<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T06:43:16.424907+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8433e11f-970f-4f35-abda-1f3f28abad0d/export</id>
    <title>8433e11f-970f-4f35-abda-1f3f28abad0d</title>
    <updated>2026-07-12T06:43:16.446159+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8433e11f-970f-4f35-abda-1f3f28abad0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21440", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/2446", "content": "\ud83c\udd98CVE-2026-21440: A critical path traversal vulnerability affecting the AdonisJS framework, specifically its multipart file upload handling.\n\n\u27a1\ufe0fPoC Exploit: https://github.com/Ashwesker/Ashwesker-CVE-2026-21440", "creation_timestamp": "2026-07-12T00:00:51.452197Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8433e11f-970f-4f35-abda-1f3f28abad0d/export"/>
    <published>2026-07-12T00:00:51.452197+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6b8f52b0-1768-4b54-a9bb-7feac4179b4c/export</id>
    <title>6b8f52b0-1768-4b54-a9bb-7feac4179b4c</title>
    <updated>2026-07-12T06:43:16.447638+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6b8f52b0-1768-4b54-a9bb-7feac4179b4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21440", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/2446", "content": "\ud83c\udd98CVE-2026-21440: A critical path traversal vulnerability affecting the AdonisJS framework, specifically its multipart file upload handling.\n\n\u27a1\ufe0fPoC Exploit: https://github.com/Ashwesker/Ashwesker-CVE-2026-21440", "creation_timestamp": "2026-07-11T11:00:04.818204Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6b8f52b0-1768-4b54-a9bb-7feac4179b4c/export"/>
    <published>2026-07-11T11:00:04.818204+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/44e7711d-da26-49ba-941d-93d49f5ad7f9/export</id>
    <title>44e7711d-da26-49ba-941d-93d49f5ad7f9</title>
    <updated>2026-07-12T06:43:16.447772+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "44e7711d-da26-49ba-941d-93d49f5ad7f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21440", "type": "seen", "source": "https://t.me/brutsecurity/2446", "content": "\ud83c\udd98CVE-2026-21440: A critical path traversal vulnerability affecting the AdonisJS framework, specifically its multipart file upload handling.\n\n\u27a1\ufe0fPoC Exploit: https://github.com/Ashwesker/Ashwesker-CVE-2026-21440", "creation_timestamp": "2026-07-10T00:00:13.504716Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/44e7711d-da26-49ba-941d-93d49f5ad7f9/export"/>
    <published>2026-07-10T00:00:13.504716+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2ab4447e-9767-4395-890e-1d1a06653056/export</id>
    <title>2ab4447e-9767-4395-890e-1d1a06653056</title>
    <updated>2026-07-12T06:43:16.447876+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2ab4447e-9767-4395-890e-1d1a06653056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21440", "type": "seen", "source": "https://t.me/brutsecurity/2446", "content": "\ud83c\udd98CVE-2026-21440: A critical path traversal vulnerability affecting the AdonisJS framework, specifically its multipart file upload handling.\n\n\u27a1\ufe0fPoC Exploit: https://github.com/Ashwesker/Ashwesker-CVE-2026-21440", "creation_timestamp": "2026-07-09T03:00:06.089585Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2ab4447e-9767-4395-890e-1d1a06653056/export"/>
    <published>2026-07-09T03:00:06.089585+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4c8c8965-5c33-4262-9314-e3e859231ea1/export</id>
    <title>4c8c8965-5c33-4262-9314-e3e859231ea1</title>
    <updated>2026-07-12T06:43:16.447989+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4c8c8965-5c33-4262-9314-e3e859231ea1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21441", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmbyk373sk2w", "content": "The CVE-2026-21441 \"decompression bomb\" shows why patches aren't enough.  Read more -&amp;gt; tinyurl.com/mr3f58e7", "creation_timestamp": "2026-05-20T13:18:05.053946Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4c8c8965-5c33-4262-9314-e3e859231ea1/export"/>
    <published>2026-05-20T13:18:05.053946+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2216fecb-ab50-47d0-8afe-bc5d7010aa83/export</id>
    <title>2216fecb-ab50-47d0-8afe-bc5d7010aa83</title>
    <updated>2026-07-12T06:43:16.448088+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2216fecb-ab50-47d0-8afe-bc5d7010aa83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21441", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmbyjyaod22w", "content": "The CVE-2026-21441 \"decompression bomb\" shows why patches aren't enough.  Read more -&amp;gt; tinyurl.com/mr3f58e7", "creation_timestamp": "2026-05-20T13:18:04.468749Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2216fecb-ab50-47d0-8afe-bc5d7010aa83/export"/>
    <published>2026-05-20T13:18:04.468749+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9c254bce-d0ab-4e79-8f19-67ed2ed4a383/export</id>
    <title>9c254bce-d0ab-4e79-8f19-67ed2ed4a383</title>
    <updated>2026-07-12T06:43:16.448196+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9c254bce-d0ab-4e79-8f19-67ed2ed4a383", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21441", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mmbyjwpows2w", "content": "The CVE-2026-21441 \"decompression bomb\" shows why patches aren't enough.  Read more -&amp;gt; tinyurl.com/mr3f58e7", "creation_timestamp": "2026-05-20T13:18:03.915877Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9c254bce-d0ab-4e79-8f19-67ed2ed4a383/export"/>
    <published>2026-05-20T13:18:03.915877+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/000f45aa-47c4-493f-9231-522103a7dc5b/export</id>
    <title>000f45aa-47c4-493f-9231-522103a7dc5b</title>
    <updated>2026-07-12T06:43:16.448302+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "000f45aa-47c4-493f-9231-522103a7dc5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-21445", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mk6ddxbwpy2r", "content": "", "creation_timestamp": "2026-04-23T15:30:26.937686Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/000f45aa-47c4-493f-9231-522103a7dc5b/export"/>
    <published>2026-04-23T15:30:26.937686+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fa8e5d04-155d-462b-aeb1-e678a92bb309/export</id>
    <title>fa8e5d04-155d-462b-aeb1-e678a92bb309</title>
    <updated>2026-07-12T06:43:16.448401+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fa8e5d04-155d-462b-aeb1-e678a92bb309", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21445", "type": "seen", "source": "https://bsky.app/profile/crowdsec.bsky.social/post/3mjweqsxdgk25", "content": "", "creation_timestamp": "2026-04-20T11:30:05.034528Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fa8e5d04-155d-462b-aeb1-e678a92bb309/export"/>
    <published>2026-04-20T11:30:05.034528+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7e6f1d74-395f-4dbb-a337-566ff102f0cd/export</id>
    <title>7e6f1d74-395f-4dbb-a337-566ff102f0cd</title>
    <updated>2026-07-12T06:43:16.448505+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7e6f1d74-395f-4dbb-a337-566ff102f0cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-21441", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mjoxczihdu2i", "content": "", "creation_timestamp": "2026-04-17T12:45:14.355558Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7e6f1d74-395f-4dbb-a337-566ff102f0cd/export"/>
    <published>2026-04-17T12:45:14.355558+00:00</published>
  </entry>
</feed>
