<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 08 Jul 2026 21:41:45 +0000</lastBuildDate>
    <item>
      <title>82e8d91e-367b-403c-9659-ae491bf72a9c</title>
      <link>https://vulnerability.circl.lu/sighting/82e8d91e-367b-403c-9659-ae491bf72a9c/export</link>
      <description>{"uuid": "82e8d91e-367b-403c-9659-ae491bf72a9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq5cc7qxcu2h", "content": "CVE-2026-11405 - firmware\nThe Apache HTTP Server has a hidden login backdoor that allows anyone to gain admin access by entering the correct password. This backdoor is not protected by a username, so any\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#firmware #tenda #CVE #infosec", "creation_timestamp": "2026-07-08T14:10:04.757799Z"}</description>
      <content:encoded>{"uuid": "82e8d91e-367b-403c-9659-ae491bf72a9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq5cc7qxcu2h", "content": "CVE-2026-11405 - firmware\nThe Apache HTTP Server has a hidden login backdoor that allows anyone to gain admin access by entering the correct password. This backdoor is not protected by a username, so any\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#firmware #tenda #CVE #infosec", "creation_timestamp": "2026-07-08T14:10:04.757799Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/82e8d91e-367b-403c-9659-ae491bf72a9c/export</guid>
      <pubDate>Wed, 08 Jul 2026 14:10:04 +0000</pubDate>
    </item>
    <item>
      <title>1af6fd99-29d5-428a-b8bc-b3eafe849c77</title>
      <link>https://vulnerability.circl.lu/sighting/1af6fd99-29d5-428a-b8bc-b3eafe849c77/export</link>
      <description>{"uuid": "1af6fd99-29d5-428a-b8bc-b3eafe849c77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mq4yiik34i2x", "content": "Heads up, Tenda router users! A critical firmware flaw (CVE-2026-11405) acts as a hardcoded backdoor, granting full admin access to anyone with the secret password. Tenda is unresponsive, so you need to act: disable remote web\u2026\n\nhttps://www.tpp.blog/qbatp8a\n\n#cybersecurity #tenda #firmware", "creation_timestamp": "2026-07-08T11:14:38.784860Z"}</description>
      <content:encoded>{"uuid": "1af6fd99-29d5-428a-b8bc-b3eafe849c77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/pixelsandpulse.bsky.social/post/3mq4yiik34i2x", "content": "Heads up, Tenda router users! A critical firmware flaw (CVE-2026-11405) acts as a hardcoded backdoor, granting full admin access to anyone with the secret password. Tenda is unresponsive, so you need to act: disable remote web\u2026\n\nhttps://www.tpp.blog/qbatp8a\n\n#cybersecurity #tenda #firmware", "creation_timestamp": "2026-07-08T11:14:38.784860Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1af6fd99-29d5-428a-b8bc-b3eafe849c77/export</guid>
      <pubDate>Wed, 08 Jul 2026 11:14:38 +0000</pubDate>
    </item>
    <item>
      <title>78f12940-de58-43fd-9cf7-8ec16d49e60d</title>
      <link>https://vulnerability.circl.lu/sighting/78f12940-de58-43fd-9cf7-8ec16d49e60d/export</link>
      <description>{"uuid": "78f12940-de58-43fd-9cf7-8ec16d49e60d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mq4faxiw3n2s", "content": "Multiple Tenda router models contain an undocumented authentication backdoor, tracked as CVE-2026-11405, allowing attackers to bypass password checks for full administrative access. As no patch exists, users should disable remote management to mitigate risks.", "creation_timestamp": "2026-07-08T05:30:23.890232Z"}</description>
      <content:encoded>{"uuid": "78f12940-de58-43fd-9cf7-8ec16d49e60d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mq4faxiw3n2s", "content": "Multiple Tenda router models contain an undocumented authentication backdoor, tracked as CVE-2026-11405, allowing attackers to bypass password checks for full administrative access. As no patch exists, users should disable remote management to mitigate risks.", "creation_timestamp": "2026-07-08T05:30:23.890232Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/78f12940-de58-43fd-9cf7-8ec16d49e60d/export</guid>
      <pubDate>Wed, 08 Jul 2026 05:30:23 +0000</pubDate>
    </item>
    <item>
      <title>f7e41a2e-1cb8-4be7-be04-771820b71313</title>
      <link>https://vulnerability.circl.lu/sighting/f7e41a2e-1cb8-4be7-be04-771820b71313/export</link>
      <description>{"uuid": "f7e41a2e-1cb8-4be7-be04-771820b71313", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mq4a7we3t42s", "content": "Tenda router firmware has an undocumented admin backdoor (CVE-2026-11405) in some releases. Check for affected firmware and update to fixed versions. #Cybersecurity #Vulnerability #IdentitySecurity\n\nSource: https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "creation_timestamp": "2026-07-08T04:00:20.966186Z"}</description>
      <content:encoded>{"uuid": "f7e41a2e-1cb8-4be7-be04-771820b71313", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mq4a7we3t42s", "content": "Tenda router firmware has an undocumented admin backdoor (CVE-2026-11405) in some releases. Check for affected firmware and update to fixed versions. #Cybersecurity #Vulnerability #IdentitySecurity\n\nSource: https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "creation_timestamp": "2026-07-08T04:00:20.966186Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f7e41a2e-1cb8-4be7-be04-771820b71313/export</guid>
      <pubDate>Wed, 08 Jul 2026 04:00:20 +0000</pubDate>
    </item>
    <item>
      <title>3f663e74-137d-4bcd-b7fc-2d5475fbf558</title>
      <link>https://vulnerability.circl.lu/sighting/3f663e74-137d-4bcd-b7fc-2d5475fbf558/export</link>
      <description>{"uuid": "3f663e74-137d-4bcd-b7fc-2d5475fbf558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11405", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mq43qk72d62d", "content": "\ud83d\udcf0 Backdoor Tersembunyi Ditemukan di Firmware Router Tenda, Bisa Berikan Akses Admin Tanpa Kredensial\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/08/backdoor-firmware-router-tenda-cve-2026-11405/\n\n#cve #cve-2026-11405 #cybersecurity #firmware #jaringan #keamananSiber #network", "creation_timestamp": "2026-07-08T02:40:09.374763Z"}</description>
      <content:encoded>{"uuid": "3f663e74-137d-4bcd-b7fc-2d5475fbf558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11405", "type": "seen", "source": "https://bsky.app/profile/ahmandonk.bsky.social/post/3mq43qk72d62d", "content": "\ud83d\udcf0 Backdoor Tersembunyi Ditemukan di Firmware Router Tenda, Bisa Berikan Akses Admin Tanpa Kredensial\n\n\ud83d\udc49 Baca artikel lengkap di sini: https://ahmandonk.com/2026/07/08/backdoor-firmware-router-tenda-cve-2026-11405/\n\n#cve #cve-2026-11405 #cybersecurity #firmware #jaringan #keamananSiber #network", "creation_timestamp": "2026-07-08T02:40:09.374763Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3f663e74-137d-4bcd-b7fc-2d5475fbf558/export</guid>
      <pubDate>Wed, 08 Jul 2026 02:40:09 +0000</pubDate>
    </item>
    <item>
      <title>842edad1-bbec-4739-8ec3-38842b8239b7</title>
      <link>https://vulnerability.circl.lu/sighting/842edad1-bbec-4739-8ec3-38842b8239b7/export</link>
      <description>{"uuid": "842edad1-bbec-4739-8ec3-38842b8239b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "content": "Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication backdoor that enables administrative access to the devices' web management interfaces, the CERT Coordination Center (CERT/CC) warned Monday.\n\n\"An attacker can exploit this vulnerability, tracked as CVE-2026-11405, to bypass the password verification process", "creation_timestamp": "2026-07-08T01:00:53.958215Z"}</description>
      <content:encoded>{"uuid": "842edad1-bbec-4739-8ec3-38842b8239b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "content": "Several versions of firmware released by Chinese network device manufacturer Tenda have been found to embed an undocumented authentication backdoor that enables administrative access to the devices' web management interfaces, the CERT Coordination Center (CERT/CC) warned Monday.\n\n\"An attacker can exploit this vulnerability, tracked as CVE-2026-11405, to bypass the password verification process", "creation_timestamp": "2026-07-08T01:00:53.958215Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/842edad1-bbec-4739-8ec3-38842b8239b7/export</guid>
      <pubDate>Wed, 08 Jul 2026 01:00:53 +0000</pubDate>
    </item>
    <item>
      <title>a933d473-7626-460a-8cfd-1986f768240a</title>
      <link>https://vulnerability.circl.lu/sighting/a933d473-7626-460a-8cfd-1986f768240a/export</link>
      <description>{"uuid": "a933d473-7626-460a-8cfd-1986f768240a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mq3ffmr5dj22", "content": "Tenda router firmware: CERT/CC warns of hidden admin backdoor (CVE-2026-11405). Check your model/firmware for affected versions and update imm\u2026 #Cybersecurity #Vulnerability #IdentitySecurity\n\nSource: https://threatbeat.com/adversaries/cert-cc-warns-of-hidden-admin-backdoor-in-tenda-router-firmware/", "creation_timestamp": "2026-07-07T20:00:21.956184Z"}</description>
      <content:encoded>{"uuid": "a933d473-7626-460a-8cfd-1986f768240a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/iberianm.bsky.social/post/3mq3ffmr5dj22", "content": "Tenda router firmware: CERT/CC warns of hidden admin backdoor (CVE-2026-11405). Check your model/firmware for affected versions and update imm\u2026 #Cybersecurity #Vulnerability #IdentitySecurity\n\nSource: https://threatbeat.com/adversaries/cert-cc-warns-of-hidden-admin-backdoor-in-tenda-router-firmware/", "creation_timestamp": "2026-07-07T20:00:21.956184Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a933d473-7626-460a-8cfd-1986f768240a/export</guid>
      <pubDate>Tue, 07 Jul 2026 20:00:21 +0000</pubDate>
    </item>
    <item>
      <title>12f33d1a-9677-4456-880e-c2fc52dc7fbd</title>
      <link>https://vulnerability.circl.lu/sighting/12f33d1a-9677-4456-880e-c2fc52dc7fbd/export</link>
      <description>{"uuid": "12f33d1a-9677-4456-880e-c2fc52dc7fbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mq3ekurolb2s", "content": "Hidden backdoor in Tenda router firmware can grant admin access after a failed login, using a special plaintext password. CVE-2026-11405 affects multiple models. #Tenda #CVE202611405 #CERTCC", "creation_timestamp": "2026-07-07T19:45:23.481822Z"}</description>
      <content:encoded>{"uuid": "12f33d1a-9677-4456-880e-c2fc52dc7fbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mq3ekurolb2s", "content": "Hidden backdoor in Tenda router firmware can grant admin access after a failed login, using a special plaintext password. CVE-2026-11405 affects multiple models. #Tenda #CVE202611405 #CERTCC", "creation_timestamp": "2026-07-07T19:45:23.481822Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/12f33d1a-9677-4456-880e-c2fc52dc7fbd/export</guid>
      <pubDate>Tue, 07 Jul 2026 19:45:23 +0000</pubDate>
    </item>
    <item>
      <title>59e6667d-cccd-469d-b47d-bb3d2e46c3ef</title>
      <link>https://vulnerability.circl.lu/sighting/59e6667d-cccd-469d-b47d-bb3d2e46c3ef/export</link>
      <description>{"uuid": "59e6667d-cccd-469d-b47d-bb3d2e46c3ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11405", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/116879305053736895", "content": "\u203c\ufe0f New Dark Web Informer Blog Post!\nTitle: When the Password Check Fails, You're In: The Hidden Admin Backdoor in Tenda Router Firmware (CVE-2026-11405)\nLink: https://darkwebinformer.com/when-the-password-check-fails-youre-in-the-hidden-admin-backdoor-in-tenda-router-firmware-cve-2026-11405/", "creation_timestamp": "2026-07-07T15:04:22.054924Z"}</description>
      <content:encoded>{"uuid": "59e6667d-cccd-469d-b47d-bb3d2e46c3ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-11405", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/116879305053736895", "content": "\u203c\ufe0f New Dark Web Informer Blog Post!\nTitle: When the Password Check Fails, You're In: The Hidden Admin Backdoor in Tenda Router Firmware (CVE-2026-11405)\nLink: https://darkwebinformer.com/when-the-password-check-fails-youre-in-the-hidden-admin-backdoor-in-tenda-router-firmware-cve-2026-11405/", "creation_timestamp": "2026-07-07T15:04:22.054924Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/59e6667d-cccd-469d-b47d-bb3d2e46c3ef/export</guid>
      <pubDate>Tue, 07 Jul 2026 15:04:22 +0000</pubDate>
    </item>
    <item>
      <title>fd4458bd-8b09-43c6-9be0-ac69ac217d0b</title>
      <link>https://vulnerability.circl.lu/sighting/fd4458bd-8b09-43c6-9be0-ac69ac217d0b/export</link>
      <description>{"uuid": "fd4458bd-8b09-43c6-9be0-ac69ac217d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "content": "", "creation_timestamp": "2026-07-07T09:47:19.524240Z"}</description>
      <content:encoded>{"uuid": "fd4458bd-8b09-43c6-9be0-ac69ac217d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2026-11405", "type": "seen", "source": "https://thehackernews.com/2026/07/certcc-warns-of-hidden-admin-backdoor.html", "content": "", "creation_timestamp": "2026-07-07T09:47:19.524240Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/fd4458bd-8b09-43c6-9be0-ac69ac217d0b/export</guid>
      <pubDate>Tue, 07 Jul 2026 09:47:19 +0000</pubDate>
    </item>
  </channel>
</rss>
