https://vulnerability.circl.lu/sightings/feed 2026-06-20T09:05:15.141477+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f184255e-657a-48d7-8ae9-7ab91f28cc9b/export 2026-06-20T09:05:15.157731+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f184255e-657a-48d7-8ae9-7ab91f28cc9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-34908", "type": "seen", "source": "https://bsky.app/profile/cyberveille-ch.bsky.social/post/3mnsmvnetss2e", "content": "\ud83d\udce2 RCE non authentifi\u00e9e sur UniFi OS Server : cha\u00eene de vuln\u00e9rabilit\u00e9s CVSS 10.0 (CVE-2026-34908/09/10)\n\ud83d\udcdd ## \ud83d\udd0d Contexte\n\nLe 5 juin 20\u2026\nhttps://cyberveille.ch/posts/2026-06-08-rce-non-authentifiee-sur-unifi-os-server-chaine-de-vulnerabilites-cvss-10-0-cve-2026-34908-09-10/ #CVE_2026_33000 #Cyberveille", "creation_timestamp": "2026-06-08T21:30:13.368588Z"} 2026-06-08T21:30:13.368588+00:00 https://vulnerability.circl.lu/sighting/151de027-0659-4671-ac65-c81f953afdd6/export 2026-06-20T09:05:15.157635+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "151de027-0659-4671-ac65-c81f953afdd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34905", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mntp3uzupp2m", "content": "CVE-2026-34905: Apache Answer: Unlisted Questions Accessible via Direct API Access", "creation_timestamp": "2026-06-09T07:42:09.950792Z"} 2026-06-09T07:42:09.950792+00:00 https://vulnerability.circl.lu/sighting/b17c8ad4-bf73-4ed7-8e6e-12728659b0b6/export 2026-06-20T09:05:15.157522+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b17c8ad4-bf73-4ed7-8e6e-12728659b0b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/116719977777948801", "content": "The security issues are tracked as CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910. They have been addressed in May and impact UniFi OS Server versions 5.0.6 and earlier. https://www.bleepingcomputer.com/news/security/critical-unifi-os-bug-lets-hackers-gain-root-without-authentication/", "creation_timestamp": "2026-06-09T11:45:20.896392Z"} 2026-06-09T11:45:20.896392+00:00 https://vulnerability.circl.lu/sighting/c09dd812-fa61-4898-ba8b-93a8e3adef35/export 2026-06-20T09:05:15.157447+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c09dd812-fa61-4898-ba8b-93a8e3adef35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34909", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/116719977777948801", "content": "The security issues are tracked as CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910. They have been addressed in May and impact UniFi OS Server versions 5.0.6 and earlier. https://www.bleepingcomputer.com/news/security/critical-unifi-os-bug-lets-hackers-gain-root-without-authentication/", "creation_timestamp": "2026-06-09T11:45:21.061604Z"} 2026-06-09T11:45:21.061604+00:00 https://vulnerability.circl.lu/sighting/d0018ceb-ff28-4231-b8ab-1b94293bb032/export 2026-06-20T09:05:15.157361+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d0018ceb-ff28-4231-b8ab-1b94293bb032", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3mnu4pot3nk2c", "content": "The security issues are tracked as CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910. They have been addressed in May and impact UniFi OS Server versions 5.0.6 and earlier. www.bleepingcomputer.com/news/securit...", "creation_timestamp": "2026-06-09T11:45:54.671903Z"} 2026-06-09T11:45:54.671903+00:00 https://vulnerability.circl.lu/sighting/b09ea98a-babf-437c-a519-5e3f8d2fcee4/export 2026-06-20T09:05:15.157259+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b09ea98a-babf-437c-a519-5e3f8d2fcee4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34909", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3mnu4pot3nk2c", "content": "The security issues are tracked as CVE-2026-34908, CVE-2026-34909, and CVE-2026-34910. They have been addressed in May and impact UniFi OS Server versions 5.0.6 and earlier. www.bleepingcomputer.com/news/securit...", "creation_timestamp": "2026-06-09T11:45:54.834623Z"} 2026-06-09T11:45:54.834623+00:00 https://vulnerability.circl.lu/sighting/0db5aed6-e2e1-4b7d-93eb-83d63e46657a/export 2026-06-20T09:05:15.157164+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0db5aed6-e2e1-4b7d-93eb-83d63e46657a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34902", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mofybxl2vi2a", "content": "CVE-2026-34902 - Stored XSS in WooCommerce Product Table Lite <=4.6.3. Unauthenticated. CVSS 7.1. No patch available yet. Disable the plugin or restrict access now. #CVE #WordPress #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-34902/", "creation_timestamp": "2026-06-16T14:14:33.373702Z"} 2026-06-16T14:14:33.373702+00:00 https://vulnerability.circl.lu/sighting/04957fd8-66cc-4a85-a6bd-727b28f84d4b/export 2026-06-20T09:05:15.157082+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "04957fd8-66cc-4a85-a6bd-727b28f84d4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-3490", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moiuynehzl2h", "content": "CVE-2026-3490 - picklescan - Universal Blocklist Bypass via pkgutil.resolve_name\nCVE ID : CVE-2026-3490\n \n Published : June 17, 2026, 3:05 p.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : picklescan before 1.0.4 fails to block pkgutil.resolve_name, allowing attackers to bypass t...", "creation_timestamp": "2026-06-17T17:53:38.282961Z"} 2026-06-17T17:53:38.282961+00:00 https://vulnerability.circl.lu/sighting/4fbdcd6c-0358-4e59-8cb2-739a6a2f1bec/export 2026-06-20T09:05:15.156973+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4fbdcd6c-0358-4e59-8cb2-739a6a2f1bec", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34909", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/ba2de44b-a107-41a8-8b70-492e99f4ec6f", "content": "", "creation_timestamp": "2026-06-19T12:45:07.737361Z"} 2026-06-19T12:45:07.737361+00:00 https://vulnerability.circl.lu/sighting/f17e369f-8660-4503-867a-3badaa0db5a6/export 2026-06-20T09:05:15.154753+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f17e369f-8660-4503-867a-3badaa0db5a6", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-34908", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/30343c68-c9cc-40e9-9f19-463f65b5e267", "content": "", "creation_timestamp": "2026-06-19T12:45:07.828608Z"} 2026-06-19T12:45:07.828608+00:00