<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 04 Jul 2026 23:54:39 +0000</lastBuildDate>
    <item>
      <title>6f3f345c-3212-48e6-bac2-8421de5c15e9</title>
      <link>https://vulnerability.circl.lu/sighting/6f3f345c-3212-48e6-bac2-8421de5c15e9/export</link>
      <description>{"uuid": "6f3f345c-3212-48e6-bac2-8421de5c15e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mptxjvw2iu2o", "content": "CVE-2026-45504: The 88 CVSS Exchange SSRF Vulnerability That Lets Any Low-Privilege User Steal Your Server Files \u2013 Public PoC Now Available +\u00a0Video\n\nIntroduction: Microsoft Exchange Server, the backbone of enterprise email and collaboration for countless organizations, is once again in the\u2026", "creation_timestamp": "2026-07-04T21:03:34.238810Z"}</description>
      <content:encoded>{"uuid": "6f3f345c-3212-48e6-bac2-8421de5c15e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mptxjvw2iu2o", "content": "CVE-2026-45504: The 88 CVSS Exchange SSRF Vulnerability That Lets Any Low-Privilege User Steal Your Server Files \u2013 Public PoC Now Available +\u00a0Video\n\nIntroduction: Microsoft Exchange Server, the backbone of enterprise email and collaboration for countless organizations, is once again in the\u2026", "creation_timestamp": "2026-07-04T21:03:34.238810Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6f3f345c-3212-48e6-bac2-8421de5c15e9/export</guid>
      <pubDate>Sat, 04 Jul 2026 21:03:34 +0000</pubDate>
    </item>
    <item>
      <title>46da0caa-1795-4f05-90c1-fc56923bcbaa</title>
      <link>https://vulnerability.circl.lu/sighting/46da0caa-1795-4f05-90c1-fc56923bcbaa/export</link>
      <description>{"uuid": "46da0caa-1795-4f05-90c1-fc56923bcbaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mpqy6hfn7t2x", "content": "CVE-2026-45504 in Microsoft Exchange lets authenticated users access arbitrary files. Update now. #MicrosoftExchange #SSRF #CVE202645504 #CyberSecurity #Vulnerability #EnterpriseSecurity thedailytechfeed.com/critical-ssr...", "creation_timestamp": "2026-07-03T16:37:04.601068Z"}</description>
      <content:encoded>{"uuid": "46da0caa-1795-4f05-90c1-fc56923bcbaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mpqy6hfn7t2x", "content": "CVE-2026-45504 in Microsoft Exchange lets authenticated users access arbitrary files. Update now. #MicrosoftExchange #SSRF #CVE202645504 #CyberSecurity #Vulnerability #EnterpriseSecurity thedailytechfeed.com/critical-ssr...", "creation_timestamp": "2026-07-03T16:37:04.601068Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/46da0caa-1795-4f05-90c1-fc56923bcbaa/export</guid>
      <pubDate>Fri, 03 Jul 2026 16:37:04 +0000</pubDate>
    </item>
    <item>
      <title>82bb0e5f-e3bb-4821-b0b0-21859df583cb</title>
      <link>https://vulnerability.circl.lu/sighting/82bb0e5f-e3bb-4821-b0b0-21859df583cb/export</link>
      <description>{"uuid": "82bb0e5f-e3bb-4821-b0b0-21859df583cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mpqdnlhr7z25", "content": "Microsoft Exchange\u306b\u5b58\u5728\u3059\u308bSSRF\u8106\u5f31\u6027\u3001\u6a29\u9650\u306e\u4f4e\u3044\u653b\u6483\u8005\u306b\u3088\u308b\u4efb\u610f\u30d5\u30a1\u30a4\u30eb\u306e\u8aad\u307f\u53d6\u308a\u304c\u53ef\u80fd\u306b\n\n\u65b0\u305f\u306b\u516c\u8868\u3055\u308c\u305fMicrosoft Exchange\u306e\u8106\u5f31\u6027\u306f\u3001CVE-2026-45504\uff08CVSS\u30b9\u30b3\u30a2: 8.8\uff09\u3068\u3057\u3066\u8b58\u5225\u3055\u308c\u3066\u304a\u308a\u3001\u6df1\u523b\u306a\u30b5\u30fc\u30d0\u30fc\u30b5\u30a4\u30c9\u30ea\u30af\u30a8\u30b9\u30c8\u30d5\u30a9\u30fc\u30b8\u30a7\u30ea(SSRF)\u306e\u6b20\u9665\u3092\u9732\u5448\u3059\u308b\u3082\u306e\u3067\u3059\u3002 \u3053\u306e\u554f\u984c\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u6e08\u307f\u306e\u6a29\u9650\u306e\u4f4e\u3044\u30e6\u30fc\u30b6\u30fc\u304c\u3001\u8106\u5f31\u306aExchange\u30b5\u30fc\u30d0\u30fc\u4e0a\u306e\u4efb\u610f\u306e\u30d5\u30a1\u30a4...", "creation_timestamp": "2026-07-03T10:29:43.049412Z"}</description>
      <content:encoded>{"uuid": "82bb0e5f-e3bb-4821-b0b0-21859df583cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mpqdnlhr7z25", "content": "Microsoft Exchange\u306b\u5b58\u5728\u3059\u308bSSRF\u8106\u5f31\u6027\u3001\u6a29\u9650\u306e\u4f4e\u3044\u653b\u6483\u8005\u306b\u3088\u308b\u4efb\u610f\u30d5\u30a1\u30a4\u30eb\u306e\u8aad\u307f\u53d6\u308a\u304c\u53ef\u80fd\u306b\n\n\u65b0\u305f\u306b\u516c\u8868\u3055\u308c\u305fMicrosoft Exchange\u306e\u8106\u5f31\u6027\u306f\u3001CVE-2026-45504\uff08CVSS\u30b9\u30b3\u30a2: 8.8\uff09\u3068\u3057\u3066\u8b58\u5225\u3055\u308c\u3066\u304a\u308a\u3001\u6df1\u523b\u306a\u30b5\u30fc\u30d0\u30fc\u30b5\u30a4\u30c9\u30ea\u30af\u30a8\u30b9\u30c8\u30d5\u30a9\u30fc\u30b8\u30a7\u30ea(SSRF)\u306e\u6b20\u9665\u3092\u9732\u5448\u3059\u308b\u3082\u306e\u3067\u3059\u3002 \u3053\u306e\u554f\u984c\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u6e08\u307f\u306e\u6a29\u9650\u306e\u4f4e\u3044\u30e6\u30fc\u30b6\u30fc\u304c\u3001\u8106\u5f31\u306aExchange\u30b5\u30fc\u30d0\u30fc\u4e0a\u306e\u4efb\u610f\u306e\u30d5\u30a1\u30a4...", "creation_timestamp": "2026-07-03T10:29:43.049412Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/82bb0e5f-e3bb-4821-b0b0-21859df583cb/export</guid>
      <pubDate>Fri, 03 Jul 2026 10:29:43 +0000</pubDate>
    </item>
    <item>
      <title>0cea9c3f-3490-48ee-bd75-89916257e4d4</title>
      <link>https://vulnerability.circl.lu/sighting/0cea9c3f-3490-48ee-bd75-89916257e4d4/export</link>
      <description>{"uuid": "0cea9c3f-3490-48ee-bd75-89916257e4d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mpqb2ro3of2d", "content": "Critical Exchange Server 2019 SSRF Flaw Opens Silent File Theft Path for Authenticated Attackers (CVE-2026-45504) +\u00a0Video\n\nIntroduction: A Hidden Bridge Between Trust and Exploitation A newly uncovered vulnerability in Microsoft Exchange Server 2019 has exposed a dangerous weakness in how trusted\u2026", "creation_timestamp": "2026-07-03T09:43:24.895674Z"}</description>
      <content:encoded>{"uuid": "0cea9c3f-3490-48ee-bd75-89916257e4d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mpqb2ro3of2d", "content": "Critical Exchange Server 2019 SSRF Flaw Opens Silent File Theft Path for Authenticated Attackers (CVE-2026-45504) +\u00a0Video\n\nIntroduction: A Hidden Bridge Between Trust and Exploitation A newly uncovered vulnerability in Microsoft Exchange Server 2019 has exposed a dangerous weakness in how trusted\u2026", "creation_timestamp": "2026-07-03T09:43:24.895674Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0cea9c3f-3490-48ee-bd75-89916257e4d4/export</guid>
      <pubDate>Fri, 03 Jul 2026 09:43:24 +0000</pubDate>
    </item>
    <item>
      <title>06f335de-632d-4eeb-a7b6-3f00962e6cb4</title>
      <link>https://vulnerability.circl.lu/sighting/06f335de-632d-4eeb-a7b6-3f00962e6cb4/export</link>
      <description>{"uuid": "06f335de-632d-4eeb-a7b6-3f00962e6cb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mppb26onoj2k", "content": "HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now.\n#MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #Infosec", "creation_timestamp": "2026-07-03T00:10:25.573277Z"}</description>
      <content:encoded>{"uuid": "06f335de-632d-4eeb-a7b6-3f00962e6cb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mppb26onoj2k", "content": "HawkTrace publicly disclosed Microsoft Exchange vulnerability CVE-2026-45504 with PoC exploit code. The SSRF flaw reads arbitrary files. Patch now.\n#MicrosoftExchange #CVE202645504 #SSRF #Cybersecurity #PoC #Infosec", "creation_timestamp": "2026-07-03T00:10:25.573277Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/06f335de-632d-4eeb-a7b6-3f00962e6cb4/export</guid>
      <pubDate>Fri, 03 Jul 2026 00:10:25 +0000</pubDate>
    </item>
    <item>
      <title>9f22095c-ec61-4d9f-984e-3f16f11f7a4c</title>
      <link>https://vulnerability.circl.lu/sighting/9f22095c-ec61-4d9f-984e-3f16f11f7a4c/export</link>
      <description>{"uuid": "9f22095c-ec61-4d9f-984e-3f16f11f7a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-privilege-escalation-vulnerability-exchange-server-2016-2019-and-subscription", "content": "", "creation_timestamp": "2026-07-01T02:49:52.946988Z"}</description>
      <content:encoded>{"uuid": "9f22095c-ec61-4d9f-984e-3f16f11f7a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-privilege-escalation-vulnerability-exchange-server-2016-2019-and-subscription", "content": "", "creation_timestamp": "2026-07-01T02:49:52.946988Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9f22095c-ec61-4d9f-984e-3f16f11f7a4c/export</guid>
      <pubDate>Wed, 01 Jul 2026 02:49:52 +0000</pubDate>
    </item>
    <item>
      <title>d5d2cdc9-1f4b-4fab-972c-c02e5debaf42</title>
      <link>https://vulnerability.circl.lu/sighting/d5d2cdc9-1f4b-4fab-972c-c02e5debaf42/export</link>
      <description>{"uuid": "d5d2cdc9-1f4b-4fab-972c-c02e5debaf42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mpay6ksjjg2k", "content": "CVE-2026-45504: CVE-2026-45504 Microsoft Exchange File Read -  allows an authenticated low-privileged user to read arbitrary local files from the Exchange server by creating an EWS ReferenceAttachment with a crafted ProviderEndpointUrl pointing to an attacker-controlled server.", "creation_timestamp": "2026-06-27T07:54:32.194950Z"}</description>
      <content:encoded>{"uuid": "d5d2cdc9-1f4b-4fab-972c-c02e5debaf42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mpay6ksjjg2k", "content": "CVE-2026-45504: CVE-2026-45504 Microsoft Exchange File Read -  allows an authenticated low-privileged user to read arbitrary local files from the Exchange server by creating an EWS ReferenceAttachment with a crafted ProviderEndpointUrl pointing to an attacker-controlled server.", "creation_timestamp": "2026-06-27T07:54:32.194950Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d5d2cdc9-1f4b-4fab-972c-c02e5debaf42/export</guid>
      <pubDate>Sat, 27 Jun 2026 07:54:32 +0000</pubDate>
    </item>
    <item>
      <title>e6711bd8-64db-4044-8b5b-53989bdb76f7</title>
      <link>https://vulnerability.circl.lu/sighting/e6711bd8-64db-4044-8b5b-53989bdb76f7/export</link>
      <description>{"uuid": "e6711bd8-64db-4044-8b5b-53989bdb76f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/toxy4ny.bsky.social/post/3mp3wk4ubik25", "content": "Thursday\u2019s fuck up - uptime - Microsoft Exchange - CVE-2026-45504 Exchange File Read\nREsearch - hawktrace.com/blog/CVE-202... POC - github.com/hawktrace/CV... #microsoft #exchange #ssrf #exploit #reseach #vulnerability #hack #hacker #redteam #hawktrace #team", "creation_timestamp": "2026-06-25T07:41:55.547115Z"}</description>
      <content:encoded>{"uuid": "e6711bd8-64db-4044-8b5b-53989bdb76f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/toxy4ny.bsky.social/post/3mp3wk4ubik25", "content": "Thursday\u2019s fuck up - uptime - Microsoft Exchange - CVE-2026-45504 Exchange File Read\nREsearch - hawktrace.com/blog/CVE-202... POC - github.com/hawktrace/CV... #microsoft #exchange #ssrf #exploit #reseach #vulnerability #hack #hacker #redteam #hawktrace #team", "creation_timestamp": "2026-06-25T07:41:55.547115Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e6711bd8-64db-4044-8b5b-53989bdb76f7/export</guid>
      <pubDate>Thu, 25 Jun 2026 07:41:55 +0000</pubDate>
    </item>
    <item>
      <title>a47566de-2dc1-4e27-9e56-11222f61bd37</title>
      <link>https://vulnerability.circl.lu/sighting/a47566de-2dc1-4e27-9e56-11222f61bd37/export</link>
      <description>{"uuid": "a47566de-2dc1-4e27-9e56-11222f61bd37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3mp2lfmm6g3w2", "content": "CVE-2026-45504 Microsoft Exchange SSRF via File Read https://hawktrace.com/blog/CVE-2026-45504/", "creation_timestamp": "2026-06-24T18:49:58.005965Z"}</description>
      <content:encoded>{"uuid": "a47566de-2dc1-4e27-9e56-11222f61bd37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://bsky.app/profile/obivan.infosec.exchange.ap.brid.gy/post/3mp2lfmm6g3w2", "content": "CVE-2026-45504 Microsoft Exchange SSRF via File Read https://hawktrace.com/blog/CVE-2026-45504/", "creation_timestamp": "2026-06-24T18:49:58.005965Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a47566de-2dc1-4e27-9e56-11222f61bd37/export</guid>
      <pubDate>Wed, 24 Jun 2026 18:49:58 +0000</pubDate>
    </item>
    <item>
      <title>857b0b87-23e9-4f23-9b90-4cfd6918cd49</title>
      <link>https://vulnerability.circl.lu/sighting/857b0b87-23e9-4f23-9b90-4cfd6918cd49/export</link>
      <description>{"uuid": "857b0b87-23e9-4f23-9b90-4cfd6918cd49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/116806581513063378", "content": "CVE-2026-45504 Microsoft Exchange SSRF via File Read https://hawktrace.com/blog/CVE-2026-45504/", "creation_timestamp": "2026-06-24T18:49:48.822042Z"}</description>
      <content:encoded>{"uuid": "857b0b87-23e9-4f23-9b90-4cfd6918cd49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-45504", "type": "seen", "source": "https://infosec.exchange/users/obivan/statuses/116806581513063378", "content": "CVE-2026-45504 Microsoft Exchange SSRF via File Read https://hawktrace.com/blog/CVE-2026-45504/", "creation_timestamp": "2026-06-24T18:49:48.822042Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/857b0b87-23e9-4f23-9b90-4cfd6918cd49/export</guid>
      <pubDate>Wed, 24 Jun 2026 18:49:48 +0000</pubDate>
    </item>
  </channel>
</rss>
