https://vulnerability.circl.lu/sightings/feed 2026-05-27T20:48:38.772630+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f65b35e7-f1c2-4de1-aa76-f4ddb73c3c28/export 2026-05-27T20:48:38.779209+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f65b35e7-f1c2-4de1-aa76-f4ddb73c3c28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/bugxhunter.bsky.social/post/3mmsfxonynz2x", "content": "\ud83c\udfdb\ufe0f CISA Adds LiteSpeed cPanel Plugin Privilege Escalation Vulnerability\n\n\ud83d\udcdd CISA adds CVE-2026-48172 to KEV Catalog, affecting federal agencies.\n\nhttps://www.cisa.gov/news-events/alerts/2026/05/26/cisa-adds-one-known-exploited-vulnerability-catalog\n\n\ud83d\udcf0 Alerts\n\n#GovSec #CVE", "creation_timestamp": "2026-05-27T02:00:53.893501Z"} 2026-05-27T02:00:53.893501+00:00 https://vulnerability.circl.lu/sighting/00b8d536-7cf2-4c11-84ff-212c117b7c9d/export 2026-05-27T20:48:38.779130+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "00b8d536-7cf2-4c11-84ff-212c117b7c9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3mmstxsdncstq", "content": "CVE-2026-48172 LiteSpeed cPanel Plugin Privilege Escalation Vulnerability", "creation_timestamp": "2026-05-27T06:12:13.780281Z"} 2026-05-27T06:12:13.780281+00:00 https://vulnerability.circl.lu/sighting/87c074ff-2fb1-4614-b1b6-a0a57fc574bd/export 2026-05-27T20:48:38.779050+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "87c074ff-2fb1-4614-b1b6-a0a57fc574bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mmswxbuwu22x", "content": "CVE-2026-48172 in LiteSpeed cPanel user-end plugin is actively exploited and enables root-level script execution; patch to 2.4.5+ or remove plugin immediately.\n", "creation_timestamp": "2026-05-27T07:04:55.003864Z"} 2026-05-27T07:04:55.003864+00:00 https://vulnerability.circl.lu/sighting/fdc8fb93-9d2e-4d59-9512-fe9ba7cffe20/export 2026-05-27T20:48:38.778964+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "fdc8fb93-9d2e-4d59-9512-fe9ba7cffe20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mmt2xm5dfp2c", "content": "CISA\u304ccPanel\u306eLiteSpeed\u30d7\u30e9\u30b0\u30a4\u30f3\u306e\u30bc\u30ed\u30c7\u30a4\u8106\u5f31\u6027\u306e\u5373\u6642\u30d1\u30c3\u30c1\u9069\u7528\u3092\u8981\u8acb\n\nCISA\u306f\u706b\u66dc\u65e5\u3001\u91ce\u5916\u3067\u60aa\u7528\u304c\u78ba\u8a8d\u3055\u308c\u3066\u3044\u308bcPanel\u5411\u3051LiteSpeed\u30e6\u30fc\u30b6\u30fc\u30a8\u30f3\u30c9\u30d7\u30e9\u30b0\u30a4\u30f3\u306e\u6df1\u523b\u306a\u8106\u5f31\u6027\u306b\u3064\u3044\u3066\u3001\u9023\u90a6\u6a5f\u95a2\u306b\u5bfe\u3057\u5373\u6642\u30d1\u30c3\u30c1\u9069\u7528\u3092\u6c42\u3081\u305f\u3002 CVE-2026-48172\uff08CVSS\u30b9\u30b3\u30a29.8\uff09\u3068\u3057\u3066\u8ffd\u8de1\u3055\u308c\u3066\u3044\u308b\u3053\u306e\u6b20\u9665\u306f\u3001\u653b\u6483\u8005\u304croot\u6a29\u9650\u3067\u4efb\u610f\u306e\u30b9\u30af\u30ea\u30d7\u30c8\u3092\u5b9f\u884c\u3067\u304d\u308b\u53ef\u80fd\u6027\u306e\u3042\u308b\u6a29\u9650\u6607", "creation_timestamp": "2026-05-27T08:16:40.155676Z"} 2026-05-27T08:16:40.155676+00:00 https://vulnerability.circl.lu/sighting/99622543-7702-421c-905f-7ec649098b5f/export 2026-05-27T20:48:38.778882+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "99622543-7702-421c-905f-7ec649098b5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmt7w6mipq2d", "content": "CISA added CVE-2026-48172 to its exploited vulnerabilities list. The LiteSpeed cPanel plugin flaw can let attackers gain root access via arbitrary script execution. Patch with LiteSpeed WHM Plugin 5.3.1.0+ #LiteSpeed #cPanel #CISA", "creation_timestamp": "2026-05-27T09:45:21.463369Z"} 2026-05-27T09:45:21.463369+00:00 https://vulnerability.circl.lu/sighting/7f7b09d8-a859-419d-86ed-3953f35d50b4/export 2026-05-27T20:48:38.778794+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7f7b09d8-a859-419d-86ed-3953f35d50b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116646073527499637", "content": "\u26a0\ufe0f CRITICAL: Actively exploited privilege escalation in LiteSpeed cPanel plugin (CVE-2026-48172) enables remote root access via lsws.redisAble. Patch plugin v2.3 \u2013 v2.4.4 now! CISA mandates 4-day deadline for U.S. agencies. https://radar.offseq.com/threat/cisa-gives-feds-4-days-to-patch-actively-exploited-ebc57663 #OffSeq #vuln #patchnow", "creation_timestamp": "2026-05-27T10:30:32.825950Z"} 2026-05-27T10:30:32.825950+00:00 https://vulnerability.circl.lu/sighting/a504d95e-035a-4f97-90a6-95db2c81bd9c/export 2026-05-27T20:48:38.778708+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a504d95e-035a-4f97-90a6-95db2c81bd9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mmtcgzadie2d", "content": "LiteSpeed cPanel plugin CRITICAL vuln (CVE-2026-48172) is under active exploit \u2014 remote attackers can gain root access! Patch plugin v2.3 \u2013 v2.4.4 ASAP. CISA gives feds 4 days. https://radar.offseq.com/threat/cisa-gives-feds-4-days-to-patch-actively-exploited-ebc57663 #OffSeq #cybersecurity #patc...", "creation_timestamp": "2026-05-27T10:30:34.032057Z"} 2026-05-27T10:30:34.032057+00:00 https://vulnerability.circl.lu/sighting/f34e34e4-8300-460a-83be-43adcf44d07c/export 2026-05-27T20:48:38.778612+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f34e34e4-8300-460a-83be-43adcf44d07c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mmtdo24ajok2", "content": "CISA Warns of Exploited LiteSpeed cPanel Plugin Flaw The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has officially added CVE-2026-48172 to its Known Exploited Vulnerabilities (K...\n\n#Cyber #Security #News #Cyber #security #news #vulnerability\n\nOrigin | Interest | Match", "creation_timestamp": "2026-05-27T10:52:24.227544Z"} 2026-05-27T10:52:24.227544+00:00 https://vulnerability.circl.lu/sighting/808dba64-f0a7-46a1-95a7-f7b1f376ea0a/export 2026-05-27T20:48:38.778485+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "808dba64-f0a7-46a1-95a7-f7b1f376ea0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mmtj5fepax2t", "content": "CISA added CVE-2026-48172 to its exploited list after attacks on the LiteSpeed cPanel plugin. The flaw can let remote attackers gain root access. #CVE2026 #LiteSpeed #cPanel", "creation_timestamp": "2026-05-27T12:30:27.331828Z"} 2026-05-27T12:30:27.331828+00:00 https://vulnerability.circl.lu/sighting/80d58791-22ec-48c1-9755-62fec4e0df45/export 2026-05-27T20:48:38.776708+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "80d58791-22ec-48c1-9755-62fec4e0df45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48172", "type": "seen", "source": "https://bsky.app/profile/earthnewstech.bsky.social/post/3mmtpg5il7o2k", "content": "LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root A maximum-severity security vulnerability impact...#news https://thehackernews.com/2026/05/litespeed-cpanel-plugin-cve-2026-48172.html", "creation_timestamp": "2026-05-27T14:22:43.531029Z"} 2026-05-27T14:22:43.531029+00:00