<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T15:04:44.369311+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8e1bc5b3-dbf7-4386-9f8e-a12bb44ca99c/export</id>
    <title>8e1bc5b3-dbf7-4386-9f8e-a12bb44ca99c</title>
    <updated>2026-07-17T15:04:44.382024+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8e1bc5b3-dbf7-4386-9f8e-a12bb44ca99c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12511", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqng3cfyza2o", "content": "CVE-2026-12511. CVSS 8.1. AI Engine plugin lets editors write files anywhere on your server via path traversal. wp-config.php. .htaccess. Shell upload. Game over. No patch available. Disable AI Engine now. Scan your WordPress site: pulse-wp.com\n#WordPress #LFI #CyberSecurity", "creation_timestamp": "2026-07-15T00:00:32.315293Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8e1bc5b3-dbf7-4386-9f8e-a12bb44ca99c/export"/>
    <published>2026-07-15T00:00:32.315293+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e058a1a1-5ba5-49b5-997e-6c6252e86d0a/export</id>
    <title>e058a1a1-5ba5-49b5-997e-6c6252e86d0a</title>
    <updated>2026-07-17T15:04:44.384075+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e058a1a1-5ba5-49b5-997e-6c6252e86d0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-12511", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqlvdarid52e", "content": "CVE-2026-12511 - AI Engine\nCVE ID : CVE-2026-12511\n \n Published : 14. Juli 2026 06:17 | 1\u00a0Stunde, 13\u00a0Minuten ago\n \n Description : The AI Engine WordPress plugin before 3.5.5 does not sanitize a user-supplied filename before using it to write a downloaded file, allowing authent...", "creation_timestamp": "2026-07-14T09:27:56.510879Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e058a1a1-5ba5-49b5-997e-6c6252e86d0a/export"/>
    <published>2026-07-14T09:27:56.510879+00:00</published>
  </entry>
</feed>
