<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T01:35:28.633575+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3acaee8b-a1dc-4528-a7ff-f455fd725c4a/export</id>
    <title>3acaee8b-a1dc-4528-a7ff-f455fd725c4a</title>
    <updated>2026-07-17T01:35:28.652861+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3acaee8b-a1dc-4528-a7ff-f455fd725c4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59865", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqrou5lqyq2o", "content": "CVE-2026-59865 - kiota\nThe Kiota tool can execute malicious commands when generating install instructions for dependencies. This happened when Kiota read and executed commands from compromised or\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#kiota #microsoft #CVE #infosec", "creation_timestamp": "2026-07-16T16:48:05.831505Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3acaee8b-a1dc-4528-a7ff-f455fd725c4a/export"/>
    <published>2026-07-16T16:48:05.831505+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6b07b4be-456d-4405-aec7-65cf365e2927/export</id>
    <title>6b07b4be-456d-4405-aec7-65cf365e2927</title>
    <updated>2026-07-17T01:35:28.657114+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6b07b4be-456d-4405-aec7-65cf365e2927", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-59865", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqrm6qrdhu2u", "content": "CVE-2026-59865 - Kiota: Command injection via x-ms-kiota-info dependencyInstallCommand surfaced by `kiota info`\nCVE ID : CVE-2026-59865\n \n Published : July 16, 2026, 2:43 p.m. | 51\u00a0minutes ago\n \n Description : Kiota is an OpenAPI based HTTP Client code generator. Prior to 1.32...", "creation_timestamp": "2026-07-16T16:00:20.475199Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6b07b4be-456d-4405-aec7-65cf365e2927/export"/>
    <published>2026-07-16T16:00:20.475199+00:00</published>
  </entry>
</feed>
