<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 05 Jul 2026 12:58:01 +0000</lastBuildDate>
    <item>
      <title>8b041040-cbf2-4224-98f9-015c3a64ace6</title>
      <link>https://vulnerability.circl.lu/sighting/8b041040-cbf2-4224-98f9-015c3a64ace6/export</link>
      <description>{"uuid": "8b041040-cbf2-4224-98f9-015c3a64ace6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq7sxfbns26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-33592: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438\u0441\u0447\u0435\u0440\u043f\u0430\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0447\u0435\u0440\u0435\u0437 FindServers\n\n\n\nhttps://kripta.biz/posts/B4C8283B-275F-4D91-AC4B-2C53650DB15A", "creation_timestamp": "2026-07-03T09:21:08.392626Z"}</description>
      <content:encoded>{"uuid": "8b041040-cbf2-4224-98f9-015c3a64ace6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq7sxfbns26", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-33592: \u0443\u0433\u0440\u043e\u0437\u0430 \u0438\u0441\u0447\u0435\u0440\u043f\u0430\u043d\u0438\u044f \u043f\u0430\u043c\u044f\u0442\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u0447\u0435\u0440\u0435\u0437 FindServers\n\n\n\nhttps://kripta.biz/posts/B4C8283B-275F-4D91-AC4B-2C53650DB15A", "creation_timestamp": "2026-07-03T09:21:08.392626Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8b041040-cbf2-4224-98f9-015c3a64ace6/export</guid>
      <pubDate>Fri, 03 Jul 2026 09:21:08 +0000</pubDate>
    </item>
    <item>
      <title>4143803d-8095-443f-a53e-a27f141c4ea2</title>
      <link>https://vulnerability.circl.lu/sighting/4143803d-8095-443f-a53e-a27f141c4ea2/export</link>
      <description>{"uuid": "4143803d-8095-443f-a53e-a27f141c4ea2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpouwdyjwi2q", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-33592: \u043a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u044b \u043e\u0442 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 FindServers\n\n\n\nhttps://kripta.biz/posts/0E3B8ED6-75C3-4D5C-9D6B-FB2A02C62B2E", "creation_timestamp": "2026-07-02T20:33:31.376989Z"}</description>
      <content:encoded>{"uuid": "4143803d-8095-443f-a53e-a27f141c4ea2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpouwdyjwi2q", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-33592: \u043a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u0441\u0435\u0440\u0432\u0435\u0440\u044b \u043e\u0442 \u0430\u0442\u0430\u043a\u0438 \u043d\u0430 FindServers\n\n\n\nhttps://kripta.biz/posts/0E3B8ED6-75C3-4D5C-9D6B-FB2A02C62B2E", "creation_timestamp": "2026-07-02T20:33:31.376989Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4143803d-8095-443f-a53e-a27f141c4ea2/export</guid>
      <pubDate>Thu, 02 Jul 2026 20:33:31 +0000</pubDate>
    </item>
    <item>
      <title>9def9339-3a9c-4143-86d4-0fd94cf67e68</title>
      <link>https://vulnerability.circl.lu/sighting/9def9339-3a9c-4143-86d4-0fd94cf67e68/export</link>
      <description>{"uuid": "9def9339-3a9c-4143-86d4-0fd94cf67e68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mpnx77kiss24", "content": "open62541\u306e1.4.0-1.4.16\u30011.5.0-1.5.4\u3001master\u7248\u306b\u8106\u5f31\u6027\u304c\u3042\u308b\u3002\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u30ea\u30e2\u30fc\u30c8\u653b\u6483\u8005\u304c\u6700\u59273.9GB\u306e\u6587\u5b57\u5217\u3092\u5ba3\u8a00\u3057\u3001\u30b7\u30b9\u30c6\u30e0\u30ea\u30bd\u30fc\u30b9\u3092\u67af\u6e07\u3055\u305b\u3001\u30b5\u30fc\u30d3\u2026\nCVE-2026-33592 CVSS 7.5 | HIGH", "creation_timestamp": "2026-07-02T11:41:36.308346Z"}</description>
      <content:encoded>{"uuid": "9def9339-3a9c-4143-86d4-0fd94cf67e68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mpnx77kiss24", "content": "open62541\u306e1.4.0-1.4.16\u30011.5.0-1.5.4\u3001master\u7248\u306b\u8106\u5f31\u6027\u304c\u3042\u308b\u3002\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u30ea\u30e2\u30fc\u30c8\u653b\u6483\u8005\u304c\u6700\u59273.9GB\u306e\u6587\u5b57\u5217\u3092\u5ba3\u8a00\u3057\u3001\u30b7\u30b9\u30c6\u30e0\u30ea\u30bd\u30fc\u30b9\u3092\u67af\u6e07\u3055\u305b\u3001\u30b5\u30fc\u30d3\u2026\nCVE-2026-33592 CVSS 7.5 | HIGH", "creation_timestamp": "2026-07-02T11:41:36.308346Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9def9339-3a9c-4143-86d4-0fd94cf67e68/export</guid>
      <pubDate>Thu, 02 Jul 2026 11:41:36 +0000</pubDate>
    </item>
    <item>
      <title>08c22a31-85c3-4f93-80dd-d00c6528c2eb</title>
      <link>https://vulnerability.circl.lu/sighting/08c22a31-85c3-4f93-80dd-d00c6528c2eb/export</link>
      <description>{"uuid": "08c22a31-85c3-4f93-80dd-d00c6528c2eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpnmsx6cyz2m", "content": "CVE-2026-33592 - FindServers Memory Exhaustion in open62541\nCVE ID : CVE-2026-33592\n \n Published : July 2, 2026, 7:12 a.m. | 34\u00a0minutes ago\n \n Description : An unauthenticated remote attacker can exhaust\nserver memory via the FindServers Discovery Service in open62541. The\nser...", "creation_timestamp": "2026-07-02T08:35:47.739186Z"}</description>
      <content:encoded>{"uuid": "08c22a31-85c3-4f93-80dd-d00c6528c2eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33592", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpnmsx6cyz2m", "content": "CVE-2026-33592 - FindServers Memory Exhaustion in open62541\nCVE ID : CVE-2026-33592\n \n Published : July 2, 2026, 7:12 a.m. | 34\u00a0minutes ago\n \n Description : An unauthenticated remote attacker can exhaust\nserver memory via the FindServers Discovery Service in open62541. The\nser...", "creation_timestamp": "2026-07-02T08:35:47.739186Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/08c22a31-85c3-4f93-80dd-d00c6528c2eb/export</guid>
      <pubDate>Thu, 02 Jul 2026 08:35:47 +0000</pubDate>
    </item>
    <item>
      <title>aa014640-b30e-4367-acb8-3790ff3dc404</title>
      <link>https://vulnerability.circl.lu/sighting/aa014640-b30e-4367-acb8-3790ff3dc404/export</link>
      <description>{"uuid": "aa014640-b30e-4367-acb8-3790ff3dc404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moeo4rr6a32c", "content": "The Portainer host-takeover flaw (CVE-2026-33590) hits anyone running a shared instance: any authenticated non-admin from before 2.38.0 could reach root-equivalent host access through default-allowed bind mounts and privileged mode. Upgrade now. Who has non-admin logins on your setup?\n#security", "creation_timestamp": "2026-06-16T01:40:01.950018Z"}</description>
      <content:encoded>{"uuid": "aa014640-b30e-4367-acb8-3790ff3dc404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moeo4rr6a32c", "content": "The Portainer host-takeover flaw (CVE-2026-33590) hits anyone running a shared instance: any authenticated non-admin from before 2.38.0 could reach root-equivalent host access through default-allowed bind mounts and privileged mode. Upgrade now. Who has non-admin logins on your setup?\n#security", "creation_timestamp": "2026-06-16T01:40:01.950018Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/aa014640-b30e-4367-acb8-3790ff3dc404/export</guid>
      <pubDate>Tue, 16 Jun 2026 01:40:01 +0000</pubDate>
    </item>
    <item>
      <title>c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974</title>
      <link>https://vulnerability.circl.lu/sighting/c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974/export</link>
      <description>{"uuid": "c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moel7rztfz2x", "content": "Portainer versions before 2.38.0 allowed bind mounts and privileged mode on user containers by default, letting an authenticated non-admin escalate to root-equivalent host access (CVE-2026-33590). Fixes are in 2.38.0 STS and 2.39.0 LTS. Should privileged mode ever default to on?\n#containers", "creation_timestamp": "2026-06-16T00:48:01.853589Z"}</description>
      <content:encoded>{"uuid": "c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moel7rztfz2x", "content": "Portainer versions before 2.38.0 allowed bind mounts and privileged mode on user containers by default, letting an authenticated non-admin escalate to root-equivalent host access (CVE-2026-33590). Fixes are in 2.38.0 STS and 2.39.0 LTS. Should privileged mode ever default to on?\n#containers", "creation_timestamp": "2026-06-16T00:48:01.853589Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974/export</guid>
      <pubDate>Tue, 16 Jun 2026 00:48:01 +0000</pubDate>
    </item>
    <item>
      <title>16562ade-e5f4-4678-8ff2-ccd4c5d0501b</title>
      <link>https://vulnerability.circl.lu/sighting/16562ade-e5f4-4678-8ff2-ccd4c5d0501b/export</link>
      <description>{"uuid": "16562ade-e5f4-4678-8ff2-ccd4c5d0501b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rd3yvp72n", "content": "CVE-2026-33590: Insecure default settings of Portainer", "creation_timestamp": "2026-06-12T12:43:17.535729Z"}</description>
      <content:encoded>{"uuid": "16562ade-e5f4-4678-8ff2-ccd4c5d0501b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rd3yvp72n", "content": "CVE-2026-33590: Insecure default settings of Portainer", "creation_timestamp": "2026-06-12T12:43:17.535729Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/16562ade-e5f4-4678-8ff2-ccd4c5d0501b/export</guid>
      <pubDate>Fri, 12 Jun 2026 12:43:17 +0000</pubDate>
    </item>
    <item>
      <title>d8db5e0e-8644-4475-b7e6-8c29c2915844</title>
      <link>https://vulnerability.circl.lu/sighting/d8db5e0e-8644-4475-b7e6-8c29c2915844/export</link>
      <description>{"uuid": "d8db5e0e-8644-4475-b7e6-8c29c2915844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwydw5s2c2n", "content": "CVE-2026-33590 - Insecure default permissions in Portainer CE\nCVE ID : CVE-2026-33590\n \n Published : May 28, 2026, 8:16 p.m. | 15\u00a0minutes ago\n \n Description : Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access...", "creation_timestamp": "2026-05-28T21:40:30.883093Z"}</description>
      <content:encoded>{"uuid": "d8db5e0e-8644-4475-b7e6-8c29c2915844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwydw5s2c2n", "content": "CVE-2026-33590 - Insecure default permissions in Portainer CE\nCVE ID : CVE-2026-33590\n \n Published : May 28, 2026, 8:16 p.m. | 15\u00a0minutes ago\n \n Description : Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access...", "creation_timestamp": "2026-05-28T21:40:30.883093Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d8db5e0e-8644-4475-b7e6-8c29c2915844/export</guid>
      <pubDate>Thu, 28 May 2026 21:40:30 +0000</pubDate>
    </item>
    <item>
      <title>41068a4e-8984-4064-845a-726c75ed3395</title>
      <link>https://vulnerability.circl.lu/sighting/41068a4e-8984-4064-845a-726c75ed3395/export</link>
      <description>{"uuid": "41068a4e-8984-4064-845a-726c75ed3395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mm4rax4irf2j", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-3359 10Web\u306eForm\u00a0Maker\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nCVE-2026-3359\u306f\u3001WordPress\u7528\u306eForm Maker\u30d7\u30e9\u30b0\u30a4\u30f3\u306b\u304a\u3044\u3066\u3001'inputs'\u30d1\u30e9\u30e1\u30fc\u30bf\u3092\u901a\u3058\u3066SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u307e\u3059\u3002", "creation_timestamp": "2026-05-18T11:24:21.870635Z"}</description>
      <content:encoded>{"uuid": "41068a4e-8984-4064-845a-726c75ed3395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mm4rax4irf2j", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-3359 10Web\u306eForm\u00a0Maker\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nCVE-2026-3359\u306f\u3001WordPress\u7528\u306eForm Maker\u30d7\u30e9\u30b0\u30a4\u30f3\u306b\u304a\u3044\u3066\u3001'inputs'\u30d1\u30e9\u30e1\u30fc\u30bf\u3092\u901a\u3058\u3066SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u307e\u3059\u3002", "creation_timestamp": "2026-05-18T11:24:21.870635Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/41068a4e-8984-4064-845a-726c75ed3395/export</guid>
      <pubDate>Mon, 18 May 2026 11:24:21 +0000</pubDate>
    </item>
    <item>
      <title>7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd</title>
      <link>https://vulnerability.circl.lu/sighting/7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd/export</link>
      <description>{"uuid": "7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3ml5d7yvx2m2s", "content": "CVE-2026-3359: SQL Injection en Form Maker sin auth\n\nCVE-2026-3359 es una SQL Injection sin autenticaci\u00f3n en Form Maker by 10Web (hasta v1.15.42). Actualiz\u00e1 ya y proteg\u00e9 tu base de datos WordPress.\n\n#cve20263359 #sqlinjection #formmaker10web #wordpressvulnerabilidad", "creation_timestamp": "2026-05-05T23:20:46.432906Z"}</description>
      <content:encoded>{"uuid": "7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3ml5d7yvx2m2s", "content": "CVE-2026-3359: SQL Injection en Form Maker sin auth\n\nCVE-2026-3359 es una SQL Injection sin autenticaci\u00f3n en Form Maker by 10Web (hasta v1.15.42). Actualiz\u00e1 ya y proteg\u00e9 tu base de datos WordPress.\n\n#cve20263359 #sqlinjection #formmaker10web #wordpressvulnerabilidad", "creation_timestamp": "2026-05-05T23:20:46.432906Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd/export</guid>
      <pubDate>Tue, 05 May 2026 23:20:46 +0000</pubDate>
    </item>
  </channel>
</rss>
