Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-07T06:49:18.272037+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/8865c4be-d77e-4908-b9c7-9c1e01307fd6/export 8865c4be-d77e-4908-b9c7-9c1e01307fd6 2026-06-07T06:49:18.279829+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "8865c4be-d77e-4908-b9c7-9c1e01307fd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-03)", "content": "", "creation_timestamp": "2026-06-03T00:00:00.000000Z"} 2026-06-03T00:00:00+00:00 https://vulnerability.circl.lu/sighting/e0396206-098c-4370-959e-898d1bebd445/export e0396206-098c-4370-959e-898d1bebd445 2026-06-07T06:49:18.279756+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e0396206-098c-4370-959e-898d1bebd445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-03)", "content": "", "creation_timestamp": "2026-06-03T00:00:00.000000Z"} 2026-06-03T00:00:00+00:00 https://vulnerability.circl.lu/sighting/854daec3-8702-4d14-a9d9-938dfe06e659/export 854daec3-8702-4d14-a9d9-938dfe06e659 2026-06-07T06:49:18.279672+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "854daec3-8702-4d14-a9d9-938dfe06e659", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/wasacon.bsky.social/post/3mneloscbup2a", "content": "\ud83d\udea8 CVE-2026-41940 in cPanel wird aktiv angegriffen! \ud83d\ude33\nHosting-Server & Adminpanels weltweit im Fokus. Jetzt sofort patchen, MFA aktivieren und Logs pr\u00fcfen.\n\n#CyberSecurity #cPanel #Linux #Hosting #Hacker", "creation_timestamp": "2026-06-03T07:31:14.038171Z"} 2026-06-03T07:31:14.038171+00:00 https://vulnerability.circl.lu/sighting/153fdcc8-0404-4497-ab9b-a4446512c4b3/export 153fdcc8-0404-4497-ab9b-a4446512c4b3 2026-06-07T06:49:18.279597+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "153fdcc8-0404-4497-ab9b-a4446512c4b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} 2026-06-04T00:00:00+00:00 https://vulnerability.circl.lu/sighting/b14573e4-9d4e-48e3-adf4-e51b3f8be249/export b14573e4-9d4e-48e3-adf4-e51b3f8be249 2026-06-07T06:49:18.279517+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b14573e4-9d4e-48e3-adf4-e51b3f8be249", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} 2026-06-04T00:00:00+00:00 https://vulnerability.circl.lu/sighting/0c02cad5-ed03-445a-9a29-9be77e18a6c1/export 0c02cad5-ed03-445a-9a29-9be77e18a6c1 2026-06-07T06:49:18.279434+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0c02cad5-ed03-445a-9a29-9be77e18a6c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/pentest-tools.com/post/3mnhe2g72vk2v", "content": "We also cover CVE-2026-41940, the cPanel & WHM auth bypass (CVSS 9.8, in CISA KEV).\nAnd new research: we asked 241 devs who use AI coding tools whether the validation gap widened. 76% use AI always or usually. Only 9% say testing keeps pace.\nWatch the full video walkthrough.", "creation_timestamp": "2026-06-04T09:52:33.527482Z"} 2026-06-04T09:52:33.527482+00:00 https://vulnerability.circl.lu/sighting/aaf5057e-adc7-41ed-ae0e-992e2323488c/export aaf5057e-adc7-41ed-ae0e-992e2323488c 2026-06-07T06:49:18.279353+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "aaf5057e-adc7-41ed-ae0e-992e2323488c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3mnhtszjofo2f", "content": "Caught the cPanel exploit (CVE-2026-41940) May 11. CISA listed it June 4. Public exploit = attack cost ~$0; you still pay weeks to patch. That 24-day gap is the breach: https://www.dugganusa.com/post/we-flagged-the-cpanel-exploit-24-days-before-cisa-listed-it-the-economics-of-that-gap-should-scare", "creation_timestamp": "2026-06-04T14:34:46.695460Z"} 2026-06-04T14:34:46.695460+00:00 https://vulnerability.circl.lu/sighting/a8c699a4-e74d-46ba-820a-dd343c08b945/export a8c699a4-e74d-46ba-820a-dd343c08b945 2026-06-07T06:49:18.279270+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a8c699a4-e74d-46ba-820a-dd343c08b945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} 2026-06-05T00:00:00+00:00 https://vulnerability.circl.lu/sighting/4b902b92-bcbe-4e72-8098-5e92fba79d52/export 4b902b92-bcbe-4e72-8098-5e92fba79d52 2026-06-07T06:49:18.279144+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4b902b92-bcbe-4e72-8098-5e92fba79d52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-05)", "content": "", "creation_timestamp": "2026-06-05T00:00:00.000000Z"} 2026-06-05T00:00:00+00:00 https://vulnerability.circl.lu/sighting/7efa85c6-ef2a-4810-a215-87d905174494/export 7efa85c6-ef2a-4810-a215-87d905174494 2026-06-07T06:49:18.277843+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7efa85c6-ef2a-4810-a215-87d905174494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-41940", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/87441", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026 #POC\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a CVE-2026-41940-PoC\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a olofsatte\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Python\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-05 13:59:03\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel and WHM. This repository is designed to demonstrate its Proof-Of-Concept\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-05T14:00:04.000000Z"} 2026-06-05T14:00:04+00:00