<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Tue, 14 Jul 2026 09:45:28 +0000</lastBuildDate>
    <item>
      <title>fb191856-eed2-4def-95b1-d367fc0cb65e</title>
      <link>https://vulnerability.circl.lu/sighting/fb191856-eed2-4def-95b1-d367fc0cb65e/export</link>
      <description>{"uuid": "fb191856-eed2-4def-95b1-d367fc0cb65e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "published-proof-of-concept", "source": "https://t.me/exec_iq/271", "content": "Most vulnerability writeups start with the finding.\n\nI wanted to write about everything that came before it.\nThe dead ends. The hypotheses I had to kill myself. The silent assumptions everyone else walked past. The patch history and the one wrong function name that allowed the bug class behind CVE-2026-32808 to survive its fix.\nThe Bug Was Never the Point.\nThe vulnerability is only the case study.\n\nThe real subject is how an open-source zero-day researcher learns to think.\n\n\nhttps://thesmartshadow.github.io/the-bug-was-never-the-point/", "creation_timestamp": "2026-07-13T00:00:42.624416Z"}</description>
      <content:encoded>{"uuid": "fb191856-eed2-4def-95b1-d367fc0cb65e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "published-proof-of-concept", "source": "https://t.me/exec_iq/271", "content": "Most vulnerability writeups start with the finding.\n\nI wanted to write about everything that came before it.\nThe dead ends. The hypotheses I had to kill myself. The silent assumptions everyone else walked past. The patch history and the one wrong function name that allowed the bug class behind CVE-2026-32808 to survive its fix.\nThe Bug Was Never the Point.\nThe vulnerability is only the case study.\n\nThe real subject is how an open-source zero-day researcher learns to think.\n\n\nhttps://thesmartshadow.github.io/the-bug-was-never-the-point/", "creation_timestamp": "2026-07-13T00:00:42.624416Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/fb191856-eed2-4def-95b1-d367fc0cb65e/export</guid>
      <pubDate>Mon, 13 Jul 2026 00:00:42 +0000</pubDate>
    </item>
    <item>
      <title>501623b9-4519-4da2-9387-17a9816fe757</title>
      <link>https://vulnerability.circl.lu/sighting/501623b9-4519-4da2-9387-17a9816fe757/export</link>
      <description>{"uuid": "501623b9-4519-4da2-9387-17a9816fe757", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "published-proof-of-concept", "source": "https://t.me/exec_iq/271", "content": "Most vulnerability writeups start with the finding.\n\nI wanted to write about everything that came before it.\nThe dead ends. The hypotheses I had to kill myself. The silent assumptions everyone else walked past. The patch history and the one wrong function name that allowed the bug class behind CVE-2026-32808 to survive its fix.\nThe Bug Was Never the Point.\nThe vulnerability is only the case study.\n\nThe real subject is how an open-source zero-day researcher learns to think.\n\n\nhttps://thesmartshadow.github.io/the-bug-was-never-the-point/", "creation_timestamp": "2026-07-12T14:00:06.635279Z"}</description>
      <content:encoded>{"uuid": "501623b9-4519-4da2-9387-17a9816fe757", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "published-proof-of-concept", "source": "https://t.me/exec_iq/271", "content": "Most vulnerability writeups start with the finding.\n\nI wanted to write about everything that came before it.\nThe dead ends. The hypotheses I had to kill myself. The silent assumptions everyone else walked past. The patch history and the one wrong function name that allowed the bug class behind CVE-2026-32808 to survive its fix.\nThe Bug Was Never the Point.\nThe vulnerability is only the case study.\n\nThe real subject is how an open-source zero-day researcher learns to think.\n\n\nhttps://thesmartshadow.github.io/the-bug-was-never-the-point/", "creation_timestamp": "2026-07-12T14:00:06.635279Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/501623b9-4519-4da2-9387-17a9816fe757/export</guid>
      <pubDate>Sun, 12 Jul 2026 14:00:06 +0000</pubDate>
    </item>
    <item>
      <title>43847fa3-574a-4784-ae9f-e5cf766ceb3c</title>
      <link>https://vulnerability.circl.lu/sighting/43847fa3-574a-4784-ae9f-e5cf766ceb3c/export</link>
      <description>{"uuid": "43847fa3-574a-4784-ae9f-e5cf766ceb3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://t.me/exec_iq/255", "content": "CVE-2026-32808 | pyLoad\nArbitrary File Deletion via Path Traversal during Encrypted 7z Password Verification\nCVSS 8.1 HIGH\n\n\u062a\u0645 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062b\u063a\u0631\u0629 \u0631\u0633\u0645\u064a\u0627\u064b \u0641\u064a \u0642\u0627\u0639\u062f\u0629 \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0648\u0643\u0627\u0644\u0629 \u0627\u0644\u0627\u062a\u062d\u0627\u062f \u0627\u0644\u0623\u0648\u0631\u0648\u0628\u064a \u0644\u0644\u0623\u0645\u0646 \u0627\u0644\u0633\u064a\u0628\u0631\u0627\u0646\u064a \u0644\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u062a\u062d\u062a \u0627\u0644\u0645\u0639\u0631\u0641\n\nEUVD-2026-13435\n\n\u0643\u0645\u0627 \u062a\u0645\u062a \u0641\u0647\u0631\u0633\u062a\u0647\u0627 \u0648\u0631\u0635\u062f\u0647\u0627 \u0639\u0628\u0631 \u0639\u062f\u0629 \u0645\u0635\u0627\u062f\u0631 \u0623\u0645\u0646\u064a\u0629 \u0645\u0646 \u0628\u064a\u0646\u0647\u0627:\n\nNVD \u00b7 Tenable \u00b7 Snyk \u00b7 Debian \u00b7 Red Hat \u00b7 ENISA \u00b7 OSV \u00b7 CIRCL \u00b7 CVEdetails \u00b7 PT Security \u00b7 SentinelOne \u00b7 Feedly \u00b7 Mondoo\n\nDiscovered by:\n\nAli Firas - thesmartshadow\nAli Alakbar - ExeC_IQ", "creation_timestamp": "2026-05-28T21:48:36.000000Z"}</description>
      <content:encoded>{"uuid": "43847fa3-574a-4784-ae9f-e5cf766ceb3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://t.me/exec_iq/255", "content": "CVE-2026-32808 | pyLoad\nArbitrary File Deletion via Path Traversal during Encrypted 7z Password Verification\nCVSS 8.1 HIGH\n\n\u062a\u0645 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062b\u063a\u0631\u0629 \u0631\u0633\u0645\u064a\u0627\u064b \u0641\u064a \u0642\u0627\u0639\u062f\u0629 \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0648\u0643\u0627\u0644\u0629 \u0627\u0644\u0627\u062a\u062d\u0627\u062f \u0627\u0644\u0623\u0648\u0631\u0648\u0628\u064a \u0644\u0644\u0623\u0645\u0646 \u0627\u0644\u0633\u064a\u0628\u0631\u0627\u0646\u064a \u0644\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u062a\u062d\u062a \u0627\u0644\u0645\u0639\u0631\u0641\n\nEUVD-2026-13435\n\n\u0643\u0645\u0627 \u062a\u0645\u062a \u0641\u0647\u0631\u0633\u062a\u0647\u0627 \u0648\u0631\u0635\u062f\u0647\u0627 \u0639\u0628\u0631 \u0639\u062f\u0629 \u0645\u0635\u0627\u062f\u0631 \u0623\u0645\u0646\u064a\u0629 \u0645\u0646 \u0628\u064a\u0646\u0647\u0627:\n\nNVD \u00b7 Tenable \u00b7 Snyk \u00b7 Debian \u00b7 Red Hat \u00b7 ENISA \u00b7 OSV \u00b7 CIRCL \u00b7 CVEdetails \u00b7 PT Security \u00b7 SentinelOne \u00b7 Feedly \u00b7 Mondoo\n\nDiscovered by:\n\nAli Firas - thesmartshadow\nAli Alakbar - ExeC_IQ", "creation_timestamp": "2026-05-28T21:48:36.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/43847fa3-574a-4784-ae9f-e5cf766ceb3c/export</guid>
      <pubDate>Thu, 28 May 2026 21:48:36 +0000</pubDate>
    </item>
    <item>
      <title>a6b9057c-b29d-4665-b1ad-fd5162354289</title>
      <link>https://vulnerability.circl.lu/sighting/a6b9057c-b29d-4665-b1ad-fd5162354289/export</link>
      <description>{"uuid": "a6b9057c-b29d-4665-b1ad-fd5162354289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mhygiaf6jk2p", "content": "", "creation_timestamp": "2026-03-26T20:20:09.941803Z"}</description>
      <content:encoded>{"uuid": "a6b9057c-b29d-4665-b1ad-fd5162354289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mhygiaf6jk2p", "content": "", "creation_timestamp": "2026-03-26T20:20:09.941803Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a6b9057c-b29d-4665-b1ad-fd5162354289/export</guid>
      <pubDate>Thu, 26 Mar 2026 20:20:09 +0000</pubDate>
    </item>
    <item>
      <title>392cb2e9-ed05-4d9c-b8cd-25b1951a72db</title>
      <link>https://vulnerability.circl.lu/sighting/392cb2e9-ed05-4d9c-b8cd-25b1951a72db/export</link>
      <description>{"uuid": "392cb2e9-ed05-4d9c-b8cd-25b1951a72db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhygi7cysr2v", "content": "", "creation_timestamp": "2026-03-26T20:20:08.757874Z"}</description>
      <content:encoded>{"uuid": "392cb2e9-ed05-4d9c-b8cd-25b1951a72db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhygi7cysr2v", "content": "", "creation_timestamp": "2026-03-26T20:20:08.757874Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/392cb2e9-ed05-4d9c-b8cd-25b1951a72db/export</guid>
      <pubDate>Thu, 26 Mar 2026 20:20:08 +0000</pubDate>
    </item>
    <item>
      <title>6cb81ec6-5614-4a5d-bd3f-5b5f68422790</title>
      <link>https://vulnerability.circl.lu/sighting/6cb81ec6-5614-4a5d-bd3f-5b5f68422790/export</link>
      <description>{"uuid": "6cb81ec6-5614-4a5d-bd3f-5b5f68422790", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mhhpfzrubn2n", "content": "", "creation_timestamp": "2026-03-20T04:44:44.034901Z"}</description>
      <content:encoded>{"uuid": "6cb81ec6-5614-4a5d-bd3f-5b5f68422790", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-32808", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mhhpfzrubn2n", "content": "", "creation_timestamp": "2026-03-20T04:44:44.034901Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6cb81ec6-5614-4a5d-bd3f-5b5f68422790/export</guid>
      <pubDate>Fri, 20 Mar 2026 04:44:44 +0000</pubDate>
    </item>
  </channel>
</rss>
