<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-14T09:43:02.556958+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/88dcad46-bc8c-4230-a09d-38bb9ec538c3/export</id>
    <title>88dcad46-bc8c-4230-a09d-38bb9ec538c3</title>
    <updated>2026-07-14T09:43:02.569517+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "88dcad46-bc8c-4230-a09d-38bb9ec538c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-62R4-HW23-CC8V", "type": "published-proof-of-concept", "source": "https://t.me/securixy_kz/1282", "content": "\ud83d\udea8 \u0415\u0449\u0435 \u043e\u0434\u043d\u0430 RCE \u0432 n8n -  CVE\u20112025\u201168668 (CVSS 9.9)  \n\u041f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0430 Pyodide \u0432 Python Code Node \u043e\u043a\u0430\u0437\u0430\u043b\u0430\u0441\u044c \u0434\u044b\u0440\u044f\u0432\u043e\u0439\n\n\ud83d\udca1 \u0410\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0441 \u043f\u0440\u0430\u0432\u043e\u043c \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c workflow \u043c\u043e\u0436\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u043d\u0430 \u0445\u043e\u0441\u0442\u0435  \n\n\u26a0\ufe0f \u0423\u044f\u0437\u0432\u0438\u043c\u044b \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0442 1.0.0 \u0434\u043e 2.0.0  \n\n\ud83d\udee1 \u0417\u0430\u0449\u0438\u0442\u0430  \n\u2022 \u041e\u0431\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 2.0.0 \u0438 \u0432\u044b\u0448\u0435  \n\u2022 \u041f\u0440\u0438 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c Python Code Node  \n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u043d\u0430 \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 workflow  \n\u2022 \u0418\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c n8n \u0438 \u043c\u0438\u043d\u0438\u043c\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0435\u0433\u043e \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438\n\n\ud83d\udd17 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438:  \nhttps://github.com/n8n-io/n8n/security/advisories/GHSA-62r4-hw23-cc8v\n\nhttps://securityonline.info/n8n-sandbox-escape-how-cve-2025-68668-turns-workflows-into-weapons/", "creation_timestamp": "2026-07-13T00:00:15.939217Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/88dcad46-bc8c-4230-a09d-38bb9ec538c3/export"/>
    <published>2026-07-13T00:00:15.939217+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/03f8b435-9b83-4956-857b-173a53ce78d2/export</id>
    <title>03f8b435-9b83-4956-857b-173a53ce78d2</title>
    <updated>2026-07-14T09:43:02.571628+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "03f8b435-9b83-4956-857b-173a53ce78d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-62R4-HW23-CC8V", "type": "seen", "source": "https://t.me/securixy_kz/1282", "content": "\ud83d\udea8 \u0415\u0449\u0435 \u043e\u0434\u043d\u0430 RCE \u0432 n8n -  CVE\u20112025\u201168668 (CVSS 9.9)  \n\u041f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u0430 Pyodide \u0432 Python Code Node \u043e\u043a\u0430\u0437\u0430\u043b\u0430\u0441\u044c \u0434\u044b\u0440\u044f\u0432\u043e\u0439\n\n\ud83d\udca1 \u0410\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u0441 \u043f\u0440\u0430\u0432\u043e\u043c \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c workflow \u043c\u043e\u0436\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0435 \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u043d\u0430 \u0445\u043e\u0441\u0442\u0435  \n\n\u26a0\ufe0f \u0423\u044f\u0437\u0432\u0438\u043c\u044b \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u043e\u0442 1.0.0 \u0434\u043e 2.0.0  \n\n\ud83d\udee1 \u0417\u0430\u0449\u0438\u0442\u0430  \n\u2022 \u041e\u0431\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 2.0.0 \u0438 \u0432\u044b\u0448\u0435  \n\u2022 \u041f\u0440\u0438 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c Python Code Node  \n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u043f\u0440\u0430\u0432\u0430 \u043d\u0430 \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 workflow  \n\u2022 \u0418\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c n8n \u0438 \u043c\u0438\u043d\u0438\u043c\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0435\u0433\u043e \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0435 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438\n\n\ud83d\udd17 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438:  \nhttps://github.com/n8n-io/n8n/security/advisories/GHSA-62r4-hw23-cc8v\n\nhttps://securityonline.info/n8n-sandbox-escape-how-cve-2025-68668-turns-workflows-into-weapons/", "creation_timestamp": "2026-07-12T22:00:06.489928Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/03f8b435-9b83-4956-857b-173a53ce78d2/export"/>
    <published>2026-07-12T22:00:06.489928+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4d05987a-726e-4526-832b-d590d96d770e/export</id>
    <title>4d05987a-726e-4526-832b-d590d96d770e</title>
    <updated>2026-07-14T09:43:02.571778+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4d05987a-726e-4526-832b-d590d96d770e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-62R4-HW23-CC8V", "type": "published-proof-of-concept", "source": "https://t.me/ics_cert/1394", "content": "\u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0639\u0645\u0644\u06a9\u0631\u062f Code Node \u062f\u0631 \u067e\u0644\u062a\u0641\u0631\u0645 \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u06af\u0631\u062f\u0634 \u06a9\u0627\u0631 N8n \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0646\u0642\u0636 \u0645\u06a9\u0627\u0646\u06cc\u0632\u0645 \u062d\u0641\u0627\u0638\u062a \u062f\u0627\u062f\u0647\u200c\u0647\u0627 \u0627\u0633\u062a. \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0627\u062c\u0627\u0632\u0647 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0627 \u0628\u062f\u0647\u062f.\n\nCVE-2025-68668\n\n\u0646\u0635\u0628 \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627 \u0627\u0632 \u0645\u0646\u0627\u0628\u0639 \u0645\u0639\u062a\u0628\u0631. \u0628\u0627 \u062a\u0648\u062c\u0647 \u0628\u0647 \u0634\u0631\u0627\u06cc\u0637 \u0645\u0648\u062c\u0648\u062f\u060c \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f \u0628\u0647\u200c\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631\u06cc \u062a\u0646\u0647\u0627 \u067e\u0633 \u0627\u0632 \u0627\u0631\u0632\u06cc\u0627\u0628\u06cc \u062a\u0645\u0627\u0645\u06cc \u0631\u06cc\u0633\u06a9\u200c\u0647\u0627\u06cc \u0645\u0631\u062a\u0628\u0637 \u0646\u0635\u0628 \u0634\u0648\u0646\u062f.\n\n\u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062c\u0628\u0631\u0627\u0646\u06cc:\n- \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0627\u0645\u06a9\u0627\u0646 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0639\u0645\u0644\u06a9\u0631\u062f Code Node\u061b\n- \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u0627\u0645\u06a9\u0627\u0646 \u0646\u0648\u0634\u062a\u0646 \u0648 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u067e\u0627\u06cc\u062a\u0648\u0646 \u0628\u0627 \u062a\u0646\u0638\u06cc\u0645 \u0645\u0642\u062f\u0627\u0631 false \u0628\u0631\u0627\u06cc \u0645\u062a\u063a\u06cc\u0631 N8N_PYTHON_ENABLED\u061b\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0628\u0647 \u067e\u0644\u062a\u0641\u0631\u0645 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u061b\n- \u0628\u062e\u0634\u200c\u0628\u0646\u062f\u06cc \u0634\u0628\u06a9\u0647 \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u067e\u0644\u062a\u0641\u0631\u0645 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u061b\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0633\u06cc\u0633\u062a\u0645\u200c\u0647\u0627\u06cc \u062a\u0634\u062e\u06cc\u0635 \u0648 \u067e\u06cc\u0634\u06af\u06cc\u0631\u06cc \u0627\u0632 \u0646\u0641\u0648\u0630 \u0628\u0631\u0627\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc (\u06a9\u0634\u0641\u060c \u062b\u0628\u062a) \u0648 \u0648\u0627\u06a9\u0646\u0634 \u0628\u0647 \u062a\u0644\u0627\u0634\u200c\u0647\u0627\u06cc \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u061b\n- \u063a\u06cc\u0631\u0641\u0639\u0627\u0644\u200c\u0633\u0627\u0632\u06cc/\u062d\u0630\u0641 \u062d\u0633\u0627\u0628\u200c\u0647\u0627\u06cc \u06a9\u0627\u0631\u0628\u0631\u06cc \u0628\u0644\u0627\u0627\u0633\u062a\u0641\u0627\u062f\u0647\u061b\n- \u062d\u062f\u0627\u0642\u0644 \u06a9\u0631\u062f\u0646 \u0627\u0645\u062a\u06cc\u0627\u0632\u0627\u062a \u06a9\u0627\u0631\u0628\u0631\u0627\u0646\u061b\n- \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u067e\u0644\u062a\u0641\u0631\u0645 \u0627\u0632 \u0634\u0628\u06a9\u0647\u200c\u0647\u0627\u06cc \u062e\u0627\u0631\u062c\u06cc (\u0627\u06cc\u0646\u062a\u0631\u0646\u062a).\n\n\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062a\u0648\u0635\u06cc\u0647\u200c\u0647\u0627:\nhttps://github.com/n8n-io/n8n/security/advisories/GHSA-62r4-hw23-cc8v\n\ud83d\udca1\u0627\u06af\u0631 \u0627\u06cc\u0646 \u0645\u062a\u0646 \u062f\u06cc\u062f\u06af\u0627\u0647 \u0634\u0645\u0627 \u0631\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0627\u062f\u060c \u0628\u0627\u0630\u06a9\u0631 \u0645\u0646\u0628\u0639 \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0628\u06af\u0630\u0627\u0631\u06cc\u062f. \n\ud83c\udfed\u00a0 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n@pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645 :\nhttps://t.me/ICSCERT_IR\n\u0627\u06cc\u062a\u0627:\nhttps://eitaa.com/joinchat/1866007784Cfd023f90b2\n\u06af\u0631\u0648\u0647 \u062a\u062e\u0635\u0635\u06cc \u0648\u0627\u062a\u0633 \u0627\u067e:\nhttps://chat.whatsapp.com/BZu1yr1aeHpCDxiIXotzyW?mode=ac_t\n\u0628\u0647 \u0627\u0646\u062c\u0645\u0646 \u062a\u062e\u0635\u0635\u06cc AI.Sec :\nhttps://chat.whatsapp.com/KRPUA6WM4f6AdS727vRBmM?mode=ems_copy_t\n\u06a9\u0627\u0646\u0627\u0644 \u0628\u0644\u0647\nhttps://ble.ir/otsec", "creation_timestamp": "2026-01-30T19:25:37.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4d05987a-726e-4526-832b-d590d96d770e/export"/>
    <published>2026-01-30T19:25:37+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e88de665-f9d7-48f7-b703-0ea27beb095a/export</id>
    <title>e88de665-f9d7-48f7-b703-0ea27beb095a</title>
    <updated>2026-07-14T09:43:02.571923+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e88de665-f9d7-48f7-b703-0ea27beb095a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-62r4-hw23-cc8v", "type": "seen", "source": "https://gist.github.com/alon710/5b476988f99b29bca643a5fed5e4789e", "content": "", "creation_timestamp": "2026-01-24T22:43:55.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e88de665-f9d7-48f7-b703-0ea27beb095a/export"/>
    <published>2026-01-24T22:43:55+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4a33609f-9fe7-4768-969b-479e22aefe5e/export</id>
    <title>4a33609f-9fe7-4768-969b-479e22aefe5e</title>
    <updated>2026-07-14T09:43:02.572024+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4a33609f-9fe7-4768-969b-479e22aefe5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-62R4-HW23-CC8V", "type": "published-proof-of-concept", "source": "Telegram/enKzt3bxSKd8zB2DxOAdSs1JHzkbkyRgEfAWm4z9IF02rbM", "content": "", "creation_timestamp": "2026-01-05T18:04:56.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4a33609f-9fe7-4768-969b-479e22aefe5e/export"/>
    <published>2026-01-05T18:04:56+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b9119771-7108-4f28-a763-ead6a68fe0f5/export</id>
    <title>b9119771-7108-4f28-a763-ead6a68fe0f5</title>
    <updated>2026-07-14T09:43:02.572122+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b9119771-7108-4f28-a763-ead6a68fe0f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-62r4-hw23-cc8v", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115787390217635084", "content": "", "creation_timestamp": "2025-12-26T18:56:03.967267Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b9119771-7108-4f28-a763-ead6a68fe0f5/export"/>
    <published>2025-12-26T18:56:03.967267+00:00</published>
  </entry>
</feed>
