<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-11T18:11:30.889628+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e5ffce2e-b5c7-42b3-9dca-561db77ef310/export</id>
    <title>e5ffce2e-b5c7-42b3-9dca-561db77ef310</title>
    <updated>2026-07-11T18:11:30.911441+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e5ffce2e-b5c7-42b3-9dca-561db77ef310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-57827", "type": "seen", "source": "https://bsky.app/profile/malwareobserver.bsky.social/post/3mqer3yrmqc2s", "content": "\ud83d\udc1b VULNERABILITIES CVE Notify: \ud83d\udea8 [CVE-2026-57827](https://mysites.guru/blog/rsfiles-unauthenticated-file-upload-rce/)\nThe Joomla e...\nhttps://mysites.guru/blog/rsfiles-unauthenticated-file-upload-rce/ #CVE #ZeroDay #PatchManagement", "creation_timestamp": "2026-07-11T13:23:40.075646Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e5ffce2e-b5c7-42b3-9dca-561db77ef310/export"/>
    <published>2026-07-11T13:23:40.075646+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/971d8950-ee1b-4541-99b2-8e5d62ab7b26/export</id>
    <title>971d8950-ee1b-4541-99b2-8e5d62ab7b26</title>
    <updated>2026-07-11T18:11:30.913908+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "971d8950-ee1b-4541-99b2-8e5d62ab7b26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-57827", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/116901531782818991", "content": "Some increased actor activities are shown targeting rsjoomla RSFiles Plugin (CVE-2026-57827) https://vuldb.com/vuln/377784/cti", "creation_timestamp": "2026-07-11T13:16:55.046156Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/971d8950-ee1b-4541-99b2-8e5d62ab7b26/export"/>
    <published>2026-07-11T13:16:55.046156+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e66f0640-68d5-4691-8db3-43db65655a11/export</id>
    <title>e66f0640-68d5-4691-8db3-43db65655a11</title>
    <updated>2026-07-11T18:11:30.914116+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e66f0640-68d5-4691-8db3-43db65655a11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-57827", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqekvrkacu2i", "content": "CVE-2026-57827 - Joomla Extension - rsjoomla.com - Unauthenticated file upload in RSFiles component\nCVE ID : CVE-2026-57827\n \n Published : July 11, 2026, 10:16 a.m. | 1\u00a0hour, 8\u00a0minutes ago\n \n Description : The Joomla extension RSFiles is vulnerable to an unauthenticated arbitr...", "creation_timestamp": "2026-07-11T11:32:49.036639Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e66f0640-68d5-4691-8db3-43db65655a11/export"/>
    <published>2026-07-11T11:32:49.036639+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f769bd69-65dc-4d94-9ba1-c69c6a064237/export</id>
    <title>f769bd69-65dc-4d94-9ba1-c69c6a064237</title>
    <updated>2026-07-11T18:11:30.914284+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f769bd69-65dc-4d94-9ba1-c69c6a064237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-57827", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqehngwwdo2i", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-57827 \u0432 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0438 RSFiles \u0434\u043b\u044f Joomla: \u0443\u0433\u0440\u043e\u0437\u0430 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0438 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/D7AC6F18-EDD5-4825-8343-B101466E17F8", "creation_timestamp": "2026-07-11T10:34:28.932923Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f769bd69-65dc-4d94-9ba1-c69c6a064237/export"/>
    <published>2026-07-11T10:34:28.932923+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/77254cfb-7062-4947-b474-b49fac5f618c/export</id>
    <title>77254cfb-7062-4947-b474-b49fac5f618c</title>
    <updated>2026-07-11T18:11:30.914453+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "77254cfb-7062-4947-b474-b49fac5f618c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-57827", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqehgar5352d", "content": "CVE-2026-57827: CRITICAL RCE in RSFiles for Joomla (v1.0 \u2013 1.17.11). Unauthenticated file upload risk \u2014 no patch yet. Restrict/disable RSFiles &amp;amp; monitor for updates. https://radar.offseq.com/threat/cve-2026-57827-cwe-434-unrestricted-upload-of-file-a1f2af3a6bb6ec32 #OffSeq #Joomla #Security", "creation_timestamp": "2026-07-11T10:30:27.322093Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/77254cfb-7062-4947-b474-b49fac5f618c/export"/>
    <published>2026-07-11T10:30:27.322093+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0f015f65-2cd7-4a0e-b72f-7bb9ea332335/export</id>
    <title>0f015f65-2cd7-4a0e-b72f-7bb9ea332335</title>
    <updated>2026-07-11T18:11:30.914619+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0f015f65-2cd7-4a0e-b72f-7bb9ea332335", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-57827", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116900877079415600", "content": "CVE-2026-57827 (CRITICAL): RSFiles for Joomla v1.0 \u2013 1.17.11 lets unauthenticated attackers upload &amp;amp; execute arbitrary files (RCE, CWE-434). No patch \u2014 restrict/disable the extension &amp;amp; monitor for updates. https://radar.offseq.com/threat/cve-2026-57827-cwe-434-unrestricted-upload-of-file-a1f2af3a6bb6ec32 #OffSeq #Joomla #RCE #Vuln", "creation_timestamp": "2026-07-11T10:30:25.362341Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0f015f65-2cd7-4a0e-b72f-7bb9ea332335/export"/>
    <published>2026-07-11T10:30:25.362341+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dafee5f5-8837-4805-bee0-42615217fbcf/export</id>
    <title>dafee5f5-8837-4805-bee0-42615217fbcf</title>
    <updated>2026-07-11T18:11:30.914778+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dafee5f5-8837-4805-bee0-42615217fbcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-57827", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqeh2vpikf24", "content": "CVE-2026-57827 - rsjoomla.com rsfiles extension for joomla\nThe RSFiles extension in Joomla allows unauthorized users to upload any type of file, including executable files. This can lead to hackers gaining full control over\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-11T10:24:06.022805Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dafee5f5-8837-4805-bee0-42615217fbcf/export"/>
    <published>2026-07-11T10:24:06.022805+00:00</published>
  </entry>
</feed>
