https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 08 Jun 2026 01:28:24 +0000 https://vulnerability.circl.lu/sighting/e4bea5c0-b9c4-4383-89fb-06841d804997/export {"uuid": "e4bea5c0-b9c4-4383-89fb-06841d804997", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42281", "type": "published-proof-of-concept", "source": "https://github.com/MagicMirrorOrg/MagicMirror/security/advisories/GHSA-ph6f-2cvq-79hq", "content": "", "creation_timestamp": "2026-04-30T21:00:54.000000Z"} {"uuid": "e4bea5c0-b9c4-4383-89fb-06841d804997", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-42281", "type": "published-proof-of-concept", "source": "https://github.com/MagicMirrorOrg/MagicMirror/security/advisories/GHSA-ph6f-2cvq-79hq", "content": "", "creation_timestamp": "2026-04-30T21:00:54.000000Z"} https://vulnerability.circl.lu/sighting/e4bea5c0-b9c4-4383-89fb-06841d804997/export Thu, 30 Apr 2026 21:00:54 +0000 https://vulnerability.circl.lu/sighting/85c9d70a-c07c-4448-b4e1-c22b57318958/export {"uuid": "85c9d70a-c07c-4448-b4e1-c22b57318958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "Telegram/Bh4iyBQIMN2Hl9Jl9GcG_tuPw1Psk_odE0qn4w68HKrpiOc", "content": "", "creation_timestamp": "2026-05-01T03:00:05.000000Z"} {"uuid": "85c9d70a-c07c-4448-b4e1-c22b57318958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "Telegram/Bh4iyBQIMN2Hl9Jl9GcG_tuPw1Psk_odE0qn4w68HKrpiOc", "content": "", "creation_timestamp": "2026-05-01T03:00:05.000000Z"} https://vulnerability.circl.lu/sighting/85c9d70a-c07c-4448-b4e1-c22b57318958/export Fri, 01 May 2026 03:00:05 +0000 https://vulnerability.circl.lu/sighting/87e8c708-3a57-410a-8b2c-f7382fc1c629/export {"uuid": "87e8c708-3a57-410a-8b2c-f7382fc1c629", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-42281.yaml", "content": "", "creation_timestamp": "2026-05-11T16:50:45.000000Z"} {"uuid": "87e8c708-3a57-410a-8b2c-f7382fc1c629", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2026/CVE-2026-42281.yaml", "content": "", "creation_timestamp": "2026-05-11T16:50:45.000000Z"} https://vulnerability.circl.lu/sighting/87e8c708-3a57-410a-8b2c-f7382fc1c629/export Mon, 11 May 2026 16:50:45 +0000 https://vulnerability.circl.lu/sighting/1ef6d8a1-dd05-4a23-bf7d-5a9e6defb4f2/export {"uuid": "1ef6d8a1-dd05-4a23-bf7d-5a9e6defb4f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42281", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116573877881665674", "content": "\ud83d\udea8 CVE-2026-42281: CRITICAL SSRF in MagicMirror\u00b2 (<2.36.0)! /cors endpoint lets unauthenticated attackers scan internal networks & exfiltrate environment secrets. Upgrade to 2.36.0+ now! https://radar.offseq.com/threat/cve-2026-42281-cwe-918-server-side-request-forgery-3c9e7191 #OffSeq #SSRF #MagicMirror #Vuln", "creation_timestamp": "2026-05-14T16:31:25.612976Z"} {"uuid": "1ef6d8a1-dd05-4a23-bf7d-5a9e6defb4f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-42281", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116573877881665674", "content": "\ud83d\udea8 CVE-2026-42281: CRITICAL SSRF in MagicMirror\u00b2 (<2.36.0)! /cors endpoint lets unauthenticated attackers scan internal networks & exfiltrate environment secrets. Upgrade to 2.36.0+ now! https://radar.offseq.com/threat/cve-2026-42281-cwe-918-server-side-request-forgery-3c9e7191 #OffSeq #SSRF #MagicMirror #Vuln", "creation_timestamp": "2026-05-14T16:31:25.612976Z"} https://vulnerability.circl.lu/sighting/1ef6d8a1-dd05-4a23-bf7d-5a9e6defb4f2/export Thu, 14 May 2026 16:31:25 +0000 https://vulnerability.circl.lu/sighting/180f9fc5-ee2e-4498-82cc-e1c79fbfe4cd/export {"uuid": "180f9fc5-ee2e-4498-82cc-e1c79fbfe4cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mltfjefcgr2h", "content": "CVE-2026-42281 - MagicMirror\u00b2: Unauthenticated SSRF via /cors endpoint\nCVE ID : CVE-2026-42281\n \n Published : May 14, 2026, 4:16 p.m. | 14\u00a0minutes ago\n \n Description : MagicMirror\u00b2 is an open source modular smart mirror platform. Prior to 2.36.0, an unauthenticated Server-Side...", "creation_timestamp": "2026-05-14T18:00:21.711965Z"} {"uuid": "180f9fc5-ee2e-4498-82cc-e1c79fbfe4cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mltfjefcgr2h", "content": "CVE-2026-42281 - MagicMirror\u00b2: Unauthenticated SSRF via /cors endpoint\nCVE ID : CVE-2026-42281\n \n Published : May 14, 2026, 4:16 p.m. | 14\u00a0minutes ago\n \n Description : MagicMirror\u00b2 is an open source modular smart mirror platform. Prior to 2.36.0, an unauthenticated Server-Side...", "creation_timestamp": "2026-05-14T18:00:21.711965Z"} https://vulnerability.circl.lu/sighting/180f9fc5-ee2e-4498-82cc-e1c79fbfe4cd/export Thu, 14 May 2026 18:00:21 +0000 https://vulnerability.circl.lu/sighting/b0f11730-cde0-442a-bab6-0fcdff0cae80/export {"uuid": "b0f11730-cde0-442a-bab6-0fcdff0cae80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "https://t.me/realcodeb0ss/425", "content": "https://nvd.nist.gov/vuln/detail/CVE-2026-42281\n\n\nFofa : \"MagicMirror\"\n\nShodan : 'http.title:\"MagicMirror\"'\n\n\nEnjoy;", "creation_timestamp": "2026-05-15T11:29:12.000000Z"} {"uuid": "b0f11730-cde0-442a-bab6-0fcdff0cae80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "https://t.me/realcodeb0ss/425", "content": "https://nvd.nist.gov/vuln/detail/CVE-2026-42281\n\n\nFofa : \"MagicMirror\"\n\nShodan : 'http.title:\"MagicMirror\"'\n\n\nEnjoy;", "creation_timestamp": "2026-05-15T11:29:12.000000Z"} https://vulnerability.circl.lu/sighting/b0f11730-cde0-442a-bab6-0fcdff0cae80/export Fri, 15 May 2026 11:29:12 +0000 https://vulnerability.circl.lu/sighting/f9954a55-4930-463e-b7d7-1530b2ef67d3/export {"uuid": "f9954a55-4930-463e-b7d7-1530b2ef67d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mmyf5hjzdo23", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42281 MagicMirror\u00b2\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nMagicMirror\u00b2\u306f\u30aa\u30fc\u30d7\u30f3\u30bd\u30fc\u30b9\u306e\u30e2\u30b8\u30e5\u30e9\u30fc\u578b\u30b9\u30de\u30fc\u30c8\u30df\u30e9\u30fc\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u3067\u3059\u3002\u30d0\u30fc\u30b8\u30e7\u30f32.36.0\u4ee5\u524d\u3067\u306f\u3001/cors\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u306b\u304a\u3044\u3066\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u30b5\u30fc\u30d0\u30fc\u30b5\u30a4\u30c9\u30ea\u30af\u30a8\u30b9\u30c8\u30d5\u30a9\u30fc\u30b8\u30a7\u30ea\uff08SSRF\uff09\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u3001", "creation_timestamp": "2026-05-29T11:02:26.824054Z"} {"uuid": "f9954a55-4930-463e-b7d7-1530b2ef67d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42281", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mmyf5hjzdo23", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-42281 MagicMirror\u00b2\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nMagicMirror\u00b2\u306f\u30aa\u30fc\u30d7\u30f3\u30bd\u30fc\u30b9\u306e\u30e2\u30b8\u30e5\u30e9\u30fc\u578b\u30b9\u30de\u30fc\u30c8\u30df\u30e9\u30fc\u30d7\u30e9\u30c3\u30c8\u30d5\u30a9\u30fc\u30e0\u3067\u3059\u3002\u30d0\u30fc\u30b8\u30e7\u30f32.36.0\u4ee5\u524d\u3067\u306f\u3001/cors\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u306b\u304a\u3044\u3066\u8a8d\u8a3c\u3055\u308c\u3066\u3044\u306a\u3044\u30b5\u30fc\u30d0\u30fc\u30b5\u30a4\u30c9\u30ea\u30af\u30a8\u30b9\u30c8\u30d5\u30a9\u30fc\u30b8\u30a7\u30ea\uff08SSRF\uff09\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u3001", "creation_timestamp": "2026-05-29T11:02:26.824054Z"} https://vulnerability.circl.lu/sighting/f9954a55-4930-463e-b7d7-1530b2ef67d3/export Fri, 29 May 2026 11:02:26 +0000