<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 05 Jul 2026 01:22:36 +0000</lastBuildDate>
    <item>
      <title>688e40cf-0b21-464e-8a79-c2cf38892fce</title>
      <link>https://vulnerability.circl.lu/sighting/688e40cf-0b21-464e-8a79-c2cf38892fce/export</link>
      <description>{"uuid": "688e40cf-0b21-464e-8a79-c2cf38892fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49352", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mprk4i62nu2j", "content": "CVE-2026-49352 - 9router\n9router's default secret is hardcoded and publicly known, allowing unauthorized users to access the dashboard and API if the server's JWT secret is not set. This vulnerability\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#9router #decolua #npm #CVE #infosec", "creation_timestamp": "2026-07-03T21:58:06.747307Z"}</description>
      <content:encoded>{"uuid": "688e40cf-0b21-464e-8a79-c2cf38892fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-49352", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mprk4i62nu2j", "content": "CVE-2026-49352 - 9router\n9router's default secret is hardcoded and publicly known, allowing unauthorized users to access the dashboard and API if the server's JWT secret is not set. This vulnerability\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#9router #decolua #npm #CVE #infosec", "creation_timestamp": "2026-07-03T21:58:06.747307Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/688e40cf-0b21-464e-8a79-c2cf38892fce/export</guid>
      <pubDate>Fri, 03 Jul 2026 21:58:06 +0000</pubDate>
    </item>
    <item>
      <title>8e330481-1ad0-4eb0-99db-100170fa4b24</title>
      <link>https://vulnerability.circl.lu/sighting/8e330481-1ad0-4eb0-99db-100170fa4b24/export</link>
      <description>{"uuid": "8e330481-1ad0-4eb0-99db-100170fa4b24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49352", "type": "published-proof-of-concept", "source": "https://github.com/decolua/9router/security/advisories/GHSA-jphh-m39h-6gwx", "content": "", "creation_timestamp": "2026-07-02T22:35:02.831369Z"}</description>
      <content:encoded>{"uuid": "8e330481-1ad0-4eb0-99db-100170fa4b24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-49352", "type": "published-proof-of-concept", "source": "https://github.com/decolua/9router/security/advisories/GHSA-jphh-m39h-6gwx", "content": "", "creation_timestamp": "2026-07-02T22:35:02.831369Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8e330481-1ad0-4eb0-99db-100170fa4b24/export</guid>
      <pubDate>Thu, 02 Jul 2026 22:35:02 +0000</pubDate>
    </item>
  </channel>
</rss>
