<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T22:40:52.938690+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c7bf77cd-a524-4447-a166-d1627614239a/export</id>
    <title>c7bf77cd-a524-4447-a166-d1627614239a</title>
    <updated>2026-07-06T22:40:52.967838+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cve.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "c7bf77cd-a524-4447-a166-d1627614239a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11024-c5c1a-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:04.255767Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c7bf77cd-a524-4447-a166-d1627614239a/export"/>
    <published>2026-07-06T09:45:04.255767+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6d9b8ad3-e8d0-4175-9390-3a0e05cf3251/export</id>
    <title>6d9b8ad3-e8d0-4175-9390-3a0e05cf3251</title>
    <updated>2026-07-06T22:40:52.969900+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6d9b8ad3-e8d0-4175-9390-3a0e05cf3251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpxq2tzoht24", "content": "PROG MIS ERP App hit by CRITICAL vuln (CVE-2026-14807): hard-coded creds let attackers access code &amp;amp; DB. No patch \u2014 restrict access, monitor ERP activity. \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERPsecurity", "creation_timestamp": "2026-07-06T09:00:31.800624Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6d9b8ad3-e8d0-4175-9390-3a0e05cf3251/export"/>
    <published>2026-07-06T09:00:31.800624+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1d83dbbf-5308-4781-a142-4fc933c41f17/export</id>
    <title>1d83dbbf-5308-4781-a142-4fc933c41f17</title>
    <updated>2026-07-06T22:40:52.970775+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1d83dbbf-5308-4781-a142-4fc933c41f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116872211939531878", "content": "CVE-2026-14807: CRITICAL hard-coded credentials in PROG MIS ERP App allow unauthenticated remote access to source code &amp;amp; DB creds. No patch available \u2014 restrict access &amp;amp; monitor activity. CVSS 9.3 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERP #infosec", "creation_timestamp": "2026-07-06T09:00:30.113614Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1d83dbbf-5308-4781-a142-4fc933c41f17/export"/>
    <published>2026-07-06T09:00:30.113614+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c93e6ac6-743b-4379-83c9-1eb9c1abade3/export</id>
    <title>c93e6ac6-743b-4379-83c9-1eb9c1abade3</title>
    <updated>2026-07-06T22:40:52.970857+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c93e6ac6-743b-4379-83c9-1eb9c1abade3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxnj6vp2d2n", "content": "CVE-2026-14807 - PROG MIS\uff5cERP App - Use of Hard-coded Credentials\nCVE ID : CVE-2026-14807\n \n Published : July 6, 2026, 7:09 a.m. | 38\u00a0minutes ago\n \n Description : ERP App developed by PROG MIS has a Use of Hard-coded Credentials vulnerability, allowing unauthenticated remote a...", "creation_timestamp": "2026-07-06T08:14:51.301629Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c93e6ac6-743b-4379-83c9-1eb9c1abade3/export"/>
    <published>2026-07-06T08:14:51.301629+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/496375f0-c543-4359-86d9-d2df2c07fe0b/export</id>
    <title>496375f0-c543-4359-86d9-d2df2c07fe0b</title>
    <updated>2026-07-06T22:40:52.970926+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "496375f0-c543-4359-86d9-d2df2c07fe0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpxmsdqm5f2s", "content": "CVE-2026-14807 - erp app\nThe PROG MIS ERP App stores its login credentials directly in the code, which can be accessed by unauthorized users. This allows them to log in to the app and potentially view\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#erpapp #progmis #CVE #infosec", "creation_timestamp": "2026-07-06T08:02:04.759745Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/496375f0-c543-4359-86d9-d2df2c07fe0b/export"/>
    <published>2026-07-06T08:02:04.759745+00:00</published>
  </entry>
</feed>
