<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Thu, 02 Jul 2026 18:42:49 +0000</lastBuildDate>
    <item>
      <title>d7cef781-0a5f-42bd-aa83-c8f2943fd4f2</title>
      <link>https://vulnerability.circl.lu/sighting/d7cef781-0a5f-42bd-aa83-c8f2943fd4f2/export</link>
      <description>{"uuid": "d7cef781-0a5f-42bd-aa83-c8f2943fd4f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44691", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moledjigad2w", "content": "CVE-2026-44691 - Eclipse Theia Workspace Trust Bypass via Malicious Task Definitions\nCVE ID : CVE-2026-44691\n \n Published : June 18, 2026, 2:35 p.m. | 2\u00a0hours, 33\u00a0minutes ago\n \n Description : In Eclipse Theia versions prior to 1.69.0, custom task definitions in workspace files...", "creation_timestamp": "2026-06-18T17:33:28.892004Z"}</description>
      <content:encoded>{"uuid": "d7cef781-0a5f-42bd-aa83-c8f2943fd4f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44691", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moledjigad2w", "content": "CVE-2026-44691 - Eclipse Theia Workspace Trust Bypass via Malicious Task Definitions\nCVE ID : CVE-2026-44691\n \n Published : June 18, 2026, 2:35 p.m. | 2\u00a0hours, 33\u00a0minutes ago\n \n Description : In Eclipse Theia versions prior to 1.69.0, custom task definitions in workspace files...", "creation_timestamp": "2026-06-18T17:33:28.892004Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d7cef781-0a5f-42bd-aa83-c8f2943fd4f2/export</guid>
      <pubDate>Thu, 18 Jun 2026 17:33:28 +0000</pubDate>
    </item>
    <item>
      <title>20866e5b-1255-44f6-a5fc-1240e1a411b6</title>
      <link>https://vulnerability.circl.lu/sighting/20866e5b-1255-44f6-a5fc-1240e1a411b6/export</link>
      <description>{"uuid": "20866e5b-1255-44f6-a5fc-1240e1a411b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44694", "type": "seen", "source": "MISP/d511a704-eba2-411a-9543-41e0e130f522", "content": "", "creation_timestamp": "2026-06-15T17:02:31.000000Z"}</description>
      <content:encoded>{"uuid": "20866e5b-1255-44f6-a5fc-1240e1a411b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44694", "type": "seen", "source": "MISP/d511a704-eba2-411a-9543-41e0e130f522", "content": "", "creation_timestamp": "2026-06-15T17:02:31.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/20866e5b-1255-44f6-a5fc-1240e1a411b6/export</guid>
      <pubDate>Mon, 15 Jun 2026 17:02:31 +0000</pubDate>
    </item>
    <item>
      <title>69ec9402-b48d-4f12-a441-94eef0e8307b</title>
      <link>https://vulnerability.circl.lu/sighting/69ec9402-b48d-4f12-a441-94eef0e8307b/export</link>
      <description>{"uuid": "69ec9402-b48d-4f12-a441-94eef0e8307b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44693", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnybigf6cc2l", "content": "CVE-2026-44693 - Pi-hole FTL: Unauthenticated Session Hijacking via Race Condition on Global Session Buffer\nCVE ID : CVE-2026-44693\n \n Published : June 10, 2026, 11:16 p.m. | 2\u00a0hours, 48\u00a0minutes ago\n \n Description : Pi-hole FTL is the core engine of the Pi-hole network-level a...", "creation_timestamp": "2026-06-11T03:22:18.736509Z"}</description>
      <content:encoded>{"uuid": "69ec9402-b48d-4f12-a441-94eef0e8307b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44693", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnybigf6cc2l", "content": "CVE-2026-44693 - Pi-hole FTL: Unauthenticated Session Hijacking via Race Condition on Global Session Buffer\nCVE ID : CVE-2026-44693\n \n Published : June 10, 2026, 11:16 p.m. | 2\u00a0hours, 48\u00a0minutes ago\n \n Description : Pi-hole FTL is the core engine of the Pi-hole network-level a...", "creation_timestamp": "2026-06-11T03:22:18.736509Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/69ec9402-b48d-4f12-a441-94eef0e8307b/export</guid>
      <pubDate>Thu, 11 Jun 2026 03:22:18 +0000</pubDate>
    </item>
    <item>
      <title>001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5</title>
      <link>https://vulnerability.circl.lu/sighting/001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5/export</link>
      <description>{"uuid": "001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44693", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mny4xbjy4l27", "content": "\ud83d\udfe0 CVE-2026-44693 - High (8.8)\n\nPi-hole FTL is the core engine of the Pi-hole network-level advertisement and tracker blocker. Pr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44693/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T02:00:47.737482Z"}</description>
      <content:encoded>{"uuid": "001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44693", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mny4xbjy4l27", "content": "\ud83d\udfe0 CVE-2026-44693 - High (8.8)\n\nPi-hole FTL is the core engine of the Pi-hole network-level advertisement and tracker blocker. Pr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44693/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-11T02:00:47.737482Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/001b5a0b-de5b-4cc9-9e6e-d98dcb9a69e5/export</guid>
      <pubDate>Thu, 11 Jun 2026 02:00:47 +0000</pubDate>
    </item>
    <item>
      <title>139eabff-58b3-40ec-9f0f-e4f9df32512a</title>
      <link>https://vulnerability.circl.lu/sighting/139eabff-58b3-40ec-9f0f-e4f9df32512a/export</link>
      <description>{"uuid": "139eabff-58b3-40ec-9f0f-e4f9df32512a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44697", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3tqk5jf325", "content": "\ud83d\udfe0 CVE-2026-44697 - High (8.6)\n\nKlever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17, a remote, ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44697/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T20:01:25.314533Z"}</description>
      <content:encoded>{"uuid": "139eabff-58b3-40ec-9f0f-e4f9df32512a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44697", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mn3tqk5jf325", "content": "\ud83d\udfe0 CVE-2026-44697 - High (8.6)\n\nKlever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17, a remote, ...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44697/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-30T20:01:25.314533Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/139eabff-58b3-40ec-9f0f-e4f9df32512a/export</guid>
      <pubDate>Sat, 30 May 2026 20:01:25 +0000</pubDate>
    </item>
    <item>
      <title>d7dffa2c-e4e7-41e2-b210-07fcf460cd92</title>
      <link>https://vulnerability.circl.lu/sighting/d7dffa2c-e4e7-41e2-b210-07fcf460cd92/export</link>
      <description>{"uuid": "d7dffa2c-e4e7-41e2-b210-07fcf460cd92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44697", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzdjdvunn2h", "content": "CVE-2026-44697 - Klever-Go MultiDataInterceptor: remote OOM via crafted compressed P2P payload\nCVE ID : CVE-2026-44697\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Klever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17...", "creation_timestamp": "2026-05-29T20:05:43.706081Z"}</description>
      <content:encoded>{"uuid": "d7dffa2c-e4e7-41e2-b210-07fcf460cd92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44697", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmzdjdvunn2h", "content": "CVE-2026-44697 - Klever-Go MultiDataInterceptor: remote OOM via crafted compressed P2P payload\nCVE ID : CVE-2026-44697\n \n Published : May 29, 2026, 6:17 p.m. | 54\u00a0minutes ago\n \n Description : Klever-Go is the Go implementation of the Klever blockchain protocol. Prior to 1.7.17...", "creation_timestamp": "2026-05-29T20:05:43.706081Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d7dffa2c-e4e7-41e2-b210-07fcf460cd92/export</guid>
      <pubDate>Fri, 29 May 2026 20:05:43 +0000</pubDate>
    </item>
    <item>
      <title>d790b424-0d08-4f77-bf80-fd457d56cc9d</title>
      <link>https://vulnerability.circl.lu/sighting/d790b424-0d08-4f77-bf80-fd457d56cc9d/export</link>
      <description>{"uuid": "d790b424-0d08-4f77-bf80-fd457d56cc9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44698", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmywtjjgs62e", "content": "CVE-2026-44698 - Home Assistant: Cross-origin iframe access token exfiltration via WebView JS bridge callback injection\nCVE ID : CVE-2026-44698\n \n Published : May 29, 2026, 2:16 p.m. | 55\u00a0minutes ago\n \n Description : Home Assistant is open source home automation software that ...", "creation_timestamp": "2026-05-29T16:18:46.571368Z"}</description>
      <content:encoded>{"uuid": "d790b424-0d08-4f77-bf80-fd457d56cc9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44698", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmywtjjgs62e", "content": "CVE-2026-44698 - Home Assistant: Cross-origin iframe access token exfiltration via WebView JS bridge callback injection\nCVE ID : CVE-2026-44698\n \n Published : May 29, 2026, 2:16 p.m. | 55\u00a0minutes ago\n \n Description : Home Assistant is open source home automation software that ...", "creation_timestamp": "2026-05-29T16:18:46.571368Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d790b424-0d08-4f77-bf80-fd457d56cc9d/export</guid>
      <pubDate>Fri, 29 May 2026 16:18:46 +0000</pubDate>
    </item>
    <item>
      <title>126e531b-6228-42f3-a358-47f4259e01cc</title>
      <link>https://vulnerability.circl.lu/sighting/126e531b-6228-42f3-a358-47f4259e01cc/export</link>
      <description>{"uuid": "126e531b-6228-42f3-a358-47f4259e01cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44698", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmysjlmepp2v", "content": "\ud83d\udfe0 CVE-2026-44698 - High (8.3)\n\nHome Assistant is open source home automation software that puts local control and privacy first....\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44698/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-29T15:01:38.809254Z"}</description>
      <content:encoded>{"uuid": "126e531b-6228-42f3-a358-47f4259e01cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44698", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmysjlmepp2v", "content": "\ud83d\udfe0 CVE-2026-44698 - High (8.3)\n\nHome Assistant is open source home automation software that puts local control and privacy first....\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44698/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-29T15:01:38.809254Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/126e531b-6228-42f3-a358-47f4259e01cc/export</guid>
      <pubDate>Fri, 29 May 2026 15:01:38 +0000</pubDate>
    </item>
    <item>
      <title>c0b80133-642f-4d24-8429-d793fe64f886</title>
      <link>https://vulnerability.circl.lu/sighting/c0b80133-642f-4d24-8429-d793fe64f886/export</link>
      <description>{"uuid": "c0b80133-642f-4d24-8429-d793fe64f886", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44697", "type": "published-proof-of-concept", "source": "https://github.com/klever-io/klever-go/security/advisories/GHSA-87m7-qffr-542v", "content": "", "creation_timestamp": "2026-05-11T19:17:38.000000Z"}</description>
      <content:encoded>{"uuid": "c0b80133-642f-4d24-8429-d793fe64f886", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44697", "type": "published-proof-of-concept", "source": "https://github.com/klever-io/klever-go/security/advisories/GHSA-87m7-qffr-542v", "content": "", "creation_timestamp": "2026-05-11T19:17:38.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c0b80133-642f-4d24-8429-d793fe64f886/export</guid>
      <pubDate>Mon, 11 May 2026 19:17:38 +0000</pubDate>
    </item>
    <item>
      <title>6845e869-ab0b-473e-96f2-564e24488e4b</title>
      <link>https://vulnerability.circl.lu/sighting/6845e869-ab0b-473e-96f2-564e24488e4b/export</link>
      <description>{"uuid": "6845e869-ab0b-473e-96f2-564e24488e4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44694", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mletkureqe2q", "content": "CVE-2026-44694 - n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client paths\nCVE ID : CVE-2026-44694\n \n Published : May 8, 2026, 8:16 p.m. | 2\u00a0hours, 9\u00a0minutes ago\n \n Description : n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, p...", "creation_timestamp": "2026-05-08T23:01:48.615359Z"}</description>
      <content:encoded>{"uuid": "6845e869-ab0b-473e-96f2-564e24488e4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44694", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mletkureqe2q", "content": "CVE-2026-44694 - n8n-MCP: Authenticated SSRF in n8n-mcp webhook and API client paths\nCVE ID : CVE-2026-44694\n \n Published : May 8, 2026, 8:16 p.m. | 2\u00a0hours, 9\u00a0minutes ago\n \n Description : n8n-MCP is an MCP server that provides AI assistants access to n8n node documentation, p...", "creation_timestamp": "2026-05-08T23:01:48.615359Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6845e869-ab0b-473e-96f2-564e24488e4b/export</guid>
      <pubDate>Fri, 08 May 2026 23:01:48 +0000</pubDate>
    </item>
  </channel>
</rss>
