https://vulnerability.circl.lu/sightings/feed 2026-06-09T07:06:58.571146+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/9335e0b6-cc05-468f-9164-4e20331c0111/export 2026-06-09T07:06:58.595461+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9335e0b6-cc05-468f-9164-4e20331c0111", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlekt3kq262w", "content": "\ud83d\udfe0 CVE-2026-29203 - High (8.8)\n\nA chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follows symlinks, allowing setti...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-29203/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:25:20.999730Z"} 2026-05-08T20:25:20.999730+00:00 https://vulnerability.circl.lu/sighting/f8f166ee-e562-42de-aef0-79e23c6dd68a/export 2026-06-09T07:06:58.595318+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f8f166ee-e562-42de-aef0-79e23c6dd68a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mlepsmramd2t", "content": "cPanel Nova\u30d7\u30e9\u30b0\u30a4\u30f3\u306echmod\u51e6\u7406\u3067\u30b7\u30f3\u30dc\u30ea\u30c3\u30af\u30ea\u30f3\u30af\u3092\u8fbf\u308a\u3001\u4efb\u610f\u30d5\u30a1\u30a4\u30eb\u306broot\u6a29\u9650\u304c\u4ed8\u4e0e\u3055\u308c\u308b\u8106\u5f31\u6027\u3002\u8a8d\u8a3c\u6e08\u307f\u30e6\u30fc\u30b6\u30fc\u304c\u3001\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u4e0b\u306e\u30ec\u30ac\u30b7\u30fcNova\u30d1\u30b9\u306b\u30b7\u30f3\u30dc\u30ea\u30c3\u30af\u2026\nCVE-2026-29203 CVSS 8.8 | HIGH", "creation_timestamp": "2026-05-08T21:54:33.627576Z"} 2026-05-08T21:54:33.627576+00:00 https://vulnerability.circl.lu/sighting/0fe2044c-c367-499b-bbb1-3b12b1012026/export 2026-06-09T07:06:58.595164+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0fe2044c-c367-499b-bbb1-3b12b1012026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116544182422691954", "content": "Spoiler de l'\u00e9pisode de hier : cPanel a bien livr\u00e9 les d\u00e9tails techniques en m\u00eame temps que les patchs. Au menu de l'after :\n\u2022 CVE-2026-29201 : path traversal :8bitrainbow: via feature::LOADFEATUREFILE \u2192 fichier arbitraire en world-readable\u2022 CVE-2026-29202 : injection Perl dans create_user (param\u00e8tre plugin)\u2022 CVE-2026-29203 : symlink mal g\u00e9r\u00e9 \u2192 chmod arbitraire \u2192 DoS + escalade de privil\u00e8ges\n/scripts/upcp et go apero!Bon courage aux admins de garde \ud83e\udee1\nhttps://docs.cpanel.net/changelogs/134-change-log/#134025\nhttps://vulnerability.circl.lu/vuln/CVE-2026-29203\n#CyberVeille #cpanel #CVE_2026_29203#CVE_2026_29202#CVE_2026_29201", "creation_timestamp": "2026-05-09T10:38:17.359819Z"} 2026-05-09T10:38:17.359819+00:00 https://vulnerability.circl.lu/sighting/86a593e4-73af-45c1-b36d-d2060df143d7/export 2026-06-09T07:06:58.595027+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "86a593e4-73af-45c1-b36d-d2060df143d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mlhlj7bx752u", "content": "cPanel released a second emergency security patch for three new high-severity vulnerabilities (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) on May 8, 2026, following a major ransomware attack. This indicates a deeper code audit after the previous compromise.", "creation_timestamp": "2026-05-10T01:15:42.635061Z"} 2026-05-10T01:15:42.635061+00:00 https://vulnerability.circl.lu/sighting/ebcb888f-219c-44d6-8872-d7b3e518cff0/export 2026-06-09T07:06:58.594870+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ebcb888f-219c-44d6-8872-d7b3e518cff0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mli2inlydw2y", "content": "Critical: Three New cPanel & WHM Vulnerabilities (CVEs 2026-29201/2/3) Threaten Code Execution and DoS \u2014 Patch Immediately +\u00a0Video\n\nIntroduction: Three newly disclosed critical security vulnerabilities in cPanel & WHM, tracked as CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, could allow\u2026", "creation_timestamp": "2026-05-10T05:43:50.682083Z"} 2026-05-10T05:43:50.682083+00:00 https://vulnerability.circl.lu/sighting/cab3bd09-026a-4935-98b1-a4e016e50fb1/export 2026-06-09T07:06:58.594726+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "cab3bd09-026a-4935-98b1-a4e016e50fb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlizxrgkd32y", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:04.119329Z"} 2026-05-10T15:07:04.119329+00:00 https://vulnerability.circl.lu/sighting/d2c510c1-dafd-4e46-afee-e52e3beab9d7/export 2026-06-09T07:06:58.594579+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d2c510c1-dafd-4e46-afee-e52e3beab9d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlizyboth425", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #PotatoSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:20.306966Z"} 2026-05-10T15:07:20.306966+00:00 https://vulnerability.circl.lu/sighting/81cefced-287e-4ee6-9a62-4173c86e0364/export 2026-06-09T07:06:58.594410+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "81cefced-287e-4ee6-9a62-4173c86e0364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mlj6rgbnzch2", "content": "New cPanel vulnerabilities could allow file access and remote code execution cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation h...\n\n#Breaking #News #Security #cPanel #CVE-2026-29201 #CVE-2026-29202 #CVE-2026-29203 #Cybercrime [\u2026]", "creation_timestamp": "2026-05-10T16:33:03.473626Z"} 2026-05-10T16:33:03.473626+00:00 https://vulnerability.circl.lu/sighting/e007c547-cbda-4161-b02d-fc929616b4cf/export 2026-06-09T07:06:58.593180+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e007c547-cbda-4161-b02d-fc929616b4cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlljuslwde2l", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) allow RCE and DoS attacks. Admins must update immediately to secure servers. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-11T14:57:11.009253Z"} 2026-05-11T14:57:11.009253+00:00 https://vulnerability.circl.lu/sighting/bb42c05a-1378-45d8-832e-a655a28c1220/export 2026-06-09T07:06:58.591229+00:00 Joseph Lee https://vulnerability.circl.lu/user/syspect {"uuid": "bb42c05a-1378-45d8-832e-a655a28c1220", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-vulnerabilities-cpanel-and-whm-leading-privilege-escalation-patch", "content": "", "creation_timestamp": "2026-05-12T01:21:19.000000Z"} 2026-05-12T01:21:19+00:00