https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-27T20:36:35.773183+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/a1314a27-bdf2-4db4-9534-35993de853f4/exporta1314a27-bdf2-4db4-9534-35993de853f42026-06-27T20:36:35.799813+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "a1314a27-bdf2-4db4-9534-35993de853f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-26876", "type": "exploited", "source": "https://t.me/arpsyndicate/2823", "content": "#ExploitObserverAlert\n\nCVE-2020-26876\n\nDESCRIPTION: Exploit Observer has 6 entries in 3 file formats related to CVE-2020-26876. The wp-courses plugin through 2.0.27 for WordPress allows remote attackers to bypass the intended payment step (for course videos and materials) by using the /wp-json REST API, as exploited in the wild in September 2020. This occurs because show_in_rest is enabled for custom post types (e.g., /wp-json/wp/v2/course and /wp-json/wp/v2/lesson exist).\n\nFIRST-EPSS: 0.019880000\nNVD-IS: 3.6\nNVD-ES: 3.9", "creation_timestamp": "2024-01-16T04:21:25.000000Z"}2024-01-16T04:21:25+00:00https://vulnerability.circl.lu/sighting/a8a826b3-5b39-4e1e-a516-5e5456da9d1c/exporta8a826b3-5b39-4e1e-a516-5e5456da9d1c2026-06-27T20:36:35.799577+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "a8a826b3-5b39-4e1e-a516-5e5456da9d1c", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-26876", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/4107ceba-0bed-4035-aa9b-b9fe0c1f3d76", "content": "", "creation_timestamp": "2026-06-19T12:53:12.240476Z"}2026-06-19T12:53:12.240476+00:00https://vulnerability.circl.lu/sighting/24df42a7-e25c-4f5c-ad64-20de5d618fda/export24df42a7-e25c-4f5c-ad64-20de5d618fda2026-06-27T20:36:35.796008+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "24df42a7-e25c-4f5c-ad64-20de5d618fda", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-26876", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/ac4b387e-0386-4b65-97bf-71b1580cdf95", "content": "", "creation_timestamp": "2026-06-23T14:04:05.757592Z"}2026-06-23T14:04:05.757592+00:00