<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 06 Jul 2026 22:40:52 +0000</lastBuildDate>
    <item>
      <title>c7bf77cd-a524-4447-a166-d1627614239a</title>
      <link>https://vulnerability.circl.lu/sighting/c7bf77cd-a524-4447-a166-d1627614239a/export</link>
      <description>{"uuid": "c7bf77cd-a524-4447-a166-d1627614239a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11024-c5c1a-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:04.255767Z"}</description>
      <content:encoded>{"uuid": "c7bf77cd-a524-4447-a166-d1627614239a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://www.twcert.org.tw/en/cp-139-11024-c5c1a-2.html", "content": "", "creation_timestamp": "2026-07-06T09:45:04.255767Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c7bf77cd-a524-4447-a166-d1627614239a/export</guid>
      <pubDate>Mon, 06 Jul 2026 09:45:04 +0000</pubDate>
    </item>
    <item>
      <title>6d9b8ad3-e8d0-4175-9390-3a0e05cf3251</title>
      <link>https://vulnerability.circl.lu/sighting/6d9b8ad3-e8d0-4175-9390-3a0e05cf3251/export</link>
      <description>{"uuid": "6d9b8ad3-e8d0-4175-9390-3a0e05cf3251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpxq2tzoht24", "content": "PROG MIS ERP App hit by CRITICAL vuln (CVE-2026-14807): hard-coded creds let attackers access code &amp;amp; DB. No patch \u2014 restrict access, monitor ERP activity. \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERPsecurity", "creation_timestamp": "2026-07-06T09:00:31.800624Z"}</description>
      <content:encoded>{"uuid": "6d9b8ad3-e8d0-4175-9390-3a0e05cf3251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mpxq2tzoht24", "content": "PROG MIS ERP App hit by CRITICAL vuln (CVE-2026-14807): hard-coded creds let attackers access code &amp;amp; DB. No patch \u2014 restrict access, monitor ERP activity. \ud83d\udea8 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERPsecurity", "creation_timestamp": "2026-07-06T09:00:31.800624Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6d9b8ad3-e8d0-4175-9390-3a0e05cf3251/export</guid>
      <pubDate>Mon, 06 Jul 2026 09:00:31 +0000</pubDate>
    </item>
    <item>
      <title>1d83dbbf-5308-4781-a142-4fc933c41f17</title>
      <link>https://vulnerability.circl.lu/sighting/1d83dbbf-5308-4781-a142-4fc933c41f17/export</link>
      <description>{"uuid": "1d83dbbf-5308-4781-a142-4fc933c41f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116872211939531878", "content": "CVE-2026-14807: CRITICAL hard-coded credentials in PROG MIS ERP App allow unauthenticated remote access to source code &amp;amp; DB creds. No patch available \u2014 restrict access &amp;amp; monitor activity. CVSS 9.3 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERP #infosec", "creation_timestamp": "2026-07-06T09:00:30.113614Z"}</description>
      <content:encoded>{"uuid": "1d83dbbf-5308-4781-a142-4fc933c41f17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-14807", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116872211939531878", "content": "CVE-2026-14807: CRITICAL hard-coded credentials in PROG MIS ERP App allow unauthenticated remote access to source code &amp;amp; DB creds. No patch available \u2014 restrict access &amp;amp; monitor activity. CVSS 9.3 https://radar.offseq.com/threat/cve-2026-14807-cwe-798-use-of-hard-coded-credentia-f736ee8ed603a6fe #OffSeq #CVE202614807 #ERP #infosec", "creation_timestamp": "2026-07-06T09:00:30.113614Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1d83dbbf-5308-4781-a142-4fc933c41f17/export</guid>
      <pubDate>Mon, 06 Jul 2026 09:00:30 +0000</pubDate>
    </item>
    <item>
      <title>c93e6ac6-743b-4379-83c9-1eb9c1abade3</title>
      <link>https://vulnerability.circl.lu/sighting/c93e6ac6-743b-4379-83c9-1eb9c1abade3/export</link>
      <description>{"uuid": "c93e6ac6-743b-4379-83c9-1eb9c1abade3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxnj6vp2d2n", "content": "CVE-2026-14807 - PROG MIS\uff5cERP App - Use of Hard-coded Credentials\nCVE ID : CVE-2026-14807\n \n Published : July 6, 2026, 7:09 a.m. | 38\u00a0minutes ago\n \n Description : ERP App developed by PROG MIS has a Use of Hard-coded Credentials vulnerability, allowing unauthenticated remote a...", "creation_timestamp": "2026-07-06T08:14:51.301629Z"}</description>
      <content:encoded>{"uuid": "c93e6ac6-743b-4379-83c9-1eb9c1abade3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mpxnj6vp2d2n", "content": "CVE-2026-14807 - PROG MIS\uff5cERP App - Use of Hard-coded Credentials\nCVE ID : CVE-2026-14807\n \n Published : July 6, 2026, 7:09 a.m. | 38\u00a0minutes ago\n \n Description : ERP App developed by PROG MIS has a Use of Hard-coded Credentials vulnerability, allowing unauthenticated remote a...", "creation_timestamp": "2026-07-06T08:14:51.301629Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c93e6ac6-743b-4379-83c9-1eb9c1abade3/export</guid>
      <pubDate>Mon, 06 Jul 2026 08:14:51 +0000</pubDate>
    </item>
    <item>
      <title>496375f0-c543-4359-86d9-d2df2c07fe0b</title>
      <link>https://vulnerability.circl.lu/sighting/496375f0-c543-4359-86d9-d2df2c07fe0b/export</link>
      <description>{"uuid": "496375f0-c543-4359-86d9-d2df2c07fe0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpxmsdqm5f2s", "content": "CVE-2026-14807 - erp app\nThe PROG MIS ERP App stores its login credentials directly in the code, which can be accessed by unauthorized users. This allows them to log in to the app and potentially view\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#erpapp #progmis #CVE #infosec", "creation_timestamp": "2026-07-06T08:02:04.759745Z"}</description>
      <content:encoded>{"uuid": "496375f0-c543-4359-86d9-d2df2c07fe0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-14807", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mpxmsdqm5f2s", "content": "CVE-2026-14807 - erp app\nThe PROG MIS ERP App stores its login credentials directly in the code, which can be accessed by unauthorized users. This allows them to log in to the app and potentially view\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#erpapp #progmis #CVE #infosec", "creation_timestamp": "2026-07-06T08:02:04.759745Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/496375f0-c543-4359-86d9-d2df2c07fe0b/export</guid>
      <pubDate>Mon, 06 Jul 2026 08:02:04 +0000</pubDate>
    </item>
  </channel>
</rss>
