https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 20 Jun 2026 01:34:51 +0000 https://vulnerability.circl.lu/sighting/ccf03284-4665-4a34-a385-395aec8c4c52/export {"uuid": "ccf03284-4665-4a34-a385-395aec8c4c52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33593", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mk4c5yqvhb2l", "content": "", "creation_timestamp": "2026-04-22T20:03:54.324489Z"} {"uuid": "ccf03284-4665-4a34-a385-395aec8c4c52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33593", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mk4c5yqvhb2l", "content": "", "creation_timestamp": "2026-04-22T20:03:54.324489Z"} https://vulnerability.circl.lu/sighting/ccf03284-4665-4a34-a385-395aec8c4c52/export Wed, 22 Apr 2026 20:03:54 +0000 https://vulnerability.circl.lu/sighting/f8420aeb-c957-4829-b8e6-9ae6e6745805/export {"uuid": "f8420aeb-c957-4829-b8e6-9ae6e6745805", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3ml3yjbghkb27", "content": "WordPress\u30d7\u30e9\u30b0\u30a4\u30f3\u300cForm Maker by 10Web\u300d1.15.42\u4ee5\u524d\u3067\u3001SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u3002\u653b\u6483\u8005\u306f\u30c7\u30fc\u30bf\u30d9\u30fc\u30b9\u304b\u3089\u6a5f\u5bc6\u60c5\u5831\u3092\u4e0d\u6b63\u306b\u53d6\u5f97\u3067\u304d\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u3002\nCVE-2026-3359 CVSS 7.5 | HIGH", "creation_timestamp": "2026-05-05T10:36:28.992440Z"} {"uuid": "f8420aeb-c957-4829-b8e6-9ae6e6745805", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3ml3yjbghkb27", "content": "WordPress\u30d7\u30e9\u30b0\u30a4\u30f3\u300cForm Maker by 10Web\u300d1.15.42\u4ee5\u524d\u3067\u3001SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u3002\u653b\u6483\u8005\u306f\u30c7\u30fc\u30bf\u30d9\u30fc\u30b9\u304b\u3089\u6a5f\u5bc6\u60c5\u5831\u3092\u4e0d\u6b63\u306b\u53d6\u5f97\u3067\u304d\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u3002\nCVE-2026-3359 CVSS 7.5 | HIGH", "creation_timestamp": "2026-05-05T10:36:28.992440Z"} https://vulnerability.circl.lu/sighting/f8420aeb-c957-4829-b8e6-9ae6e6745805/export Tue, 05 May 2026 10:36:28 +0000 https://vulnerability.circl.lu/sighting/3cf78729-cd78-4c70-b096-30aa69342cf0/export {"uuid": "3cf78729-cd78-4c70-b096-30aa69342cf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml422qsgql2c", "content": "CVE-2026-3359 - Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact Form Builder\nCVE ID : CVE-2026-3359\n \n Published : May 5, 2026, 7:42 a.m. | 53\u00a0minutes ago\n \n Description : The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordP...", "creation_timestamp": "2026-05-05T11:04:06.687794Z"} {"uuid": "3cf78729-cd78-4c70-b096-30aa69342cf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ml422qsgql2c", "content": "CVE-2026-3359 - Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact Form Builder\nCVE ID : CVE-2026-3359\n \n Published : May 5, 2026, 7:42 a.m. | 53\u00a0minutes ago\n \n Description : The Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordP...", "creation_timestamp": "2026-05-05T11:04:06.687794Z"} https://vulnerability.circl.lu/sighting/3cf78729-cd78-4c70-b096-30aa69342cf0/export Tue, 05 May 2026 11:04:06 +0000 https://vulnerability.circl.lu/sighting/144342e8-55c4-4ab7-ac40-fd786caf7052/export {"uuid": "144342e8-55c4-4ab7-ac40-fd786caf7052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml4vbadouw26", "content": "\ud83d\udfe0 CVE-2026-3359 - High (7.5)\n\nThe Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-3359/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-05T19:10:55.595234Z"} {"uuid": "144342e8-55c4-4ab7-ac40-fd786caf7052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3ml4vbadouw26", "content": "\ud83d\udfe0 CVE-2026-3359 - High (7.5)\n\nThe Form Maker by 10Web \u2013 Mobile-Friendly Drag & Drop Contact Form Builder plugin for WordPress...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-3359/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-05T19:10:55.595234Z"} https://vulnerability.circl.lu/sighting/144342e8-55c4-4ab7-ac40-fd786caf7052/export Tue, 05 May 2026 19:10:55 +0000 https://vulnerability.circl.lu/sighting/7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd/export {"uuid": "7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3ml5d7yvx2m2s", "content": "CVE-2026-3359: SQL Injection en Form Maker sin auth\n\nCVE-2026-3359 es una SQL Injection sin autenticaci\u00f3n en Form Maker by 10Web (hasta v1.15.42). Actualiz\u00e1 ya y proteg\u00e9 tu base de datos WordPress.\n\n#cve20263359 #sqlinjection #formmaker10web #wordpressvulnerabilidad", "creation_timestamp": "2026-05-05T23:20:46.432906Z"} {"uuid": "7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/donwebmedia.bsky.social/post/3ml5d7yvx2m2s", "content": "CVE-2026-3359: SQL Injection en Form Maker sin auth\n\nCVE-2026-3359 es una SQL Injection sin autenticaci\u00f3n en Form Maker by 10Web (hasta v1.15.42). Actualiz\u00e1 ya y proteg\u00e9 tu base de datos WordPress.\n\n#cve20263359 #sqlinjection #formmaker10web #wordpressvulnerabilidad", "creation_timestamp": "2026-05-05T23:20:46.432906Z"} https://vulnerability.circl.lu/sighting/7fbdba3e-60a4-419d-b1b5-0b0e3e9f1bdd/export Tue, 05 May 2026 23:20:46 +0000 https://vulnerability.circl.lu/sighting/41068a4e-8984-4064-845a-726c75ed3395/export {"uuid": "41068a4e-8984-4064-845a-726c75ed3395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mm4rax4irf2j", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-3359 10Web\u306eForm\u00a0Maker\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nCVE-2026-3359\u306f\u3001WordPress\u7528\u306eForm Maker\u30d7\u30e9\u30b0\u30a4\u30f3\u306b\u304a\u3044\u3066\u3001'inputs'\u30d1\u30e9\u30e1\u30fc\u30bf\u3092\u901a\u3058\u3066SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u307e\u3059\u3002", "creation_timestamp": "2026-05-18T11:24:21.870635Z"} {"uuid": "41068a4e-8984-4064-845a-726c75ed3395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3359", "type": "seen", "source": "https://bsky.app/profile/keiwork35.bsky.social/post/3mm4rax4irf2j", "content": "\u3010\u8106\u5f31\u6027\u60c5\u5831\u3011 CVE-2026-3359 10Web\u306eForm\u00a0Maker\u306e\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\n\nCVE-2026-3359\u306f\u3001WordPress\u7528\u306eForm Maker\u30d7\u30e9\u30b0\u30a4\u30f3\u306b\u304a\u3044\u3066\u3001'inputs'\u30d1\u30e9\u30e1\u30fc\u30bf\u3092\u901a\u3058\u3066SQL\u30a4\u30f3\u30b8\u30a7\u30af\u30b7\u30e7\u30f3\u306e\u8106\u5f31\u6027\u304c\u5b58\u5728\u3057\u307e\u3059\u3002", "creation_timestamp": "2026-05-18T11:24:21.870635Z"} https://vulnerability.circl.lu/sighting/41068a4e-8984-4064-845a-726c75ed3395/export Mon, 18 May 2026 11:24:21 +0000 https://vulnerability.circl.lu/sighting/d8db5e0e-8644-4475-b7e6-8c29c2915844/export {"uuid": "d8db5e0e-8644-4475-b7e6-8c29c2915844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwydw5s2c2n", "content": "CVE-2026-33590 - Insecure default permissions in Portainer CE\nCVE ID : CVE-2026-33590\n \n Published : May 28, 2026, 8:16 p.m. | 15\u00a0minutes ago\n \n Description : Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access...", "creation_timestamp": "2026-05-28T21:40:30.883093Z"} {"uuid": "d8db5e0e-8644-4475-b7e6-8c29c2915844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmwydw5s2c2n", "content": "CVE-2026-33590 - Insecure default permissions in Portainer CE\nCVE ID : CVE-2026-33590\n \n Published : May 28, 2026, 8:16 p.m. | 15\u00a0minutes ago\n \n Description : Insecure default settings of Portainer CE grant regular (non-admin) users privileges that allow host filesystem access...", "creation_timestamp": "2026-05-28T21:40:30.883093Z"} https://vulnerability.circl.lu/sighting/d8db5e0e-8644-4475-b7e6-8c29c2915844/export Thu, 28 May 2026 21:40:30 +0000 https://vulnerability.circl.lu/sighting/16562ade-e5f4-4678-8ff2-ccd4c5d0501b/export {"uuid": "16562ade-e5f4-4678-8ff2-ccd4c5d0501b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rd3yvp72n", "content": "CVE-2026-33590: Insecure default settings of Portainer", "creation_timestamp": "2026-06-12T12:43:17.535729Z"} {"uuid": "16562ade-e5f4-4678-8ff2-ccd4c5d0501b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mo3rd3yvp72n", "content": "CVE-2026-33590: Insecure default settings of Portainer", "creation_timestamp": "2026-06-12T12:43:17.535729Z"} https://vulnerability.circl.lu/sighting/16562ade-e5f4-4678-8ff2-ccd4c5d0501b/export Fri, 12 Jun 2026 12:43:17 +0000 https://vulnerability.circl.lu/sighting/c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974/export {"uuid": "c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moel7rztfz2x", "content": "Portainer versions before 2.38.0 allowed bind mounts and privileged mode on user containers by default, letting an authenticated non-admin escalate to root-equivalent host access (CVE-2026-33590). Fixes are in 2.38.0 STS and 2.39.0 LTS. Should privileged mode ever default to on?\n#containers", "creation_timestamp": "2026-06-16T00:48:01.853589Z"} {"uuid": "c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moel7rztfz2x", "content": "Portainer versions before 2.38.0 allowed bind mounts and privileged mode on user containers by default, letting an authenticated non-admin escalate to root-equivalent host access (CVE-2026-33590). Fixes are in 2.38.0 STS and 2.39.0 LTS. Should privileged mode ever default to on?\n#containers", "creation_timestamp": "2026-06-16T00:48:01.853589Z"} https://vulnerability.circl.lu/sighting/c882dcd2-1cf7-4fdf-90a9-fd39b5dcc974/export Tue, 16 Jun 2026 00:48:01 +0000 https://vulnerability.circl.lu/sighting/aa014640-b30e-4367-acb8-3790ff3dc404/export {"uuid": "aa014640-b30e-4367-acb8-3790ff3dc404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moeo4rr6a32c", "content": "The Portainer host-takeover flaw (CVE-2026-33590) hits anyone running a shared instance: any authenticated non-admin from before 2.38.0 could reach root-equivalent host access through default-allowed bind mounts and privileged mode. Upgrade now. Who has non-admin logins on your setup?\n#security", "creation_timestamp": "2026-06-16T01:40:01.950018Z"} {"uuid": "aa014640-b30e-4367-acb8-3790ff3dc404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-33590", "type": "seen", "source": "https://bsky.app/profile/canartuc.com/post/3moeo4rr6a32c", "content": "The Portainer host-takeover flaw (CVE-2026-33590) hits anyone running a shared instance: any authenticated non-admin from before 2.38.0 could reach root-equivalent host access through default-allowed bind mounts and privileged mode. Upgrade now. Who has non-admin logins on your setup?\n#security", "creation_timestamp": "2026-06-16T01:40:01.950018Z"} https://vulnerability.circl.lu/sighting/aa014640-b30e-4367-acb8-3790ff3dc404/export Tue, 16 Jun 2026 01:40:01 +0000