https://vulnerability.circl.lu/sightings/feed 2026-06-10T04:00:28.080180+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/bd1fbd73-ca32-46b7-8611-f98d7f2162e8/export 2026-06-10T04:00:28.109128+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "bd1fbd73-ca32-46b7-8611-f98d7f2162e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41203", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlap2odhxt2o", "content": "Critical ci4ms path traversal \ud83d\udee1\ufe0f (pre-0.31.5.0): Authenticated users can upload ZIPs to write files anywhere, risking RCE. Upgrade to 0.31.5.0+ now! https://radar.offseq.com/threat/cve-2026-41203-cwe-22-improper-limitation-of-a-pat-c63ffac4 #OffSeq #RCE #PatchNow", "creation_timestamp": "2026-05-07T07:30:31.922745Z"} 2026-05-07T07:30:31.922745+00:00 https://vulnerability.circl.lu/sighting/9749e40b-da38-43f5-ba15-9dbb3d1d9e97/export 2026-06-10T04:00:28.109053+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9749e40b-da38-43f5-ba15-9dbb3d1d9e97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41203", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116532119400079005", "content": "\ud83d\udea8 CRITICAL: CVE-2026-41203 in ci4ms (<0.31.5.0) allows authenticated users to exploit a path traversal bug and write files anywhere \u2014 including web root \u2014 for potential RCE. Patch to 0.31.5.0 ASAP! https://radar.offseq.com/threat/cve-2026-41203-cwe-22-improper-limitation-of-a-pat-c63ffac4 #OffSeq #Vuln #RCE #PathTraversal", "creation_timestamp": "2026-05-07T07:30:41.075310Z"} 2026-05-07T07:30:41.075310+00:00 https://vulnerability.circl.lu/sighting/9eadc5ee-b48b-4078-9e5b-cbeb755a9d4b/export 2026-06-10T04:00:28.108981+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9eadc5ee-b48b-4078-9e5b-cbeb755a9d4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41201", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlaphzcmwc2n", "content": "CVE-2026-41201 - CI4MS: Backup Management Full Account Takeover for All-Roles & Privilege-Escalation via Stored DOM Blind XSS Version 2\nCVE ID : CVE-2026-41201\n \n Published : May 7, 2026, 4:16 a.m. | 2\u00a0hours, 4\u00a0minutes ago\n \n Description : CI4MS is a CodeIgniter 4-based CMS sk...", "creation_timestamp": "2026-05-07T07:37:58.922971Z"} 2026-05-07T07:37:58.922971+00:00 https://vulnerability.circl.lu/sighting/3ddf115b-c378-4c33-b62e-72a8906820d9/export 2026-06-10T04:00:28.108908+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "3ddf115b-c378-4c33-b62e-72a8906820d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41202", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116532473442667986", "content": "\ud83d\udd0e CVE-2026-41202: CRITICAL path traversal in ci4ms (<0.31.5.0) lets authenticated users upload ZIPs for remote code execution. Patch to 0.31.5.0 now! Details: https://radar.offseq.com/threat/cve-2026-41202-cwe-22-improper-limitation-of-a-pat-c7627c61 #OffSeq #infosec #CVE202641202 #vuln", "creation_timestamp": "2026-05-07T09:00:32.230146Z"} 2026-05-07T09:00:32.230146+00:00 https://vulnerability.circl.lu/sighting/54249b5d-40c8-48ac-aa14-889f9640ec6f/export 2026-06-10T04:00:28.108833+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "54249b5d-40c8-48ac-aa14-889f9640ec6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41202", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlau3oebzt2y", "content": "ci4ms (<0.31.5.0) faces CRITICAL path traversal (CVE-2026-41202). Authenticated users can trigger RCE via malicious ZIP restore. Upgrade to 0.31.5.0 ASAP! https://radar.offseq.com/threat/cve-2026-41202-cwe-22-improper-limitation-of-a-pat-c7627c61 #OffSeq #infosec #CVE202641202", "creation_timestamp": "2026-05-07T09:00:34.178931Z"} 2026-05-07T09:00:34.178931+00:00 https://vulnerability.circl.lu/sighting/ae70cf94-ff98-49d8-80c7-8e230761f3cd/export 2026-06-10T04:00:28.108754+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ae70cf94-ff98-49d8-80c7-8e230761f3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41201", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116532827037914049", "content": "\u26a0\ufe0f CRITICAL XSS in ci4ms 0.31.4.0 (CVE-2026-41201): Stored DOM XSS via backup filename lets attackers fully take over accounts. Upgrade to 0.31.5.0 now! https://radar.offseq.com/threat/cve-2026-41201-cwe-79-improper-neutralization-of-i-fc417f58 #OffSeq #XSS #Vuln #InfoSec", "creation_timestamp": "2026-05-07T10:30:27.429403Z"} 2026-05-07T10:30:27.429403+00:00 https://vulnerability.circl.lu/sighting/e3e04efa-3587-46ea-889c-58497f65a017/export 2026-06-10T04:00:28.108678+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e3e04efa-3587-46ea-889c-58497f65a017", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-41201", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlaz4hpvm32y", "content": "ci4ms 0.31.4.0 hit by CRITICAL XSS (CVSS 9.1) in backup module \u2014 attackers can hijack accounts. Upgrade to 0.31.5.0 now! https://radar.offseq.com/threat/cve-2026-41201-cwe-79-improper-neutralization-of-i-fc417f58 #OffSeq #XSS #PatchNow", "creation_timestamp": "2026-05-07T10:30:29.469421Z"} 2026-05-07T10:30:29.469421+00:00 https://vulnerability.circl.lu/sighting/068f9f49-d5d9-40c3-b70e-81d9d5e14d77/export 2026-06-10T04:00:28.108564+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "068f9f49-d5d9-40c3-b70e-81d9d5e14d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41201", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mmc3hwnkmj2c", "content": "CVE-2026-41201 - Critical Stored DOM XSS in Ci4ms CMS. Full account takeover via malicious SQL file in backup module. CVSS 9.1. Update to v0.31.5.0 now. #CVE #Ci4ms #infosec\n\nhttps://www.valtersit.com/cve/CVE-2026-41201/", "creation_timestamp": "2026-05-20T14:10:32.626188Z"} 2026-05-20T14:10:32.626188+00:00 https://vulnerability.circl.lu/sighting/63ddb1b6-4e6d-4b93-b854-3488b1e66da6/export 2026-06-10T04:00:28.108347+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "63ddb1b6-4e6d-4b93-b854-3488b1e66da6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41208", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mn6ejpir7f2v", "content": "\ud83d\udccc CVE-2026-41208 - Paperclip is a Node.js server and React UI that orchestrates a team of AI agents to run a business. Versions of @paperclipai/server prior to 2026.416.... https://www.cyberhub.blog/cves/CVE-2026-41208", "creation_timestamp": "2026-05-31T20:07:08.558041Z"} 2026-05-31T20:07:08.558041+00:00 https://vulnerability.circl.lu/sighting/61f24f13-b1d7-4e5b-87e7-c5e17acb43ab/export 2026-06-10T04:00:28.105398+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "61f24f13-b1d7-4e5b-87e7-c5e17acb43ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41207", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnidzlfbgm2f", "content": "CVE-2026-41207 - netty-incubator-codec-ohttp's HPKEContext operations may produce empty byte[] on failures\nCVE ID : CVE-2026-41207\n \n Published : June 4, 2026, 6:16 p.m. | 16\u00a0minutes ago\n \n Description : The netty incubator codec.bhttp is a java language binary http parser. Pr...", "creation_timestamp": "2026-06-04T19:24:44.748525Z"} 2026-06-04T19:24:44.748525+00:00