<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 15 Jul 2026 17:33:42 +0000</lastBuildDate>
    <item>
      <title>3582f26c-ef3d-438e-ad78-ab8eb420e142</title>
      <link>https://vulnerability.circl.lu/sighting/3582f26c-ef3d-438e-ad78-ab8eb420e142/export</link>
      <description>{"uuid": "3582f26c-ef3d-438e-ad78-ab8eb420e142", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqkxburgac2d", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56241 \u0432 Capgo: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/F433D381-0CBE-42A6-9590-A17658226070", "creation_timestamp": "2026-07-14T00:30:18.134536Z"}</description>
      <content:encoded>{"uuid": "3582f26c-ef3d-438e-ad78-ab8eb420e142", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqkxburgac2d", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56241 \u0432 Capgo: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/F433D381-0CBE-42A6-9590-A17658226070", "creation_timestamp": "2026-07-14T00:30:18.134536Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3582f26c-ef3d-438e-ad78-ab8eb420e142/export</guid>
      <pubDate>Tue, 14 Jul 2026 00:30:18 +0000</pubDate>
    </item>
    <item>
      <title>c2603c79-0ec8-48ac-aafc-c2105ad801af</title>
      <link>https://vulnerability.circl.lu/sighting/c2603c79-0ec8-48ac-aafc-c2105ad801af/export</link>
      <description>{"uuid": "c2603c79-0ec8-48ac-aafc-c2105ad801af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhdofiaa42l", "content": "\ud83d\udfe0 CVE-2026-56241 - High (8.3)\n\nCapgo before 12.128.2 contains a privilege escalation vulnerability where demoted super_admin use...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-56241/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T14:01:25.183100Z"}</description>
      <content:encoded>{"uuid": "c2603c79-0ec8-48ac-aafc-c2105ad801af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqhdofiaa42l", "content": "\ud83d\udfe0 CVE-2026-56241 - High (8.3)\n\nCapgo before 12.128.2 contains a privilege escalation vulnerability where demoted super_admin use...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-56241/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T14:01:25.183100Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c2603c79-0ec8-48ac-aafc-c2105ad801af/export</guid>
      <pubDate>Sun, 12 Jul 2026 14:01:25 +0000</pubDate>
    </item>
    <item>
      <title>3af7c7cf-29b0-4a93-937b-9ab18bb9abaf</title>
      <link>https://vulnerability.circl.lu/sighting/3af7c7cf-29b0-4a93-937b-9ab18bb9abaf/export</link>
      <description>{"uuid": "3af7c7cf-29b0-4a93-937b-9ab18bb9abaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqh7l7ob2b26", "content": "CVE-2026-56241 - Capgo - RBAC Demotion Privilege Retention via Stale org_users.user_right\nCVE ID : CVE-2026-56241\n \n Published : July 12, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : Capgo before 12.128.2 contains a privilege escalation vulnerability where demoted super_...", "creation_timestamp": "2026-07-12T12:48:04.879667Z"}</description>
      <content:encoded>{"uuid": "3af7c7cf-29b0-4a93-937b-9ab18bb9abaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqh7l7ob2b26", "content": "CVE-2026-56241 - Capgo - RBAC Demotion Privilege Retention via Stale org_users.user_right\nCVE ID : CVE-2026-56241\n \n Published : July 12, 2026, 12:16 p.m. | 16\u00a0minutes ago\n \n Description : Capgo before 12.128.2 contains a privilege escalation vulnerability where demoted super_...", "creation_timestamp": "2026-07-12T12:48:04.879667Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3af7c7cf-29b0-4a93-937b-9ab18bb9abaf/export</guid>
      <pubDate>Sun, 12 Jul 2026 12:48:04 +0000</pubDate>
    </item>
    <item>
      <title>0c1a7d2b-6f27-404e-b7ac-369ba511edf1</title>
      <link>https://vulnerability.circl.lu/sighting/0c1a7d2b-6f27-404e-b7ac-369ba511edf1/export</link>
      <description>{"uuid": "0c1a7d2b-6f27-404e-b7ac-369ba511edf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqh6wgwogn2i", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56241 \u0432 Capgo: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/A89EE528-F7EE-488E-BEF3-AC526D96C3C7", "creation_timestamp": "2026-07-12T12:36:25.614298Z"}</description>
      <content:encoded>{"uuid": "0c1a7d2b-6f27-404e-b7ac-369ba511edf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56241", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqh6wgwogn2i", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56241 \u0432 Capgo: \u0443\u0433\u0440\u043e\u0437\u0430 \u043f\u043e\u0432\u044b\u0448\u0435\u043d\u0438\u044f \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0439 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/A89EE528-F7EE-488E-BEF3-AC526D96C3C7", "creation_timestamp": "2026-07-12T12:36:25.614298Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0c1a7d2b-6f27-404e-b7ac-369ba511edf1/export</guid>
      <pubDate>Sun, 12 Jul 2026 12:36:25 +0000</pubDate>
    </item>
    <item>
      <title>eeb41071-761b-4f4d-adee-7dbde8baeba8</title>
      <link>https://vulnerability.circl.lu/sighting/eeb41071-761b-4f4d-adee-7dbde8baeba8/export</link>
      <description>{"uuid": "eeb41071-761b-4f4d-adee-7dbde8baeba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56240", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mqh3qwdo2326", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-56240\n\nCapgo before 12.128.12 contains a billing authorization bypass vulnerability in the plan_valid calculation that allows organizations with exhausted...", "creation_timestamp": "2026-07-12T11:39:49.501483Z"}</description>
      <content:encoded>{"uuid": "eeb41071-761b-4f4d-adee-7dbde8baeba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56240", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mqh3qwdo2326", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2026-56240\n\nCapgo before 12.128.12 contains a billing authorization bypass vulnerability in the plan_valid calculation that allows organizations with exhausted...", "creation_timestamp": "2026-07-12T11:39:49.501483Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/eeb41071-761b-4f4d-adee-7dbde8baeba8/export</guid>
      <pubDate>Sun, 12 Jul 2026 11:39:49 +0000</pubDate>
    </item>
    <item>
      <title>34970fc4-7709-4f26-8779-c5ce07a0a04d</title>
      <link>https://vulnerability.circl.lu/sighting/34970fc4-7709-4f26-8779-c5ce07a0a04d/export</link>
      <description>{"uuid": "34970fc4-7709-4f26-8779-c5ce07a0a04d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56240", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqeve5iuvl2x", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56240 \u0432 Capgo: \u0443\u0433\u0440\u043e\u0437\u0430 \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0431\u0438\u043b\u043b\u0438\u043d\u0433\u0430\n\n\n\nhttps://kripta.biz/posts/C0EC03EB-D732-472A-8D7C-BB2D75D3C794", "creation_timestamp": "2026-07-11T14:39:48.647038Z"}</description>
      <content:encoded>{"uuid": "34970fc4-7709-4f26-8779-c5ce07a0a04d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56240", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqeve5iuvl2x", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56240 \u0432 Capgo: \u0443\u0433\u0440\u043e\u0437\u0430 \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0431\u0438\u043b\u043b\u0438\u043d\u0433\u0430\n\n\n\nhttps://kripta.biz/posts/C0EC03EB-D732-472A-8D7C-BB2D75D3C794", "creation_timestamp": "2026-07-11T14:39:48.647038Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/34970fc4-7709-4f26-8779-c5ce07a0a04d/export</guid>
      <pubDate>Sat, 11 Jul 2026 14:39:48 +0000</pubDate>
    </item>
    <item>
      <title>8547a0c6-d9ad-4b4b-8eab-f5f1aa62f530</title>
      <link>https://vulnerability.circl.lu/sighting/8547a0c6-d9ad-4b4b-8eab-f5f1aa62f530/export</link>
      <description>{"uuid": "8547a0c6-d9ad-4b4b-8eab-f5f1aa62f530", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56247", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpkj7o4hmo2k", "content": "CVE-2026-56247 - Capgo - Privilege Escalation via Cross-Scope RBAC Role Assignment\nCVE ID : CVE-2026-56247\n \n Published : June 30, 2026, 10:08 p.m. | 3\u00a0hours, 4\u00a0minutes ago\n \n Description : Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope wi...", "creation_timestamp": "2026-07-01T02:53:20.192796Z"}</description>
      <content:encoded>{"uuid": "8547a0c6-d9ad-4b4b-8eab-f5f1aa62f530", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56247", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpkj7o4hmo2k", "content": "CVE-2026-56247 - Capgo - Privilege Escalation via Cross-Scope RBAC Role Assignment\nCVE ID : CVE-2026-56247\n \n Published : June 30, 2026, 10:08 p.m. | 3\u00a0hours, 4\u00a0minutes ago\n \n Description : Capgo before 12.128.2 allows org admins to assign org-scoped RBAC roles at app scope wi...", "creation_timestamp": "2026-07-01T02:53:20.192796Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8547a0c6-d9ad-4b4b-8eab-f5f1aa62f530/export</guid>
      <pubDate>Wed, 01 Jul 2026 02:53:20 +0000</pubDate>
    </item>
    <item>
      <title>1e39f7fc-cfa1-4f59-baeb-d839e9f1aaf4</title>
      <link>https://vulnerability.circl.lu/sighting/1e39f7fc-cfa1-4f59-baeb-d839e9f1aaf4/export</link>
      <description>{"uuid": "1e39f7fc-cfa1-4f59-baeb-d839e9f1aaf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56245", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp235bvzp62x", "content": "CVE-2026-56245 - Supabase Capgo - Unauthenticated Cross-Tenant Build-Time Accounting Poisoning via record_build_time RPC\nCVE ID : CVE-2026-56245\n \n Published : June 24, 2026, 11:53 a.m. | 1\u00a0hour, 17\u00a0minutes ago\n \n Description : Supabase Capgo before 12.128.2 contains an author...", "creation_timestamp": "2026-06-24T13:58:52.125176Z"}</description>
      <content:encoded>{"uuid": "1e39f7fc-cfa1-4f59-baeb-d839e9f1aaf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56245", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mp235bvzp62x", "content": "CVE-2026-56245 - Supabase Capgo - Unauthenticated Cross-Tenant Build-Time Accounting Poisoning via record_build_time RPC\nCVE ID : CVE-2026-56245\n \n Published : June 24, 2026, 11:53 a.m. | 1\u00a0hour, 17\u00a0minutes ago\n \n Description : Supabase Capgo before 12.128.2 contains an author...", "creation_timestamp": "2026-06-24T13:58:52.125176Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1e39f7fc-cfa1-4f59-baeb-d839e9f1aaf4/export</guid>
      <pubDate>Wed, 24 Jun 2026 13:58:52 +0000</pubDate>
    </item>
    <item>
      <title>106d215f-5aa2-4d56-935f-450b4fa88311</title>
      <link>https://vulnerability.circl.lu/sighting/106d215f-5aa2-4d56-935f-450b4fa88311/export</link>
      <description>{"uuid": "106d215f-5aa2-4d56-935f-450b4fa88311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56248", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxmjserwm2r", "content": "CVE-2026-56248 - Capgo - Unauthenticated Denial-of-Service via audit_logs RLS Policy\nCVE ID : CVE-2026-56248\n \n Published : 23 juin 2026 12:12 | 1\u00a0heure, 30\u00a0minutes ago\n \n Description : Cap-go capgo (capgo-backend) before 12.128.12 contains an unauthenticated denial-of-service...", "creation_timestamp": "2026-06-23T14:32:22.731767Z"}</description>
      <content:encoded>{"uuid": "106d215f-5aa2-4d56-935f-450b4fa88311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56248", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxmjserwm2r", "content": "CVE-2026-56248 - Capgo - Unauthenticated Denial-of-Service via audit_logs RLS Policy\nCVE ID : CVE-2026-56248\n \n Published : 23 juin 2026 12:12 | 1\u00a0heure, 30\u00a0minutes ago\n \n Description : Cap-go capgo (capgo-backend) before 12.128.12 contains an unauthenticated denial-of-service...", "creation_timestamp": "2026-06-23T14:32:22.731767Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/106d215f-5aa2-4d56-935f-450b4fa88311/export</guid>
      <pubDate>Tue, 23 Jun 2026 14:32:22 +0000</pubDate>
    </item>
    <item>
      <title>713bda47-1e54-46ad-82f1-fd632bd03b71</title>
      <link>https://vulnerability.circl.lu/sighting/713bda47-1e54-46ad-82f1-fd632bd03b71/export</link>
      <description>{"uuid": "713bda47-1e54-46ad-82f1-fd632bd03b71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56243", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxlz54mb62o", "content": "CVE-2026-56243 - Capgo - Hashed API Key Enforcement Bypass via PostgREST/RLS Plane\nCVE ID : CVE-2026-56243\n \n Published : 23 juin 2026 12:12 | 1\u00a0heure, 30\u00a0minutes ago\n \n Description : Capgo before 12.128.2 contains a security control bypass vulnerability where the PostgREST/RL...", "creation_timestamp": "2026-06-23T14:22:47.116246Z"}</description>
      <content:encoded>{"uuid": "713bda47-1e54-46ad-82f1-fd632bd03b71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56243", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moxlz54mb62o", "content": "CVE-2026-56243 - Capgo - Hashed API Key Enforcement Bypass via PostgREST/RLS Plane\nCVE ID : CVE-2026-56243\n \n Published : 23 juin 2026 12:12 | 1\u00a0heure, 30\u00a0minutes ago\n \n Description : Capgo before 12.128.2 contains a security control bypass vulnerability where the PostgREST/RL...", "creation_timestamp": "2026-06-23T14:22:47.116246Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/713bda47-1e54-46ad-82f1-fd632bd03b71/export</guid>
      <pubDate>Tue, 23 Jun 2026 14:22:47 +0000</pubDate>
    </item>
  </channel>
</rss>
