<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 12 Jul 2026 02:51:20 +0000</lastBuildDate>
    <item>
      <title>fd11c8de-5237-4b80-98fd-ca4c4f595276</title>
      <link>https://vulnerability.circl.lu/sighting/fd11c8de-5237-4b80-98fd-ca4c4f595276/export</link>
      <description>{"uuid": "fd11c8de-5237-4b80-98fd-ca4c4f595276", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq756vsjxn24", "content": "CVE-2026-47140 - @rootio/vm2\nA security patch has been released for the Root VM2 package. This update is important for users of Root's npm package to protect against potential security risks. You should check\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rootio #Rootnpm #CVE #infosec", "creation_timestamp": "2026-07-09T07:44:04.110917Z"}</description>
      <content:encoded>{"uuid": "fd11c8de-5237-4b80-98fd-ca4c4f595276", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq756vsjxn24", "content": "CVE-2026-47140 - @rootio/vm2\nA security patch has been released for the Root VM2 package. This update is important for users of Root's npm package to protect against potential security risks. You should check\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#rootio #Rootnpm #CVE #infosec", "creation_timestamp": "2026-07-09T07:44:04.110917Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/fd11c8de-5237-4b80-98fd-ca4c4f595276/export</guid>
      <pubDate>Thu, 09 Jul 2026 07:44:04 +0000</pubDate>
    </item>
    <item>
      <title>33b9f8de-495a-4b5b-984a-b7e2889d3273</title>
      <link>https://vulnerability.circl.lu/sighting/33b9f8de-495a-4b5b-984a-b7e2889d3273/export</link>
      <description>{"uuid": "33b9f8de-495a-4b5b-984a-b7e2889d3273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moafs7cl3y2d", "content": "\ud83d\udd34 CVE-2026-47140 - Critical (10)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM blocks several dang...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47140/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T09:00:18.904620Z"}</description>
      <content:encoded>{"uuid": "33b9f8de-495a-4b5b-984a-b7e2889d3273", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-47140", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moafs7cl3y2d", "content": "\ud83d\udd34 CVE-2026-47140 - Critical (10)\n\nvm2 is an open source vm/sandbox for Node.js. Prior to version 3.11.4, NodeVM blocks several dang...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-47140/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-14T09:00:18.904620Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/33b9f8de-495a-4b5b-984a-b7e2889d3273/export</guid>
      <pubDate>Sun, 14 Jun 2026 09:00:18 +0000</pubDate>
    </item>
    <item>
      <title>d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5</title>
      <link>https://vulnerability.circl.lu/sighting/d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5/export</link>
      <description>{"uuid": "d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47140", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4", "content": "", "creation_timestamp": "2026-05-18T12:48:43.000000Z"}</description>
      <content:encoded>{"uuid": "d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-47140", "type": "published-proof-of-concept", "source": "https://github.com/patriksimek/vm2/security/advisories/GHSA-rp36-8xq3-r6c4", "content": "", "creation_timestamp": "2026-05-18T12:48:43.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d9ed0c40-0e8f-47be-ba1b-0b772e9aa8d5/export</guid>
      <pubDate>Mon, 18 May 2026 12:48:43 +0000</pubDate>
    </item>
  </channel>
</rss>
