<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-11T08:58:01.930348+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/379c89cd-fe3a-4eb6-a57b-e376721d86a5/export</id>
    <title>379c89cd-fe3a-4eb6-a57b-e376721d86a5</title>
    <updated>2026-07-11T08:58:01.950750+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "379c89cd-fe3a-4eb6-a57b-e376721d86a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56843", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdgm4qywn2y", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56843 \u0432 Plesk: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/C1C6A056-9397-43D2-B21B-998CA62192F4", "creation_timestamp": "2026-07-11T00:43:11.247362Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/379c89cd-fe3a-4eb6-a57b-e376721d86a5/export"/>
    <published>2026-07-11T00:43:11.247362+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2cce530c-1bd9-46b3-85e0-d81192559325/export</id>
    <title>2cce530c-1bd9-46b3-85e0-d81192559325</title>
    <updated>2026-07-11T08:58:01.953296+00:00</updated>
    <author>
      <name>Alexandre Dulaunoy</name>
      <uri>https://vulnerability.circl.lu/user/adulau</uri>
    </author>
    <content>{"uuid": "2cce530c-1bd9-46b3-85e0-d81192559325", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/ebad18a5-251f-49a4-b877-c63995fd13a6", "content": "", "creation_timestamp": "2026-07-08T11:01:21.496106Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2cce530c-1bd9-46b3-85e0-d81192559325/export"/>
    <published>2026-07-08T11:01:21.496106+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d3933c0f-e8bf-4784-8e88-77e605a469a8/export</id>
    <title>d3933c0f-e8bf-4784-8e88-77e605a469a8</title>
    <updated>2026-07-11T08:58:01.954224+00:00</updated>
    <author>
      <name>Alexandre Dulaunoy</name>
      <uri>https://vulnerability.circl.lu/user/adulau</uri>
    </author>
    <content>{"uuid": "d3933c0f-e8bf-4784-8e88-77e605a469a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/ebad18a5-251f-49a4-b877-c63995fd13a6", "content": "", "creation_timestamp": "2026-07-08T11:01:21.496106Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d3933c0f-e8bf-4784-8e88-77e605a469a8/export"/>
    <published>2026-07-08T11:01:21.496106+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/00f7b647-988a-4341-82f8-12648eecc216/export</id>
    <title>00f7b647-988a-4341-82f8-12648eecc216</title>
    <updated>2026-07-11T08:58:01.954312+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "00f7b647-988a-4341-82f8-12648eecc216", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56843", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq4633ovna2x", "content": "CVE-2026-56843 - WebPros Plesk XML-RPC API Incorrect Authorization Vulnerability\nCVE ID : CVE-2026-56843\n \n Published : July 8, 2026, 1:16 a.m. | 1\u00a0hour, 58\u00a0minutes ago\n \n Description : Incorrect authorization in the XML-RPC API of WebPros Plesk before 18.0.78.4 allows a low-p...", "creation_timestamp": "2026-07-08T03:21:50.884349Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/00f7b647-988a-4341-82f8-12648eecc216/export"/>
    <published>2026-07-08T03:21:50.884349+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/80fc8369-ed23-4638-9a48-7e77307f3098/export</id>
    <title>80fc8369-ed23-4638-9a48-7e77307f3098</title>
    <updated>2026-07-11T08:58:01.954383+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "80fc8369-ed23-4638-9a48-7e77307f3098", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56843", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq3ywy72aw2r", "content": "CVE-2026-56843\nA security issue in Plesk's XML-RPC API allows low-privileged users to see details of domains they don't own. This could lead to unauthorized access to sensitive information, such as FTP credentials, which\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-08T01:50:31.653088Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/80fc8369-ed23-4638-9a48-7e77307f3098/export"/>
    <published>2026-07-08T01:50:31.653088+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3fddd886-4f25-442d-bfff-bad950d2ddf7/export</id>
    <title>3fddd886-4f25-442d-bfff-bad950d2ddf7</title>
    <updated>2026-07-11T08:58:01.954450+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3fddd886-4f25-442d-bfff-bad950d2ddf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-56843", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mq3xtwsr2j2i", "content": "WebPros Plesk &amp;lt;18.0.78.4: CRITICAL (CVSS 9.9) vuln lets low-privileged users access other tenants\u2019 FTP creds &amp;amp; execute code as them. Restrict XML-RPC API, monitor activity. Patch status pending. https://radar.offseq.com/threat/cve-2026-56843-cwe-522-insufficiently-protected-cr-45d7ae62ed3d3640 #O...", "creation_timestamp": "2026-07-08T01:30:28.957691Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3fddd886-4f25-442d-bfff-bad950d2ddf7/export"/>
    <published>2026-07-08T01:30:28.957691+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/45d40069-3c0b-4486-8301-1a179be30514/export</id>
    <title>45d40069-3c0b-4486-8301-1a179be30514</title>
    <updated>2026-07-11T08:58:01.954511+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "45d40069-3c0b-4486-8301-1a179be30514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-56843", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116881766886443952", "content": "CVE-2026-56843 (CRITICAL, CVSS 9.9): WebPros Plesk &amp;lt;18.0.78.4 has insufficient auth in XML-RPC API, letting low-privileged users access other tenants\u2019 cleartext FTP creds &amp;amp; run code as them. Restrict API access &amp;amp; monitor. https://radar.offseq.com/threat/cve-2026-56843-cwe-522-insufficiently-protected-cr-45d7ae62ed3d3640 #OffSeq #Infosec #Plesk", "creation_timestamp": "2026-07-08T01:30:26.980630Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/45d40069-3c0b-4486-8301-1a179be30514/export"/>
    <published>2026-07-08T01:30:26.980630+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c0459647-8e61-4010-af76-f7014454b4fe/export</id>
    <title>c0459647-8e61-4010-af76-f7014454b4fe</title>
    <updated>2026-07-11T08:58:01.954578+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c0459647-8e61-4010-af76-f7014454b4fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mpzrsr2fwx2s", "content": "\ud83d\udccc CVE-2026-56841 - A malicious actor with access to the network and low privileges could exploit an authenticated SQL Injection vulnerability found in UniFi Protect Appl... https://www.cyberhub.blog/cves/CVE-2026-56841", "creation_timestamp": "2026-07-07T04:37:06.999275Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c0459647-8e61-4010-af76-f7014454b4fe/export"/>
    <published>2026-07-07T04:37:06.999275+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/47cd571f-e099-49e4-8da8-9a02d72eb871/export</id>
    <title>47cd571f-e099-49e4-8da8-9a02d72eb871</title>
    <updated>2026-07-11T08:58:01.954640+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "47cd571f-e099-49e4-8da8-9a02d72eb871", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56841", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq5iwktn327", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-56841: \u0443\u0433\u0440\u043e\u0437\u0430 \u0434\u043b\u044f \u0441\u0435\u0442\u0435\u0432\u043e\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/B52B39E3-A391-4F44-AB13-2C854CDE34B0", "creation_timestamp": "2026-07-03T08:39:44.760732Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/47cd571f-e099-49e4-8da8-9a02d72eb871/export"/>
    <published>2026-07-03T08:39:44.760732+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6e4069ce-74ff-4fdd-b780-b9b9169d0eb5/export</id>
    <title>6e4069ce-74ff-4fdd-b780-b9b9169d0eb5</title>
    <updated>2026-07-11T08:58:01.954704+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6e4069ce-74ff-4fdd-b780-b9b9169d0eb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-56842", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpq4kghlsi2n", "content": "\u0423\u0433\u0440\u043e\u0437\u0430 CVE-2026-56842: \u043a\u0430\u043a \u0437\u0430\u0449\u0438\u0442\u0438\u0442\u044c \u0441\u0432\u043e\u044e \u0441\u0435\u0442\u044c \u043e\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432\n\n\n\nhttps://kripta.biz/posts/2AB2804B-762E-4E0E-8ED0-077DBAB439ED", "creation_timestamp": "2026-07-03T08:22:41.150389Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6e4069ce-74ff-4fdd-b780-b9b9169d0eb5/export"/>
    <published>2026-07-03T08:22:41.150389+00:00</published>
  </entry>
</feed>
