<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-19T12:25:55.612863+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d43ca3b9-0126-42c3-a793-33a5e1053188/export</id>
    <title>d43ca3b9-0126-42c3-a793-33a5e1053188</title>
    <updated>2026-07-19T12:25:55.629848+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d43ca3b9-0126-42c3-a793-33a5e1053188", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/kalika.de/post/3mqyjpa7z3m2n", "content": "wp2shell: Die kritische Pre-Auth-RCE-L\u00fccke in WordPress Core \u2013 was Site-Betreiber jetzt wissen m\u00fcssen\n\nwp2shell (CVE-2026-63030 &amp;amp; CVE-2026-60137) erlaubt unauthentifizierte Remote Code Execution in WordPres...\n\nhttps://www.kalika.de/posts/technical-analysis-of-wp2shell-the-latest-wordpress-core-pre/", "creation_timestamp": "2026-07-19T10:04:30.894338Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d43ca3b9-0126-42c3-a793-33a5e1053188/export"/>
    <published>2026-07-19T10:04:30.894338+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f308c877-579c-4b6a-9db6-411a65d7a445/export</id>
    <title>f308c877-579c-4b6a-9db6-411a65d7a445</title>
    <updated>2026-07-19T12:25:55.632462+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f308c877-579c-4b6a-9db6-411a65d7a445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/94110", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #RCE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a wp2shell-scanner\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a bahartanir\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-19 08:54:06\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-63030 / CVE-2026-60137 - WordPress pre-auth RCE scanner\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-19T10:00:03.328924Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f308c877-579c-4b6a-9db6-411a65d7a445/export"/>
    <published>2026-07-19T10:00:03.328924+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/64fd4ceb-bbfa-487c-a74d-02ff20c5632a/export</id>
    <title>64fd4ceb-bbfa-487c-a74d-02ff20c5632a</title>
    <updated>2026-07-19T12:25:55.632617+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "64fd4ceb-bbfa-487c-a74d-02ff20c5632a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/crawler.baldanders.info/post/3mqyidqoupg2g", "content": "\uff1e WordPress Core\u306e\u8106\u5f31\u6027 CVE-2026-63030 / CVE-2026-60137 (\u901a\u79f0\u300cwp2shell\u300d)\u306b\u3064\u3044\u3066\u307e\u3068\u3081\u3066\u307f\u305f\nhttps://piyolog.hatenadiary.jp/entry/2026/07/19/181822\n", "creation_timestamp": "2026-07-19T09:40:19.864456Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/64fd4ceb-bbfa-487c-a74d-02ff20c5632a/export"/>
    <published>2026-07-19T09:40:19.864456+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9e8c8c24-9f27-4775-ab30-fd93ab4cc693/export</id>
    <title>9e8c8c24-9f27-4775-ab30-fd93ab4cc693</title>
    <updated>2026-07-19T12:25:55.632723+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9e8c8c24-9f27-4775-ab30-fd93ab4cc693", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://t.me/GithubRedTeam/94097", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #Exploit #RCE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a wp2shell\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a ikow\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-07-19 06:23:55\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nwp2shell \u2014 WordPress Core Pre-Auth RCE (CVE-2026-63030 + CVE-2026-60137). Exploit toolkit + remediation.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-07-19T08:00:04.985278Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9e8c8c24-9f27-4775-ab30-fd93ab4cc693/export"/>
    <published>2026-07-19T08:00:04.985278+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/162637e1-fbe0-4ab1-949d-819de402310a/export</id>
    <title>162637e1-fbe0-4ab1-949d-819de402310a</title>
    <updated>2026-07-19T12:25:55.632824+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "162637e1-fbe0-4ab1-949d-819de402310a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqyaiai4m72p", "content": "CVE-2026-63030 and CVE-2026-60137: Is WordPress\u2019s Update Enough? #WordPress #CyberSecurity #Vulnerability", "creation_timestamp": "2026-07-19T07:19:32.501733Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/162637e1-fbe0-4ab1-949d-819de402310a/export"/>
    <published>2026-07-19T07:19:32.501733+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a74d91e0-d45d-4497-b0b6-170bc3bd21e4/export</id>
    <title>a74d91e0-d45d-4497-b0b6-170bc3bd21e4</title>
    <updated>2026-07-19T12:25:55.632923+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a74d91e0-d45d-4497-b0b6-170bc3bd21e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqyai6mcmt2j", "content": "CVE-2026-63030; CVE-2026-60137: WordPress Exploits Offer Open Door to Attackers #WordPress #Cybersecurity #Exploits", "creation_timestamp": "2026-07-19T07:19:30.496899Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a74d91e0-d45d-4497-b0b6-170bc3bd21e4/export"/>
    <published>2026-07-19T07:19:30.496899+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/836ed81b-908c-4d07-9ff7-628abc2a99fb/export</id>
    <title>836ed81b-908c-4d07-9ff7-628abc2a99fb</title>
    <updated>2026-07-19T12:25:55.633019+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "836ed81b-908c-4d07-9ff7-628abc2a99fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqyai2vplb2w", "content": "Critical CVE-2026-63030 and CVE-2026-60137 Exploits Threaten WordPress Sites #WordPress #CyberSecurity #CVE2026", "creation_timestamp": "2026-07-19T07:19:26.941101Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/836ed81b-908c-4d07-9ff7-628abc2a99fb/export"/>
    <published>2026-07-19T07:19:26.941101+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a4e9ba02-5878-47f2-af8d-b20e30f8585f/export</id>
    <title>a4e9ba02-5878-47f2-af8d-b20e30f8585f</title>
    <updated>2026-07-19T12:25:55.633114+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a4e9ba02-5878-47f2-af8d-b20e30f8585f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/cybernewsroom.bsky.social/post/3mqyage2uhu23", "content": "CVE-2026-60137: Unchecked WordPress Vulnerabilities Allow Unauthenticated Takeover #CVE2026 #WordPressSecurity #Cybersecurity", "creation_timestamp": "2026-07-19T07:18:29.651696Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a4e9ba02-5878-47f2-af8d-b20e30f8585f/export"/>
    <published>2026-07-19T07:18:29.651696+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c2a3f2ac-63e6-4a3b-9582-204437125d51/export</id>
    <title>c2a3f2ac-63e6-4a3b-9582-204437125d51</title>
    <updated>2026-07-19T12:25:55.633208+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c2a3f2ac-63e6-4a3b-9582-204437125d51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://bsky.app/profile/jkanematsu.bsky.social/post/3mqy7qa5ni22j", "content": "\u3010\u7d9a\u5831\u3011WordPress\u306e\u8106\u5f31\u6027\uff08wp2shell\uff0fCVE-2026-63030\uff09\u304c\u516c\u8868\u3055\u308c\u3066\u3044\u307e\u3059\u3002\n\u203b\u6628\u65e5\u306e\u6295\u7a3f\u3067\u66f8\u3044\u305f\u3001\u9023\u643a\u3057\u3066\u60aa\u7528\u3055\u308c\u308bSQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\uff08CVE-2026-60137\uff09\u3092\u542b\u307f\u307e\u3059\u3002\n\n\u3010\u4fee\u6b63\u7248\u3078\u901f\u3084\u304b\u306b\u30a2\u30c3\u30d7\u30c7\u30fc\u30c8\u3057\u3066\u304f\u3060\u3055\u3044\u3011\n\u30fb6.9.x \u3000\u2192\u3000WordPress 6.9.5 \n\u30fb7.0.x \u3000\u2192\u3000WordPress 7.0.2 \n\u30fb6.8.x \u3000\u2192\u3000WordPress 6.8.6 \n\nX\u30b5\u30fc\u30d0\u30fc\u7cfb\u306e\u30b9\u30bf\u30fc\u30ec\u30f3\u30bf\u30eb\u30b5\u30fc\u30d0\u30fc\u3055\u3093\u306e\u304a\u77e5\u3089\u305b\u306b\u3082\u8f09\u3063\u3066\u3044\u305f\u306e\u3067\u3001\u30ea\u30f3\u30af\u8cbc\u3063\u3066\u304a\u304d\u307e\u3059\u3002\nwww.star.ne.jp/news/detail....", "creation_timestamp": "2026-07-19T07:04:27.581371Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c2a3f2ac-63e6-4a3b-9582-204437125d51/export"/>
    <published>2026-07-19T07:04:27.581371+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/15056f9d-2a60-49b7-b917-81251d488ae1/export</id>
    <title>15056f9d-2a60-49b7-b917-81251d488ae1</title>
    <updated>2026-07-19T12:25:55.633309+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "15056f9d-2a60-49b7-b917-81251d488ae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-60137", "type": "seen", "source": "https://t.me/cyberbannews_ir/22721", "content": "\ud83d\udd34 \u0647\u0634\u062f\u0627\u0631 \u0627\u0645\u0646\u06cc\u062a\u06cc\u061b \u062f\u0648 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062e\u0637\u0631\u0646\u0627\u06a9 \u062f\u0631 \u0648\u0631\u062f\u067e\u0631\u0633 \u0628\u0627 \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631\n\n\ud83d\udd3b \u062f\u0648 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u062d\u0631\u0627\u0646\u06cc \u0628\u0627 \u0634\u0646\u0627\u0633\u0647\u200c\u0647\u0627\u06cc CVE-2026-60137 \u0648 CVE-2026-63030 \u062f\u0631 \u0648\u0631\u062f\u067e\u0631\u0633 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0634\u062f\u0647\u200c\u0627\u0646\u062f \u06a9\u0647 \u062f\u0631 \u0635\u0648\u0631\u062a \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0647\u0645\u0632\u0645\u0627\u0646\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 (RCE) \u0631\u0627 \u0628\u0631\u0627\u06cc \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0641\u0631\u0627\u0647\u0645 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f.\n\n\ud83d\udd3b \u0628\u0631\u0627\u06cc \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0646\u0645\u0648\u0646\u0647 \u06a9\u062f \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 (PoC) \u0628\u0627 \u0646\u0627\u0645 wp2shell \u0646\u06cc\u0632 \u0628\u0647\u200c\u0635\u0648\u0631\u062a \u0639\u0645\u0648\u0645\u06cc \u0645\u0646\u062a\u0634\u0631 \u0634\u062f\u0647 \u0648 \u062e\u0637\u0631 \u062d\u0645\u0644\u0627\u062a \u0631\u0627 \u0627\u0641\u0632\u0627\u06cc\u0634 \u062f\u0627\u062f\u0647 \u0627\u0633\u062a.\n\n\ud83d\udd39 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 6.9.5 \u0648 7.0.2 \u0648\u0631\u062f\u067e\u0631\u0633 \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f \u0648 \u0628\u0647 \u0645\u062f\u06cc\u0631\u0627\u0646 \u0648\u0628\u200c\u0633\u0627\u06cc\u062a\u200c\u0647\u0627 \u062a\u0648\u0635\u06cc\u0647 \u0634\u062f\u0647 \u0627\u0633\u062a \u0647\u0631\u0686\u0647 \u0633\u0631\u06cc\u0639\u200c\u062a\u0631 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u062c\u062f\u06cc\u062f \u0631\u0627 \u0646\u0635\u0628 \u06a9\u0646\u0646\u062f.\n\n#\u062a\u0647\u062f\u06cc\u062f_\u0633\u0627\u06cc\u0628\u0631\u06cc #\u0622\u0633\u06cc\u0628_\u067e\u0630\u06cc\u0631\u06cc #\u0648\u0631\u062f\u067e\u0631\u0633\n\n\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\ud83d\udd38\n\ud83d\udd39\ud83d\udd39 @cyberbannews_ir", "creation_timestamp": "2026-07-19T06:00:03.295934Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/15056f9d-2a60-49b7-b917-81251d488ae1/export"/>
    <published>2026-07-19T06:00:03.295934+00:00</published>
  </entry>
</feed>
