<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Tue, 07 Jul 2026 06:22:06 +0000</lastBuildDate>
    <item>
      <title>1c412c4c-3961-4c01-801f-63c8280b44cd</title>
      <link>https://vulnerability.circl.lu/sighting/1c412c4c-3961-4c01-801f-63c8280b44cd/export</link>
      <description>{"uuid": "1c412c4c-3961-4c01-801f-63c8280b44cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48276", "type": "seen", "source": "https://gist.github.com/alon710/5cc09119469b7bc7e37fcd9f59fdfdb0", "content": "# CVE-2026-48276: CVE-2026-48276: Unrestricted File Upload in Adobe ColdFusion\n\n&amp;gt; **CVSS Score:** 10.0\n&amp;gt; **Published:** 2026-06-30\n&amp;gt; **Full Report:** https://cvereports.com/reports/CVE-2026-48276\n\n## Summary\nAdobe ColdFusion versions 2025.9 and 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability (CWE-434). An unauthenticated remote attacker can exploit this flaw to upload malicious ColdFusion Markup Language (CFML) files directly into web-accessible directories. Accessing the uploaded script triggers arbitrary code execution in the security context of the running service account.\n\n## TL;DR\nA critical-severity unrestricted file upload vulnerability in Adobe ColdFusion allows unauthenticated remote attackers to execute arbitrary system commands via crafted web scripts.\n\n## Technical Details\n\n- **CWE ID**: CWE-434\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 10.0 (Critical)\n- **Exploit Status**: No public exploits currently documented\n- **KEV Status**: Not listed in CISA KEV catalog\n- **Impact**: Unauthenticated Remote Code Execution\n\n## Affected Systems\n\n- Adobe ColdFusion 2023\n- Adobe ColdFusion 2025\n\n## Mitigation\n\n- Deploy official security hotfixes from Adobe immediately.\n- Implement strict web-server level execute permission restrictions on all upload directories.\n- Configure the ColdFusion application runtime to execute under a dedicated low-privilege service account.\n\n**Remediation Steps:**\n1. Audit all corporate networks to locate active ColdFusion 2023 and 2025 deployments.\n2. For ColdFusion 2025 instances, apply Update 10 or later.\n3. For ColdFusion 2023 instances, apply Update 21 or later.\n4. Confirm patch application by reviewing the active updates tab in the ColdFusion Administrator console.\n5. Configure web server execution maps to prevent execution of server-side files within writable storage directories.\n\n## References\n\n- [Official Adobe Security Advisory (APSB26-68)](https://helpx.adobe.com/security/products/coldfusion/apsb26-68.html)\n- [CVE-2026-48276 Record on CVE.org](https://www.cve.org/CVERecord?id=CVE-2026-48276)\n- [Wiz Vulnerability Database Details](https://www.wiz.io/vulnerability-database/cve/cve-2026-48276)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-48276) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-07-06T11:51:38.029504Z"}</description>
      <content:encoded>{"uuid": "1c412c4c-3961-4c01-801f-63c8280b44cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48276", "type": "seen", "source": "https://gist.github.com/alon710/5cc09119469b7bc7e37fcd9f59fdfdb0", "content": "# CVE-2026-48276: CVE-2026-48276: Unrestricted File Upload in Adobe ColdFusion\n\n&amp;gt; **CVSS Score:** 10.0\n&amp;gt; **Published:** 2026-06-30\n&amp;gt; **Full Report:** https://cvereports.com/reports/CVE-2026-48276\n\n## Summary\nAdobe ColdFusion versions 2025.9 and 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability (CWE-434). An unauthenticated remote attacker can exploit this flaw to upload malicious ColdFusion Markup Language (CFML) files directly into web-accessible directories. Accessing the uploaded script triggers arbitrary code execution in the security context of the running service account.\n\n## TL;DR\nA critical-severity unrestricted file upload vulnerability in Adobe ColdFusion allows unauthenticated remote attackers to execute arbitrary system commands via crafted web scripts.\n\n## Technical Details\n\n- **CWE ID**: CWE-434\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 10.0 (Critical)\n- **Exploit Status**: No public exploits currently documented\n- **KEV Status**: Not listed in CISA KEV catalog\n- **Impact**: Unauthenticated Remote Code Execution\n\n## Affected Systems\n\n- Adobe ColdFusion 2023\n- Adobe ColdFusion 2025\n\n## Mitigation\n\n- Deploy official security hotfixes from Adobe immediately.\n- Implement strict web-server level execute permission restrictions on all upload directories.\n- Configure the ColdFusion application runtime to execute under a dedicated low-privilege service account.\n\n**Remediation Steps:**\n1. Audit all corporate networks to locate active ColdFusion 2023 and 2025 deployments.\n2. For ColdFusion 2025 instances, apply Update 10 or later.\n3. For ColdFusion 2023 instances, apply Update 21 or later.\n4. Confirm patch application by reviewing the active updates tab in the ColdFusion Administrator console.\n5. Configure web server execution maps to prevent execution of server-side files within writable storage directories.\n\n## References\n\n- [Official Adobe Security Advisory (APSB26-68)](https://helpx.adobe.com/security/products/coldfusion/apsb26-68.html)\n- [CVE-2026-48276 Record on CVE.org](https://www.cve.org/CVERecord?id=CVE-2026-48276)\n- [Wiz Vulnerability Database Details](https://www.wiz.io/vulnerability-database/cve/cve-2026-48276)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-48276) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-07-06T11:51:38.029504Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1c412c4c-3961-4c01-801f-63c8280b44cd/export</guid>
      <pubDate>Mon, 06 Jul 2026 11:51:38 +0000</pubDate>
    </item>
    <item>
      <title>e29fc72f-cb9f-4edf-bc0f-6f895e02cb19</title>
      <link>https://vulnerability.circl.lu/sighting/e29fc72f-cb9f-4edf-bc0f-6f895e02cb19/export</link>
      <description>{"uuid": "e29fc72f-cb9f-4edf-bc0f-6f895e02cb19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/cyfar.ca/post/3mpotfgidrq26", "content": "~Watchtowr~\nAdobe ColdFusion APSB26-68 patches 11 CVEs including multiple RCE and arbitrary file read/write via RDS and CKEditor path traversal.\n-\nIOCs: CVE-2026-48282, CVE-2026-48276, CVE-2026-48313\n-\n#CVE #ColdFusion #RCE #ThreatIntel", "creation_timestamp": "2026-07-02T20:06:10.695809Z"}</description>
      <content:encoded>{"uuid": "e29fc72f-cb9f-4edf-bc0f-6f895e02cb19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/cyfar.ca/post/3mpotfgidrq26", "content": "~Watchtowr~\nAdobe ColdFusion APSB26-68 patches 11 CVEs including multiple RCE and arbitrary file read/write via RDS and CKEditor path traversal.\n-\nIOCs: CVE-2026-48282, CVE-2026-48276, CVE-2026-48313\n-\n#CVE #ColdFusion #RCE #ThreatIntel", "creation_timestamp": "2026-07-02T20:06:10.695809Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e29fc72f-cb9f-4edf-bc0f-6f895e02cb19/export</guid>
      <pubDate>Thu, 02 Jul 2026 20:06:10 +0000</pubDate>
    </item>
    <item>
      <title>119d5ce8-7a75-423a-8de3-df15260baccb</title>
      <link>https://vulnerability.circl.lu/sighting/119d5ce8-7a75-423a-8de3-df15260baccb/export</link>
      <description>{"uuid": "119d5ce8-7a75-423a-8de3-df15260baccb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpndzuc4di2o", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48276 \u0432 Adobe ColdFusion: \u0443\u0433\u0440\u043e\u0437\u0430 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/7D8B364D-9D93-4815-B902-60249CCB78B1", "creation_timestamp": "2026-07-02T05:58:35.783586Z"}</description>
      <content:encoded>{"uuid": "119d5ce8-7a75-423a-8de3-df15260baccb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpndzuc4di2o", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-48276 \u0432 Adobe ColdFusion: \u0443\u0433\u0440\u043e\u0437\u0430 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/7D8B364D-9D93-4815-B902-60249CCB78B1", "creation_timestamp": "2026-07-02T05:58:35.783586Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/119d5ce8-7a75-423a-8de3-df15260baccb/export</guid>
      <pubDate>Thu, 02 Jul 2026 05:58:35 +0000</pubDate>
    </item>
    <item>
      <title>5fb1db67-414e-4886-8610-46590a5f23bc</title>
      <link>https://vulnerability.circl.lu/sighting/5fb1db67-414e-4886-8610-46590a5f23bc/export</link>
      <description>{"uuid": "5fb1db67-414e-4886-8610-46590a5f23bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.031404Z"}</description>
      <content:encoded>{"uuid": "5fb1db67-414e-4886-8610-46590a5f23bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.031404Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/5fb1db67-414e-4886-8610-46590a5f23bc/export</guid>
      <pubDate>Wed, 01 Jul 2026 13:00:13 +0000</pubDate>
    </item>
    <item>
      <title>bf6717eb-6d8a-4bf5-82d0-6af032c81470</title>
      <link>https://vulnerability.circl.lu/sighting/bf6717eb-6d8a-4bf5-82d0-6af032c81470/export</link>
      <description>{"uuid": "bf6717eb-6d8a-4bf5-82d0-6af032c81470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116844608391888622", "content": "CRITICAL vulnerabilities patched in Adobe ColdFusion (2025/2023) &amp;amp; Campaign Classic (7.4.3 build 9397). Multiple CVSS 10.0 flaws incl. CVE-2026-48286, CVE-2026-48276 \u2013 83. No active exploits, but patch ASAP. https://radar.offseq.com/threat/adobe-patches-critical-coldfusion-campaign-classic-baee08e7ac9d8888 #OffSeq #Adobe #ColdFusion #Vuln", "creation_timestamp": "2026-07-01T12:00:35.329807Z"}</description>
      <content:encoded>{"uuid": "bf6717eb-6d8a-4bf5-82d0-6af032c81470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116844608391888622", "content": "CRITICAL vulnerabilities patched in Adobe ColdFusion (2025/2023) &amp;amp; Campaign Classic (7.4.3 build 9397). Multiple CVSS 10.0 flaws incl. CVE-2026-48286, CVE-2026-48276 \u2013 83. No active exploits, but patch ASAP. https://radar.offseq.com/threat/adobe-patches-critical-coldfusion-campaign-classic-baee08e7ac9d8888 #OffSeq #Adobe #ColdFusion #Vuln", "creation_timestamp": "2026-07-01T12:00:35.329807Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/bf6717eb-6d8a-4bf5-82d0-6af032c81470/export</guid>
      <pubDate>Wed, 01 Jul 2026 12:00:35 +0000</pubDate>
    </item>
    <item>
      <title>f3c84f5c-2667-4017-8117-68fa340fa3d4</title>
      <link>https://vulnerability.circl.lu/sighting/f3c84f5c-2667-4017-8117-68fa340fa3d4/export</link>
      <description>{"uuid": "f3c84f5c-2667-4017-8117-68fa340fa3d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://www.cert.dk/news/2026-07-01/Kritiske-ColdFusion-saarbarheder-aabner-for-fuld-serverovertagelse", "content": "", "creation_timestamp": "2026-07-01T09:45:03.016416Z"}</description>
      <content:encoded>{"uuid": "f3c84f5c-2667-4017-8117-68fa340fa3d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://www.cert.dk/news/2026-07-01/Kritiske-ColdFusion-saarbarheder-aabner-for-fuld-serverovertagelse", "content": "", "creation_timestamp": "2026-07-01T09:45:03.016416Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f3c84f5c-2667-4017-8117-68fa340fa3d4/export</guid>
      <pubDate>Wed, 01 Jul 2026 09:45:03 +0000</pubDate>
    </item>
    <item>
      <title>55417216-45b7-4932-af24-1056122103be</title>
      <link>https://vulnerability.circl.lu/sighting/55417216-45b7-4932-af24-1056122103be/export</link>
      <description>{"uuid": "55417216-45b7-4932-af24-1056122103be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpkgmzkfc726", "content": "\ud83d\udccc CVE-2026-48276 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in ... https://www.cyberhub.blog/cves/CVE-2026-48276", "creation_timestamp": "2026-07-01T02:07:07.764126Z"}</description>
      <content:encoded>{"uuid": "55417216-45b7-4932-af24-1056122103be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48276", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpkgmzkfc726", "content": "\ud83d\udccc CVE-2026-48276 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Unrestricted Upload of File with Dangerous Type vulnerability that could result in ... https://www.cyberhub.blog/cves/CVE-2026-48276", "creation_timestamp": "2026-07-01T02:07:07.764126Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/55417216-45b7-4932-af24-1056122103be/export</guid>
      <pubDate>Wed, 01 Jul 2026 02:07:07 +0000</pubDate>
    </item>
  </channel>
</rss>
