7-41ed-ae0e-992e2323488c/export {"uuid": "aaf5057e-adc7-41ed-ae0e-992e2323488c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnhtszjofo2f", "content": "Caught the cPanel exploit (CVE-2026-41940) May 11. CISA listed it June 4. Public exploit = attack cost ~$0; you still pay weeks to patch. That 24-day gap is the breach: https://www.dugganusa.com/post/we-flagged-the-cpanel-exploit-24-days-before-cisa-listed-it-the-economics-of-that-gap-should-scare", "creation_timestamp": "2026-06-04T14:34:46.695460Z"} {"uuid": "aaf5057e-adc7-41ed-ae0e-992e2323488c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnhtszjofo2f", "content": "Caught the cPanel exploit (CVE-2026-41940) May 11. CISA listed it June 4. Public exploit = attack cost ~$0; you still pay weeks to patch. That 24-day gap is the breach: https://www.dugganusa.com/post/we-flagged-the-cpanel-exploit-24-days-before-cisa-listed-it-the-economics-of-that-gap-should-scare", "creation_timestamp": "2026-06-04T14:34:46.695460Z"} https://vulnerability.circl.lu/sighting/aaf5057e-adc7-41ed-ae0e-992e2323488c/export Thu, 04 Jun 2026 14:34:46 +0000 https://vulnerability.circl.lu/sighting/a8c699a4-e74d-46ba-820a-dd343c08b945/export {"uuid": "a8c699a4-e74d-46ba-820a-dd343c08b945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} {"uuid": "a8c699a4-e74d-46ba-820a-dd343c08b945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} https://vulnerability.circl.lu/sighting/a8c699a4-e74d-46ba-820a-dd343c08b945/export Fri, 05 Jun 2026 00:00:00 +0000 https://vulnerability.circl.lu/sighting/4b902b92-bcbe-4e72-8098-5e92fba79d52/export {"uuid": "4b902b92-bcbe-4e72-8098-5e92fba79d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} {"uuid": "4b902b92-bcbe-4e72-8098-5e92fba79d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} https://vulnerability.circl.lu/sighting/4b902b92-bcbe-4e72-8098-5e92fba79d52/export Fri, 05 Jun 2026 00:00:00 +0000 https://vulnerability.circl.lu/sighting/7efa85c6-ef2a-4810-a215-87d905174494/export {"uuid": "7efa85c6-ef2a-4810-a215-87d905174494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/87441", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-41940-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a olofsatte\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-05 13:59:03\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel and WHM. This repository is designed to demonstrate its Proof-Of-Concept\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-05T14:00:04.000000Z"} {"uuid": "7efa85c6-ef2a-4810-a215-87d905174494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/87441", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-41940-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a olofsatte\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-05 13:59:03\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel and WHM. This repository is designed to demonstrate its Proof-Of-Concept\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-05T14:00:04.000000Z"} https://vulnerability.circl.lu/sighting/7efa85c6-ef2a-4810-a215-87d905174494/export Fri, 05 Jun 2026 14:00:04 +0000 https://vulnerability.circl.lu/sighting/99ba17fe-10d9-4a52-88ff-d391a42e3cad/export {"uuid": "99ba17fe-10d9-4a52-88ff-d391a42e3cad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-06)", "content": "", "creation_timestamp": "2026-06-06T00:00:00.000000Z"} {"uuid": "99ba17fe-10d9-4a52-88ff-d391a42e3cad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-06)", "content": "", "creation_timestamp": "2026-06-06T00:00:00.000000Z"} https://vulnerability.circl.lu/sighting/99ba17fe-10d9-4a52-88ff-d391a42e3cad/export Sat, 06 Jun 2026 00:00:00 +0000 https://vulnerability.circl.lu/sighting/e3af1ecd-17b1-4531-9d38-4c79c1768717/export {"uuid": "e3af1ecd-17b1-4531-9d38-4c79c1768717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-07)", "content": "", "creation_timestamp": "2026-06-07T00:00:00.000000Z"} {"uuid": "e3af1ecd-17b1-4531-9d38-4c79c1768717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-07)", "content": "", "creation_timestamp": "2026-06-07T00:00:00.000000Z"} https://vulnerability.circl.lu/sighting/e3af1ecd-17b1-4531-9d38-4c79c1768717/export Sun, 07 Jun 2026 00:00:00 +0000 https://vulnerability.circl.lu/sighting/1e01d00f-9d19-4109-9a35-b22fc89ca4a2/export {"uuid": "1e01d00f-9d19-4109-9a35-b22fc89ca4a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/cwealthsentinel.bsky.social/post/3mnrhtskk2i2a", "content": "This week in cyber: ShinyHunters leaks 42M Charter records, cPanel flaw (CVE-2026-41940) hits 40K+ servers, and Cisco patches its 6th SD-WAN zero-day of 2026. Identity and patch lag are doing the damage. \n\nFull Top 5 \u2192 commonwealthsentinel.com/cyber-securi... \n\nCyberSecurity #InfoSec", "creation_timestamp": "2026-06-08T10:27:04.587476Z"} {"uuid": "1e01d00f-9d19-4109-9a35-b22fc89ca4a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/cwealthsentinel.bsky.social/post/3mnrhtskk2i2a", "content": "This week in cyber: ShinyHunters leaks 42M Charter records, cPanel flaw (CVE-2026-41940) hits 40K+ servers, and Cisco patches its 6th SD-WAN zero-day of 2026. Identity and patch lag are doing the damage. \n\nFull Top 5 \u2192 commonwealthsentinel.com/cyber-securi... \n\nCyberSecurity #InfoSec", "creation_timestamp": "2026-06-08T10:27:04.587476Z"} https://vulnerability.circl.lu/sighting/1e01d00f-9d19-4109-9a35-b22fc89ca4a2/export Mon, 08 Jun 2026 10:27:04 +0000