https://vulnerability.circl.lu/sightings/feed 2026-06-14T07:31:13.690704+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/a3ba7e05-30bc-4e15-b731-b5a7840b92e0/export 2026-06-14T07:31:13.697504+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a3ba7e05-30bc-4e15-b731-b5a7840b92e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mnzgtcv4ee2r", "content": "Hackers are exploiting CVE-2026-5027 in Langflow, a path traversal flaw in /api/v2/files that can allow file writes and possible remote code execution. Thousands of exposed instances may be at risk. #Langflow #CVE2026_5027 #RCE", "creation_timestamp": "2026-06-11T14:30:11.759137Z"} 2026-06-11T14:30:11.759137+00:00 https://vulnerability.circl.lu/sighting/43ad902a-b9c4-47c3-906f-5a6cd7d37add/export 2026-06-14T07:31:13.697409+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "43ad902a-b9c4-47c3-906f-5a6cd7d37add", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/theitnerd.ca/post/3mnzmnleith2c", "content": "Threat Actors exploiting High Severity Vulnerability in\u00a0Langflow\n\nThreat actors are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in Langflow, a popular low-code platform for building AI applications....", "creation_timestamp": "2026-06-11T16:14:21.139742Z"} 2026-06-11T16:14:21.139742+00:00 https://vulnerability.circl.lu/sighting/f687e73d-9359-4ba9-9ffd-306276168306/export 2026-06-14T07:31:13.697312+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "f687e73d-9359-4ba9-9ffd-306276168306", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mnzq2zq6mm2b", "content": "Critical Langflow flaw (CVE-2026-5027) enables remote code execution via file upload path-traversal. #Langflow #CVE20265027 #CyberSecurity #RemoteCodeExecution #Vulnerability #InfoSec thedailytechfeed.com/critical-lan...", "creation_timestamp": "2026-06-11T17:15:34.309070Z"} 2026-06-11T17:15:34.309070+00:00 https://vulnerability.circl.lu/sighting/91c7404f-6efe-49b7-abaf-e5d13880f3d7/export 2026-06-14T07:31:13.697215+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "91c7404f-6efe-49b7-abaf-e5d13880f3d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mnzrmsqlgc2h", "content": "Unpatched Langflow Flaw CVE-2026-5027 Exploited for Unauthenticated RCE\n\nA high-severity unpatched security flaw in Langflow, an open-source low-code platform to build artificial intelligence (AI) applications, has come under active exploitation in the wild, according to findings \u2026\n#hackernews #news", "creation_timestamp": "2026-06-11T17:43:23.859846Z"} 2026-06-11T17:43:23.859846+00:00 https://vulnerability.circl.lu/sighting/496acb72-d3d1-4a6c-9817-c1aa4959ced5/export 2026-06-14T07:31:13.697119+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "496acb72-d3d1-4a6c-9817-c1aa4959ced5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnzuquhkpk2m", "content": "CVE-2026-5027, Langflow: we've tracked it as a serial unauth-RCE target since March 21 and had six exploiter IPs indexed in April. New PoC June 11 \u2014 Iran's MuddyWater already weaponized one. And CVE-2026-50751, Check Point IKE: we flagged Qilin burning that edge door June 9, PoC June 10.", "creation_timestamp": "2026-06-11T18:39:21.825456Z"} 2026-06-11T18:39:21.825456+00:00 https://vulnerability.circl.lu/sighting/0734283f-d82a-43fc-b915-71c04d5ac017/export 2026-06-14T07:31:13.697019+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "0734283f-d82a-43fc-b915-71c04d5ac017", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mnzz6gbjeh2j", "content": "Langflow's CVE-2026-5027 is under active exploitation. Immediate action is needed to secure systems. #Langflow #CVE20265027 #CyberSecurity #AI #OpenSource #SecurityFlaw thedailytechfeed.com/critical-lan...", "creation_timestamp": "2026-06-11T19:58:31.136002Z"} 2026-06-11T19:58:31.136002+00:00 https://vulnerability.circl.lu/sighting/7586e0ce-a86a-4b50-bf0b-188c83438f18/export 2026-06-14T07:31:13.696916+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "7586e0ce-a86a-4b50-bf0b-188c83438f18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mnzzaqe4v22y", "content": "Silent Intrusion in the AI Stack: Langflow Exploit CVE-2026-5027 Opens Path to Full Remote Code Execution +\u00a0Video\n\nIntroduction: When AI Development Tools Become the Weakest Link The rapid rise of low-code AI platforms has transformed how organizations build and deploy machine learning\u2026", "creation_timestamp": "2026-06-11T19:59:49.353478Z"} 2026-06-11T19:59:49.353478+00:00 https://vulnerability.circl.lu/sighting/f08da765-fec6-4e45-ab2d-c3dd13fb6b10/export 2026-06-14T07:31:13.696809+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "f08da765-fec6-4e45-ab2d-c3dd13fb6b10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mo2cklxg2s2h", "content": "Path traversal flaw in AI dev platform Langflow exploited in attacks\n\nAttackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers. [...]\n#hackernews #news", "creation_timestamp": "2026-06-11T22:46:24.188375Z"} 2026-06-11T22:46:24.188375+00:00 https://vulnerability.circl.lu/sighting/6e6f3d36-8f00-4153-826a-491c40650e59/export 2026-06-14T07:31:13.696676+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "6e6f3d36-8f00-4153-826a-491c40650e59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mo2p4bqw6b2l", "content": "Top 3 CVE for last 7 days:\nCVE-2026-35273: 33 interactions\nCVE-2026-11645: 27 interactions\nCVE-2025-10263: 25 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-35273: 33 interactions\nCVE-2026-5027: 14 interactions\nCVE-2026-40992: 7 interactions\n", "creation_timestamp": "2026-06-12T02:31:02.282841Z"} 2026-06-12T02:31:02.282841+00:00 https://vulnerability.circl.lu/sighting/fe80df3a-dda9-4a84-b764-90ab2a9b5bb5/export 2026-06-14T07:31:13.695388+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fe80df3a-dda9-4a84-b764-90ab2a9b5bb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5027", "type": "seen", "source": "https://bsky.app/profile/deafnews-auto.bsky.social/post/3mo6qibtnji2o", "content": "Langflow CVE-2026-5027: RCE Under Active Exploitation with 7,000 Instances Exposed", "creation_timestamp": "2026-06-13T17:06:17.248066Z"} 2026-06-13T17:06:17.248066+00:00