Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-01T15:27:14.241009+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/4067f22b-a36c-4e71-bb6f-cdbcc6262477/export 4067f22b-a36c-4e71-bb6f-cdbcc6262477 2026-06-01T15:27:14.690069+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4067f22b-a36c-4e71-bb6f-cdbcc6262477", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41203", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlaj6f7qlo2k", "content": "CVE-2026-41203 - ci4ms Theme::upload is vulnerable to Zip Slip leading to RCE\nCVE ID : CVE-2026-41203\n \n Published : May 7, 2026, 3:19 a.m. | 1\u00a0hour, 5\u00a0minutes ago\n \n Description : CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architectu...", "creation_timestamp": "2026-05-07T05:45:13.498081Z"} 2026-05-07T05:45:13.498081+00:00 https://vulnerability.circl.lu/sighting/bd1fbd73-ca32-46b7-8611-f98d7f2162e8/export bd1fbd73-ca32-46b7-8611-f98d7f2162e8 2026-06-01T15:27:14.689927+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "bd1fbd73-ca32-46b7-8611-f98d7f2162e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41203", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlap2odhxt2o", "content": "Critical ci4ms path traversal \ud83d\udee1\ufe0f (pre-0.31.5.0): Authenticated users can upload ZIPs to write files anywhere, risking RCE. Upgrade to 0.31.5.0+ now! https://radar.offseq.com/threat/cve-2026-41203-cwe-22-improper-limitation-of-a-pat-c63ffac4 #OffSeq #RCE #PatchNow", "creation_timestamp": "2026-05-07T07:30:31.922745Z"} 2026-05-07T07:30:31.922745+00:00 https://vulnerability.circl.lu/sighting/9749e40b-da38-43f5-ba15-9dbb3d1d9e97/export 9749e40b-da38-43f5-ba15-9dbb3d1d9e97 2026-06-01T15:27:14.687559+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9749e40b-da38-43f5-ba15-9dbb3d1d9e97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41203", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116532119400079005", "content": "\ud83d\udea8 CRITICAL: CVE-2026-41203 in ci4ms (<0.31.5.0) allows authenticated users to exploit a path traversal bug and write files anywhere \u2014 including web root \u2014 for potential RCE. Patch to 0.31.5.0 ASAP! https://radar.offseq.com/threat/cve-2026-41203-cwe-22-improper-limitation-of-a-pat-c63ffac4 #OffSeq #Vuln #RCE #PathTraversal", "creation_timestamp": "2026-05-07T07:30:41.075310Z"} 2026-05-07T07:30:41.075310+00:00