<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-02T18:42:49.054517+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d7cef781-0a5f-42bd-aa83-c8f2943fd4f2/export</id>
    <title>d7cef781-0a5f-42bd-aa83-c8f2943fd4f2</title>
    <updated>2026-07-02T18:42:49.076334+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d7cef781-0a5f-42bd-aa83-c8f2943fd4f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44691", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moledjigad2w", "content": "CVE-2026-44691 - Eclipse Theia Workspace Trust Bypass via Malicious Task Definitions\nCVE ID : CVE-2026-44691\n \n Published : June 18, 2026, 2:35 p.m. | 2\u00a0hours, 33\u00a0minutes ago\n \n Description : In Eclipse Theia versions prior to 1.69.0, custom task definitions in workspace files...", "creation_timestamp": "2026-06-18T17:33:28.892004Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d7cef781-0a5f-42bd-aa83-c8f2943fd4f2/export"/>
    <published>2026-06-18T17:33:28.892004+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/20866e5b-1255-44f6-a5fc-1240e1a411b6/export</id>
    <title>20866e5b-1255-44f6-a5fc-1240e1a411b6</title>
    <updated>2026-07-02T18:42:49.078693+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "20866e5b-1255-44f6-a5fc-1240e1a411b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44694", "type": "seen", "source": "MISP/d511a704-eba2-411a-9543-41e0e130f522", "content": "", "creation_timestamp": "2026-06-15T17:02:31.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/20866e5b-1255-44f6-a5fc-1240e1a411b6/export"/>
    <published>2026-06-15T17:02:31+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/69ec9402-b48d-4f12-a441-94eef0e8307b/export</id>
    <title>69ec9402-b48d-4f12-a441-94eef0e8307b</title>
    <updated>2026-07-02T18:42:49.078832+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "69ec9402-b48d-4f12-a441-94eef0e8307b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44693", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnybigf6cc2l", "content": "CVE-2026-44693 - Pi-hole FTL: Unauthenticated Session Hijacking via Race Condition on Global Session Buffer\nCVE ID : CVE-2026-44693\n \n Published : June 10, 2026, 11:16 p.m. | 2\u00a0hours, 48\u00a0minutes ago\n \n Description : Pi-hole FTL is the core engine of the Pi-hole network-level a...", "creation_timestamp": "2026-06-11T03:22:18.736509Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/69ec9402-b48d-4f12-a441-94eef0e8307b/export"/>
    <published>2026-06-11T03:22:18.736509+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5/export</id>
    <title>001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5</title>
    <updated>2026-07-02T18:42:49.078924+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44693", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mny4xbjy4l27", "content": "\ud83d\udfe0 CVE-2026-44693 - High (8.8)\n\nPi-hole FTL is the core engine of the Pi-hole network-level advertisement and tracker blocker. Pr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44693/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T02:00:47.737482Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5/export"/>
    <published>2026-06-11T02:00:47.737482+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/139eabff-58b3-40ec-9f0f-e4f9df32512a/export</id>
    <title>139eabff-58b3-40ec-9f0f-e4f9df32512a</title>
    <updated>2026-07-02T18:42:49.079012+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "139eabff-58b3-40ec-9f0f-e4f9df32512a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44697", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3tqk5jf325", "content": "\ud83d\udfe0 CVE-2026-44697 - High (8.6)\n\nKlever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17, a remote, ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44697/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T20:01:25.314533Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/139eabff-58b3-40ec-9f0f-e4f9df32512a/export"/>
    <published>2026-05-30T20:01:25.314533+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d7dffa2c-e4e7-41e2-b210-07fcf460cd92/export</id>
    <title>d7dffa2c-e4e7-41e2-b210-07fcf460cd92</title>
    <updated>2026-07-02T18:42:49.079105+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d7dffa2c-e4e7-41e2-b210-07fcf460cd92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44697", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzdjdvunn2h", "content": "CVE-2026-44697 - Klever-Go MultiDataInterceptor: remote OOM via crafted compressed P2P payload\nCVE ID : CVE-2026-44697\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Klever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17...", "creation_timestamp": "2026-05-29T20:05:43.706081Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d7dffa2c-e4e7-41e2-b210-07fcf460cd92/export"/>
    <published>2026-05-29T20:05:43.706081+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d790b424-0d08-4f77-bf80-fd457d56cc9d/export</id>
    <title>d790b424-0d08-4f77-bf80-fd457d56cc9d</title>
    <updated>2026-07-02T18:42:49.079187+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d790b424-0d08-4f77-bf80-fd457d56cc9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44698", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmywtjjgs62e", "content": "CVE-2026-44698 - Home Assistant: Cross-origin iframe access token exfiltration via WebView JS bridge callback injection\nCVE ID : CVE-2026-44698\n \n Published : May 29, 2026, 2:16 p.m. | 55\u00a0minutes ago\n \n Description : Home Assistant is open source home automation software that ...", "creation_timestamp": "2026-05-29T16:18:46.571368Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d790b424-0d08-4f77-bf80-fd457d56cc9d/export"/>
    <published>2026-05-29T16:18:46.571368+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/126e531b-6228-42f3-a358-47f4259e01cc/export</id>
    <title>126e531b-6228-42f3-a358-47f4259e01cc</title>
    <updated>2026-07-02T18:42:49.079272+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "126e531b-6228-42f3-a358-47f4259e01cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44698", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmysjlmepp2v", "content": "\ud83d\udfe0 CVE-2026-44698 - High (8.3)\n\nHome Assistant is open source home automation software that puts local control and privacy first....\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44698/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-29T15:01:38.809254Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/126e531b-6228-42f3-a358-47f4259e01cc/export"/>
    <published>2026-05-29T15:01:38.809254+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c0b80133-642f-4d24-8429-d793fe64f886/export</id>
    <title>c0b80133-642f-4d24-8429-d793fe64f886</title>
    <updated>2026-07-02T18:42:49.079368+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://cve.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "c0b80133-642f-4d24-8429-d793fe64f886", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44697", "type": "published-proof-of-concept", "source": "https://github.com/klever-io/klever-go/security/advisories/GHSA-87m7-qffr-542v", "content": "", "creation_timestamp": "2026-05-11T19:17:38.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c0b80133-642f-4d24-8429-d793fe64f886/export"/>
    <published>2026-05-11T19:17:38+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6845e869-ab0b-473e-96f2-564e24488e4b/export</id>
    <title>6845e869-ab0b-473e-96f2-564e24488e4b</title>
    <updated>2026-07-02T18:42:49.080747+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6845e869-ab0b-473e-96f2-564e24488e4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44694", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mletkureqe2q", "content": "CVE-2026-44694 - n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client paths\nCVE ID : CVE-2026-44694\n \n Published : May 8, 2026, 8:16 p.m. | 2\u00a0hours, 9\u00a0minutes ago\n \n Description : n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, p...", "creation_timestamp": "2026-05-08T23:01:48.615359Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6845e869-ab0b-473e-96f2-564e24488e4b/export"/>
    <published>2026-05-08T23:01:48.615359+00:00</published>
  </entry>
</feed>
