<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-03T20:16:03.248879+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fcc094f3-834f-4343-b880-cd827d7c77b8/export</id>
    <title>fcc094f3-834f-4343-b880-cd827d7c77b8</title>
    <updated>2026-07-03T20:16:03.273514+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fcc094f3-834f-4343-b880-cd827d7c77b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48282", "type": "seen", "source": "https://bsky.app/profile/securityonline.bsky.social/post/3mppogatfa42t", "content": "A critical CVSS 10 ColdFusion arbitrary code execution flaw (CVE-2026-48282) is actively exploited in the wild. Update immediately to prevent attacks.\n\n#ColdFusion #CVE202648282 #CyberSecurity #Vulnerability #Infosec", "creation_timestamp": "2026-07-03T04:09:48.965558Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fcc094f3-834f-4343-b880-cd827d7c77b8/export"/>
    <published>2026-07-03T04:09:48.965558+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1eb8af53-75dd-4a80-96b3-7d7dc2ed178c/export</id>
    <title>1eb8af53-75dd-4a80-96b3-7d7dc2ed178c</title>
    <updated>2026-07-03T20:16:03.276506+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://vulnerability.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "1eb8af53-75dd-4a80-96b3-7d7dc2ed178c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48282", "type": "published-proof-of-concept", "source": "https://labs.watchtowr.com/its-37oc-and-all-we-can-think-about-is-coldfusion-adobe-coldfusion-security-bulletin-apsb26-68-cve-bonanza", "content": "", "creation_timestamp": "2026-07-03T04:01:01.546427Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1eb8af53-75dd-4a80-96b3-7d7dc2ed178c/export"/>
    <published>2026-07-03T04:01:01.546427+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2ab7544f-6d37-41c8-8f75-0416c8596c67/export</id>
    <title>2ab7544f-6d37-41c8-8f75-0416c8596c67</title>
    <updated>2026-07-03T20:16:03.278029+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://vulnerability.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "2ab7544f-6d37-41c8-8f75-0416c8596c67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48282", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/adobe-security-advisory-av26-647", "content": "", "creation_timestamp": "2026-07-02T21:15:16.124172Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2ab7544f-6d37-41c8-8f75-0416c8596c67/export"/>
    <published>2026-07-02T21:15:16.124172+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8f6781d6-112a-4b9a-8070-54c83aede209/export</id>
    <title>8f6781d6-112a-4b9a-8070-54c83aede209</title>
    <updated>2026-07-03T20:16:03.278151+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8f6781d6-112a-4b9a-8070-54c83aede209", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48282", "type": "seen", "source": "https://bsky.app/profile/cyfar.ca/post/3mpotfgidrq26", "content": "~Watchtowr~\nAdobe ColdFusion APSB26-68 patches 11 CVEs including multiple RCE and arbitrary file read/write via RDS and CKEditor path traversal.\n-\nIOCs: CVE-2026-48282, CVE-2026-48276, CVE-2026-48313\n-\n#CVE #ColdFusion #RCE #ThreatIntel", "creation_timestamp": "2026-07-02T20:06:10.646649Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8f6781d6-112a-4b9a-8070-54c83aede209/export"/>
    <published>2026-07-02T20:06:10.646649+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9ea3d3f3-d254-4e6a-aa47-7a6def86dc52/export</id>
    <title>9ea3d3f3-d254-4e6a-aa47-7a6def86dc52</title>
    <updated>2026-07-03T20:16:03.278255+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9ea3d3f3-d254-4e6a-aa47-7a6def86dc52", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48282", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/639792fc-c342-4515-bc82-651d788d0487", "content": "", "creation_timestamp": "2026-07-02T19:00:19.548663Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9ea3d3f3-d254-4e6a-aa47-7a6def86dc52/export"/>
    <published>2026-07-02T19:00:19.548663+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/99d5370e-d8a6-4a08-8eb1-1c353b20b181/export</id>
    <title>99d5370e-d8a6-4a08-8eb1-1c353b20b181</title>
    <updated>2026-07-03T20:16:03.278358+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "99d5370e-d8a6-4a08-8eb1-1c353b20b181", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48282", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mpll4ubpnt2q", "content": "\ud83d\udd17 CVE : CVE-2026-48276, CVE-2026-48277, CVE-2026-48281, CVE-2026-48282, CVE-2026-48283, CVE-2026-48285, CVE-2026-48307, CVE-2026-48313, CVE-2026-48314, CVE-2026-48315, CVE-2026-48316", "creation_timestamp": "2026-07-01T13:00:13.164693Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/99d5370e-d8a6-4a08-8eb1-1c353b20b181/export"/>
    <published>2026-07-01T13:00:13.164693+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0446caa8-413c-4caa-b89e-52a99b12ee10/export</id>
    <title>0446caa8-413c-4caa-b89e-52a99b12ee10</title>
    <updated>2026-07-03T20:16:03.278459+00:00</updated>
    <author>
      <name>Joseph Lee</name>
      <uri>https://vulnerability.circl.lu/user/syspect</uri>
    </author>
    <content>{"uuid": "0446caa8-413c-4caa-b89e-52a99b12ee10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-48282", "type": "seen", "source": "https://www.cert.dk/news/2026-07-01/Kritiske-ColdFusion-saarbarheder-aabner-for-fuld-serverovertagelse", "content": "", "creation_timestamp": "2026-07-01T09:45:14.503512Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0446caa8-413c-4caa-b89e-52a99b12ee10/export"/>
    <published>2026-07-01T09:45:14.503512+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ae37b687-cbf2-4ae0-8db3-19d8630ed2f1/export</id>
    <title>ae37b687-cbf2-4ae0-8db3-19d8630ed2f1</title>
    <updated>2026-07-03T20:16:03.278567+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ae37b687-cbf2-4ae0-8db3-19d8630ed2f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48282", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpklnwud3g2a", "content": "\ud83d\udccc CVE-2026-48282 - ColdFusion versions 2025.9, 2023.20 and earlier are affected by an Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vuln... https://www.cyberhub.blog/cves/CVE-2026-48282", "creation_timestamp": "2026-07-01T03:37:06.544686Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ae37b687-cbf2-4ae0-8db3-19d8630ed2f1/export"/>
    <published>2026-07-01T03:37:06.544686+00:00</published>
  </entry>
</feed>
