https://vulnerability.circl.lu/sightings/feed 2026-06-09T11:47:57.446533+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/0c02cad5-ed03-445a-9a29-9be77e18a6c1/export 2026-06-09T11:47:57.460138+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0c02cad5-ed03-445a-9a29-9be77e18a6c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3mnhe2g72vk2v", "content": "We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, in CISA KEV).\nAnd new research: we asked 241 devs who use AI coding tools whether the validation gap widened. 76% use AI always or usually. Only 9% say testing keeps pace.\nWatch the full video walkthrough.", "creation_timestamp": "2026-06-04T09:52:33.527482Z"} 2026-06-04T09:52:33.527482+00:00 https://vulnerability.circl.lu/sighting/aaf5057e-adc7-41ed-ae0e-992e2323488c/export 2026-06-09T11:47:57.459979+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "aaf5057e-adc7-41ed-ae0e-992e2323488c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnhtszjofo2f", "content": "Caught the cPanel exploit (CVE-2026-41940) May 11. CISA listed it June 4. Public exploit = attack cost ~$0; you still pay weeks to patch. That 24-day gap is the breach: https://www.dugganusa.com/post/we-flagged-the-cpanel-exploit-24-days-before-cisa-listed-it-the-economics-of-that-gap-should-scare", "creation_timestamp": "2026-06-04T14:34:46.695460Z"} 2026-06-04T14:34:46.695460+00:00 https://vulnerability.circl.lu/sighting/a8c699a4-e74d-46ba-820a-dd343c08b945/export 2026-06-09T11:47:57.459824+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a8c699a4-e74d-46ba-820a-dd343c08b945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} 2026-06-05T00:00:00+00:00 https://vulnerability.circl.lu/sighting/4b902b92-bcbe-4e72-8098-5e92fba79d52/export 2026-06-09T11:47:57.459665+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4b902b92-bcbe-4e72-8098-5e92fba79d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} 2026-06-05T00:00:00+00:00 https://vulnerability.circl.lu/sighting/7efa85c6-ef2a-4810-a215-87d905174494/export 2026-06-09T11:47:57.459478+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7efa85c6-ef2a-4810-a215-87d905174494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/87441", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-41940-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a olofsatte\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-05 13:59:03\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel and WHM. This repository is designed to demonstrate its Proof-Of-Concept\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-05T14:00:04.000000Z"} 2026-06-05T14:00:04+00:00 https://vulnerability.circl.lu/sighting/99ba17fe-10d9-4a52-88ff-d391a42e3cad/export 2026-06-09T11:47:57.459311+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "99ba17fe-10d9-4a52-88ff-d391a42e3cad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-06)", "content": "", "creation_timestamp": "2026-06-06T00:00:00.000000Z"} 2026-06-06T00:00:00+00:00 https://vulnerability.circl.lu/sighting/e3af1ecd-17b1-4531-9d38-4c79c1768717/export 2026-06-09T11:47:57.459148+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e3af1ecd-17b1-4531-9d38-4c79c1768717", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-07)", "content": "", "creation_timestamp": "2026-06-07T00:00:00.000000Z"} 2026-06-07T00:00:00+00:00 https://vulnerability.circl.lu/sighting/ce43427c-594f-4c56-bedf-7120b98779e1/export 2026-06-09T11:47:57.458957+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ce43427c-594f-4c56-bedf-7120b98779e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-08)", "content": "", "creation_timestamp": "2026-06-08T00:00:00.000000Z"} 2026-06-08T00:00:00+00:00 https://vulnerability.circl.lu/sighting/38663a93-8873-49d3-af50-ac037b22710f/export 2026-06-09T11:47:57.458531+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "38663a93-8873-49d3-af50-ac037b22710f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-08)", "content": "", "creation_timestamp": "2026-06-08T00:00:00.000000Z"} 2026-06-08T00:00:00+00:00 https://vulnerability.circl.lu/sighting/1e01d00f-9d19-4109-9a35-b22fc89ca4a2/export 2026-06-09T11:47:57.455415+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "1e01d00f-9d19-4109-9a35-b22fc89ca4a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/cwealthsentinel.bsky.social/post/3mnrhtskk2i2a", "content": "This week in cyber: ShinyHunters leaks 42M Charter records, cPanel flaw (CVE-2026-41940) hits 40K+ servers, and Cisco patches its 6th SD-WAN zero-day of 2026. Identity and patch lag are doing the damage. \n\nFull Top 5 \u2192 commonwealthsentinel.com/cyber-securi... \n\nCyberSecurity #InfoSec", "creation_timestamp": "2026-06-08T10:27:04.587476Z"} 2026-06-08T10:27:04.587476+00:00