<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 06 Jul 2026 07:21:33 +0000</lastBuildDate>
    <item>
      <title>45cb860e-c44f-4352-bc71-f4daf9a46d52</title>
      <link>https://vulnerability.circl.lu/sighting/45cb860e-c44f-4352-bc71-f4daf9a46d52/export</link>
      <description>{"uuid": "45cb860e-c44f-4352-bc71-f4daf9a46d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42527", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwcegqmov22", "content": "CVE-2026-42527: Apache Camel: Permissive default ObjectInputFilter pattern admits java.net.** and enables DNS-based information disclosure", "creation_timestamp": "2026-07-05T19:22:40.973176Z"}</description>
      <content:encoded>{"uuid": "45cb860e-c44f-4352-bc71-f4daf9a46d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42527", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mpwcegqmov22", "content": "CVE-2026-42527: Apache Camel: Permissive default ObjectInputFilter pattern admits java.net.** and enables DNS-based information disclosure", "creation_timestamp": "2026-07-05T19:22:40.973176Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/45cb860e-c44f-4352-bc71-f4daf9a46d52/export</guid>
      <pubDate>Sun, 05 Jul 2026 19:22:40 +0000</pubDate>
    </item>
    <item>
      <title>5a709c3f-a57b-4d73-bea2-c0d1fe94bc6b</title>
      <link>https://vulnerability.circl.lu/sighting/5a709c3f-a57b-4d73-bea2-c0d1fe94bc6b/export</link>
      <description>{"uuid": "5a709c3f-a57b-4d73-bea2-c0d1fe94bc6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42526", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mppznipaao2m", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-42526 \u0432 AWS Secrets Manager \u0438 SSM Parameter Store: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f Apache Airflow\n\n\n\nhttps://kripta.biz/posts/DCEF8668-4EB1-4731-9CF6-3F3038CC6A59", "creation_timestamp": "2026-07-03T07:30:42.625548Z"}</description>
      <content:encoded>{"uuid": "5a709c3f-a57b-4d73-bea2-c0d1fe94bc6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42526", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mppznipaao2m", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-42526 \u0432 AWS Secrets Manager \u0438 SSM Parameter Store: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f Apache Airflow\n\n\n\nhttps://kripta.biz/posts/DCEF8668-4EB1-4731-9CF6-3F3038CC6A59", "creation_timestamp": "2026-07-03T07:30:42.625548Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/5a709c3f-a57b-4d73-bea2-c0d1fe94bc6b/export</guid>
      <pubDate>Fri, 03 Jul 2026 07:30:42 +0000</pubDate>
    </item>
    <item>
      <title>65c0991e-4188-4b26-a7a4-ee51063b8ee6</title>
      <link>https://vulnerability.circl.lu/sighting/65c0991e-4188-4b26-a7a4-ee51063b8ee6/export</link>
      <description>{"uuid": "65c0991e-4188-4b26-a7a4-ee51063b8ee6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42526", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmahaomavt2t", "content": "CVE-2026-42526 - Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends\nCVE ID : CVE-2026-42526\n \n Published : May 19, 2026, 8:16 p.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : In the AWS Secre...", "creation_timestamp": "2026-05-19T22:36:07.185048Z"}</description>
      <content:encoded>{"uuid": "65c0991e-4188-4b26-a7a4-ee51063b8ee6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42526", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmahaomavt2t", "content": "CVE-2026-42526 - Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends\nCVE ID : CVE-2026-42526\n \n Published : May 19, 2026, 8:16 p.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : In the AWS Secre...", "creation_timestamp": "2026-05-19T22:36:07.185048Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/65c0991e-4188-4b26-a7a4-ee51063b8ee6/export</guid>
      <pubDate>Tue, 19 May 2026 22:36:07 +0000</pubDate>
    </item>
    <item>
      <title>247696c8-6316-4fe4-92f8-596f765ffae9</title>
      <link>https://vulnerability.circl.lu/sighting/247696c8-6316-4fe4-92f8-596f765ffae9/export</link>
      <description>{"uuid": "247696c8-6316-4fe4-92f8-596f765ffae9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42526", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mma4tie6mk25", "content": "CVE-2026-42526: Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends", "creation_timestamp": "2026-05-19T19:29:34.343945Z"}</description>
      <content:encoded>{"uuid": "247696c8-6316-4fe4-92f8-596f765ffae9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42526", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mma4tie6mk25", "content": "CVE-2026-42526: Apache Airflow Amazon provider: Prevent unauthorized access to team-scoped secrets in AWS Secrets Manager and SSM Parameter Store backends", "creation_timestamp": "2026-05-19T19:29:34.343945Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/247696c8-6316-4fe4-92f8-596f765ffae9/export</guid>
      <pubDate>Tue, 19 May 2026 19:29:34 +0000</pubDate>
    </item>
    <item>
      <title>4393f11d-ce2c-472a-89e8-5ded2fc0a235</title>
      <link>https://vulnerability.circl.lu/sighting/4393f11d-ce2c-472a-89e8-5ded2fc0a235/export</link>
      <description>{"uuid": "4393f11d-ce2c-472a-89e8-5ded2fc0a235", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42523", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mlqeqeikhi22", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42523 Jenkins GitHub\u00a0Plugin\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nJenkins GitHub Plugin 1.46.0\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306f\u3001\"GitHub hook trigger for GITScm polling\"\u6a5f\u80fd\u306e\u691c\u8a3c\u3092\u5b9f\u88c5\u3059\u308bJavaScript\u306e\u4e00\u90e8\u3068\u3057\u3066\u3001", "creation_timestamp": "2026-05-13T13:08:23.742991Z"}</description>
      <content:encoded>{"uuid": "4393f11d-ce2c-472a-89e8-5ded2fc0a235", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42523", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mlqeqeikhi22", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42523 Jenkins GitHub\u00a0Plugin\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nJenkins GitHub Plugin 1.46.0\u4ee5\u524d\u306e\u30d0\u30fc\u30b8\u30e7\u30f3\u306f\u3001\"GitHub hook trigger for GITScm polling\"\u6a5f\u80fd\u306e\u691c\u8a3c\u3092\u5b9f\u88c5\u3059\u308bJavaScript\u306e\u4e00\u90e8\u3068\u3057\u3066\u3001", "creation_timestamp": "2026-05-13T13:08:23.742991Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4393f11d-ce2c-472a-89e8-5ded2fc0a235/export</guid>
      <pubDate>Wed, 13 May 2026 13:08:23 +0000</pubDate>
    </item>
    <item>
      <title>62b57abc-30e2-4251-8638-5530c472f213</title>
      <link>https://vulnerability.circl.lu/sighting/62b57abc-30e2-4251-8638-5530c472f213/export</link>
      <description>{"uuid": "62b57abc-30e2-4251-8638-5530c472f213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42523", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml5zwmlcjd25", "content": "\ud83d\udccc CVE-2026-42523 - Jenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of JavaScript implementing validation of the feature \"GitHub... https://www.cyberhub.blog/cves/CVE-2026-42523", "creation_timestamp": "2026-05-06T06:07:07.363795Z"}</description>
      <content:encoded>{"uuid": "62b57abc-30e2-4251-8638-5530c472f213", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42523", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml5zwmlcjd25", "content": "\ud83d\udccc CVE-2026-42523 - Jenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of JavaScript implementing validation of the feature \"GitHub... https://www.cyberhub.blog/cves/CVE-2026-42523", "creation_timestamp": "2026-05-06T06:07:07.363795Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/62b57abc-30e2-4251-8638-5530c472f213/export</guid>
      <pubDate>Wed, 06 May 2026 06:07:07 +0000</pubDate>
    </item>
    <item>
      <title>dcf3229f-482c-41aa-9db1-226dfd680da6</title>
      <link>https://vulnerability.circl.lu/sighting/dcf3229f-482c-41aa-9db1-226dfd680da6/export</link>
      <description>{"uuid": "dcf3229f-482c-41aa-9db1-226dfd680da6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml574cgbfw2r", "content": "\ud83d\udccc CVE-2026-42524 - Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting ... https://www.cyberhub.blog/cves/CVE-2026-42524", "creation_timestamp": "2026-05-05T22:07:06.646586Z"}</description>
      <content:encoded>{"uuid": "dcf3229f-482c-41aa-9db1-226dfd680da6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3ml574cgbfw2r", "content": "\ud83d\udccc CVE-2026-42524 - Jenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrapper file, resulting in a stored cross-site scripting ... https://www.cyberhub.blog/cves/CVE-2026-42524", "creation_timestamp": "2026-05-05T22:07:06.646586Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/dcf3229f-482c-41aa-9db1-226dfd680da6/export</guid>
      <pubDate>Tue, 05 May 2026 22:07:06 +0000</pubDate>
    </item>
    <item>
      <title>a70687f5-9ce6-4f01-89e9-df73aa543211</title>
      <link>https://vulnerability.circl.lu/sighting/a70687f5-9ce6-4f01-89e9-df73aa543211/export</link>
      <description>{"uuid": "a70687f5-9ce6-4f01-89e9-df73aa543211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmssaozi2z", "content": "\ud83d\udfe0 CVE-2026-42524 - High (8)\n\nJenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrap...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42524/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:43.891399Z"}</description>
      <content:encoded>{"uuid": "a70687f5-9ce6-4f01-89e9-df73aa543211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42524", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmssaozi2z", "content": "\ud83d\udfe0 CVE-2026-42524 - High (8)\n\nJenkins HTML Publisher Plugin 427 and earlier does not escape job name and URL in the legacy wrap...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42524/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:43.891399Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a70687f5-9ce6-4f01-89e9-df73aa543211/export</guid>
      <pubDate>Thu, 30 Apr 2026 22:07:43 +0000</pubDate>
    </item>
    <item>
      <title>904b37fb-a01f-4c43-b52b-fc1f410d29e1</title>
      <link>https://vulnerability.circl.lu/sighting/904b37fb-a01f-4c43-b52b-fc1f410d29e1/export</link>
      <description>{"uuid": "904b37fb-a01f-4c43-b52b-fc1f410d29e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42523", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmskn7yy2z", "content": "\ud83d\udd34 CVE-2026-42523 - Critical (9)\n\nJenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of Java...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42523/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:35.976922Z"}</description>
      <content:encoded>{"uuid": "904b37fb-a01f-4c43-b52b-fc1f410d29e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42523", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmskn7yy2z", "content": "\ud83d\udd34 CVE-2026-42523 - Critical (9)\n\nJenkins GitHub Plugin 1.46.0 and earlier improperly processes the current job URL as part of Java...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42523/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:35.976922Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/904b37fb-a01f-4c43-b52b-fc1f410d29e1/export</guid>
      <pubDate>Thu, 30 Apr 2026 22:07:35 +0000</pubDate>
    </item>
    <item>
      <title>68d503cc-6b23-4664-9d13-1afefb20e934</title>
      <link>https://vulnerability.circl.lu/sighting/68d503cc-6b23-4664-9d13-1afefb20e934/export</link>
      <description>{"uuid": "68d503cc-6b23-4664-9d13-1afefb20e934", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42520", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmsdd5lr2n", "content": "\ud83d\udfe0 CVE-2026-42520 - High (7.5)\n\nJenkins Credentials Binding Plugin 719.v80e905ef14eb_ and earlier does not sanitize file names fo...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42520/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:28.466945Z"}</description>
      <content:encoded>{"uuid": "68d503cc-6b23-4664-9d13-1afefb20e934", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42520", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mkqmsdd5lr2n", "content": "\ud83d\udfe0 CVE-2026-42520 - High (7.5)\n\nJenkins Credentials Binding Plugin 719.v80e905ef14eb_ and earlier does not sanitize file names fo...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42520/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-04-30T22:07:28.466945Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/68d503cc-6b23-4664-9d13-1afefb20e934/export</guid>
      <pubDate>Thu, 30 Apr 2026 22:07:28 +0000</pubDate>
    </item>
  </channel>
</rss>
