<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-11T13:13:33.411539+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9b8d2355-8cca-4f40-8146-bf97ac8ca5c2/export</id>
    <title>9b8d2355-8cca-4f40-8146-bf97ac8ca5c2</title>
    <updated>2026-07-11T13:13:33.432392+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9b8d2355-8cca-4f40-8146-bf97ac8ca5c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59702", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqddq4mvug2z", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-59702 \u0432 Repomix: \u0443\u0433\u0440\u043e\u0437\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u043d\u043e\u0439 \u043f\u043e\u0434\u0434\u0435\u043b\u043a\u0438 \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/E5DD7C40-69F9-4C24-AFF5-9AB19269707B", "creation_timestamp": "2026-07-10T23:51:43.190457Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9b8d2355-8cca-4f40-8146-bf97ac8ca5c2/export"/>
    <published>2026-07-10T23:51:43.190457+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d45fe9fd-f09d-4101-b557-c86a41b08ce8/export</id>
    <title>d45fe9fd-f09d-4101-b557-c86a41b08ce8</title>
    <updated>2026-07-11T13:13:33.434824+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d45fe9fd-f09d-4101-b557-c86a41b08ce8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59702", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq5ptfkrs52x", "content": "CVE-2026-59702 - repomix - Server-Side Request Forgery via Unvalidated Repository URLs in POST /api/pack\nCVE ID : CVE-2026-59702\n \n Published : July 8, 2026, 4:16 p.m. | 58\u00a0minutes ago\n \n Description : repomix contains a server-side request forgery vulnerability in the POST /a...", "creation_timestamp": "2026-07-08T18:12:19.890908Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d45fe9fd-f09d-4101-b557-c86a41b08ce8/export"/>
    <published>2026-07-08T18:12:19.890908+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1a4d537d-a549-40d2-8be0-d6e3f5e3fb3f/export</id>
    <title>1a4d537d-a549-40d2-8be0-d6e3f5e3fb3f</title>
    <updated>2026-07-11T13:13:33.434958+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1a4d537d-a549-40d2-8be0-d6e3f5e3fb3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59702", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mq5kogjzv52f", "content": "CVE-2026-59702 - repomix\nThe Repomix API endpoint is vulnerable to attacks that can access private network addresses, GCP metadata services, or local filesystem paths. This means that an attacker could potentially\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#repomix #CVE #infosec", "creation_timestamp": "2026-07-08T16:40:04.423234Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1a4d537d-a549-40d2-8be0-d6e3f5e3fb3f/export"/>
    <published>2026-07-08T16:40:04.423234+00:00</published>
  </entry>
</feed>
