Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-28T18:40:31.937329+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/c8a7dae4-dfb0-4f6e-be32-c68ecceebaef/export c8a7dae4-dfb0-4f6e-be32-c68ecceebaef 2026-06-28T18:40:31.959343+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "c8a7dae4-dfb0-4f6e-be32-c68ecceebaef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42843", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllsb23yqb2e", "content": "\ud83d\udfe0 CVE-2026-42843 - High (8.8)\n\nGrav API Plugin is a RESTful API for Grav CMS that provides full headless access to your site's c...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42843/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T17:27:03.722183Z"} 2026-05-11T17:27:03.722183+00:00 https://vulnerability.circl.lu/sighting/5ecc6190-ac76-4d00-82c4-0a021c2f638b/export 5ecc6190-ac76-4d00-82c4-0a021c2f638b 2026-06-28T18:40:31.959275+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5ecc6190-ac76-4d00-82c4-0a021c2f638b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42843", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mllsb23yqb2e", "content": "\ud83d\udfe0 CVE-2026-42843 - High (8.8)\n\nGrav API Plugin is a RESTful API for Grav CMS that provides full headless access to your site's c...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42843/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-11T17:27:03.727847Z"} 2026-05-11T17:27:03.727847+00:00 https://vulnerability.circl.lu/sighting/8a5e3846-abf8-44b4-93f1-4f828092377a/export 8a5e3846-abf8-44b4-93f1-4f828092377a 2026-06-28T18:40:31.959207+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "8a5e3846-abf8-44b4-93f1-4f828092377a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42843", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmuofi4lq22z", "content": "\ud83d\udccc CVE-2026-42843 - Grav API Plugin is a RESTful API for Grav CMS that provides full headless access to your site's content, media, configuration, users, and system manag... https://www.cyberhub.blog/cves/CVE-2026-42843", "creation_timestamp": "2026-05-27T23:37:06.773783Z"} 2026-05-27T23:37:06.773783+00:00 https://vulnerability.circl.lu/sighting/fbe5dfab-547f-4158-9500-c9a2952e22e1/export fbe5dfab-547f-4158-9500-c9a2952e22e1 2026-06-28T18:40:31.959140+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fbe5dfab-547f-4158-9500-c9a2952e22e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42849", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mndp5kqcsp2u", "content": "\ud83d\udd34 CVE-2026-42849 - Critical (9.3)\n\nauthentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to t...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42849/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-02T23:00:31.395313Z"} 2026-06-02T23:00:31.395313+00:00 https://vulnerability.circl.lu/sighting/c6ea1112-09cd-43fe-a432-0d98ec96256f/export c6ea1112-09cd-43fe-a432-0d98ec96256f 2026-06-28T18:40:31.959074+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "c6ea1112-09cd-43fe-a432-0d98ec96256f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42849", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mndqhq2vdf2r", "content": "CVE-2026-42849 - authentik: Reflected XSS in SFE AutosubmitStage allows IDP account takeover\nCVE ID : CVE-2026-42849\n \n Published : June 2, 2026, 9:16 p.m. | 1\u00a0hour, 57\u00a0minutes ago\n \n Description : authentik is an open-source identity provider. Prior to versions 2025.12.5 and ...", "creation_timestamp": "2026-06-02T23:24:07.162825Z"} 2026-06-02T23:24:07.162825+00:00 https://vulnerability.circl.lu/sighting/414383b9-31a3-4b33-aabd-55a8067c535c/export 414383b9-31a3-4b33-aabd-55a8067c535c 2026-06-28T18:40:31.959006+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "414383b9-31a3-4b33-aabd-55a8067c535c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42849", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mnin3x4wwp25", "content": "\ud83d\udccc CVE-2026-42849 - authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flow E... https://www.cyberhub.blog/cves/CVE-2026-42849", "creation_timestamp": "2026-06-04T22:07:07.888743Z"} 2026-06-04T22:07:07.888743+00:00 https://vulnerability.circl.lu/sighting/92b0707e-1ff3-4fb0-8f49-1333c35ee1da/export 92b0707e-1ff3-4fb0-8f49-1333c35ee1da 2026-06-28T18:40:31.958938+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "92b0707e-1ff3-4fb0-8f49-1333c35ee1da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42846", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mo2gpevu2a2b", "content": "\ud83d\udd34 CVE-2026-42846 - Critical (9.8)\n\nClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42846/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-12T00:00:39.735379Z"} 2026-06-12T00:00:39.735379+00:00 https://vulnerability.circl.lu/sighting/1f669f6c-dd14-45d2-a21d-8635eb87c34b/export 1f669f6c-dd14-45d2-a21d-8635eb87c34b 2026-06-28T18:40:31.958870+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "1f669f6c-dd14-45d2-a21d-8635eb87c34b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42846", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mo2n335kp32y", "content": "CVE-2026-42846 - ClipBucket: Remote Play URL Command Injection\nCVE ID : CVE-2026-42846\n \n Published : 2026\u5e746\u670811\u65e5 23:16 | 1\u00a0\u5c0f\u65f6\uff0c49\u00a0\u5206\u949f ago\n \n Description : ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 - #140, ClipBucket's Remote Play feature allo...", "creation_timestamp": "2026-06-12T01:54:33.791600Z"} 2026-06-12T01:54:33.791600+00:00 https://vulnerability.circl.lu/sighting/fc58626c-ed1f-48ad-a1cf-b7a929dd7d4b/export fc58626c-ed1f-48ad-a1cf-b7a929dd7d4b 2026-06-28T18:40:31.958786+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fc58626c-ed1f-48ad-a1cf-b7a929dd7d4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42846", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mo2qcl2jjb2z", "content": "ClipBucket v5.5.3\u672a\u6e80\u3067\u306f\u3001\u8a8d\u8a3c\u6e08\u307f\u30e6\u30fc\u30b6\u30fc\u304c\u5916\u90e8URL\u304b\u3089\u52d5\u753b\u3092\u8ffd\u52a0\u3059\u308b\u969b\u3001URL\u4e2d\u306e\u7279\u6b8a\u6587\u5b57\u306b\u3088\u308b\u4efb\u610f\u306e\u30b3\u30de\u30f3\u30c9\u5b9f\u884c\u304c\u53ef\u80fd\u3002v5.5.3\u3067\u4fee\u6b63\u6e08\u3002\nCVE-2026-42846 CVSS 9.8 | CRITICAL", "creation_timestamp": "2026-06-12T02:52:26.475197Z"} 2026-06-12T02:52:26.475197+00:00 https://vulnerability.circl.lu/sighting/5b3c9606-9790-48a1-a3fd-e2495692a093/export 5b3c9606-9790-48a1-a3fd-e2495692a093 2026-06-28T18:40:31.957481+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5b3c9606-9790-48a1-a3fd-e2495692a093", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42846", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mo2qqx7wqn2e", "content": "CRITICAL: OS command injection in clipbucket-v5 (<5.5.3) allows authenticated users to run arbitrary commands. Patch to 5.5.3+ now! Details: https://radar.offseq.com/threat/cve-2026-42846-cwe-78-improper-neutralization-of-s-291d3dfa #OffSeq #CVE202642846 #security", "creation_timestamp": "2026-06-12T03:00:29.524202Z"} 2026-06-12T03:00:29.524202+00:00