<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T16:24:06.149272+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c15c6f2b-d95f-4ae3-b74e-1a660f39772d/export</id>
    <title>c15c6f2b-d95f-4ae3-b74e-1a660f39772d</title>
    <updated>2026-07-15T16:24:06.177364+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c15c6f2b-d95f-4ae3-b74e-1a660f39772d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4275", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mqatqsu5rv2o", "content": "CVE-2026-4275. CVSS 8.8. Divi Torque Lite lets anyone install plugins without logging in. Your site becomes a staging ground for attackers. Update to 4.2.3 now. Scan: pulse-wp.com\n#WordPress #CSRF #CyberSecurity", "creation_timestamp": "2026-07-10T00:00:27.833369Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c15c6f2b-d95f-4ae3-b74e-1a660f39772d/export"/>
    <published>2026-07-10T00:00:27.833369+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/658bd655-4d08-4948-ba74-3fa970591592/export</id>
    <title>658bd655-4d08-4948-ba74-3fa970591592</title>
    <updated>2026-07-15T16:24:06.179075+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "658bd655-4d08-4948-ba74-3fa970591592", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4275", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mq7vgdjneg26", "content": "CVE-2026-4275 - Divi Torque Lite\nCVE ID : CVE-2026-4275\n \n Published : July 9, 2026, 11:16 a.m. | 3\u00a0hours, 15\u00a0minutes ago\n \n Description : The Divi Torque Lite \u2013 Divi Theme, Divi Builder &amp;amp; Extra Theme plugin for WordPress is vulnerable to Cross-Site Request Forgery in all ...", "creation_timestamp": "2026-07-09T14:57:43.687746Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/658bd655-4d08-4948-ba74-3fa970591592/export"/>
    <published>2026-07-09T14:57:43.687746+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/60a3950b-6bf5-4e00-b3c1-2e9e3460b789/export</id>
    <title>60a3950b-6bf5-4e00-b3c1-2e9e3460b789</title>
    <updated>2026-07-15T16:24:06.179198+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "60a3950b-6bf5-4e00-b3c1-2e9e3460b789", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42755", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmto7bln332n", "content": "\ud83d\udd34 CVE-2026-42755 - Critical (9.3)\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerabilit...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42755/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T14:00:59.359133Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/60a3950b-6bf5-4e00-b3c1-2e9e3460b789/export"/>
    <published>2026-05-27T14:00:59.359133+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3f65ec19-f251-4cfc-b28b-2cc2c00ade7e/export</id>
    <title>3f65ec19-f251-4cfc-b28b-2cc2c00ade7e</title>
    <updated>2026-07-15T16:24:06.179291+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3f65ec19-f251-4cfc-b28b-2cc2c00ade7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42754", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtkofkna62q", "content": "CVE-2026-42754 - WordPress Favicon plugin\nCVE ID : CVE-2026-42754\n \n Published : May 27, 2026, 11:16 a.m. | 48\u00a0minutes ago\n \n Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in phbernard Favicon favicon-by-realfa...", "creation_timestamp": "2026-05-27T12:57:53.769718Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3f65ec19-f251-4cfc-b28b-2cc2c00ade7e/export"/>
    <published>2026-05-27T12:57:53.769718+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c4aa1e86-6127-4c27-a99c-6a322edb13d7/export</id>
    <title>c4aa1e86-6127-4c27-a99c-6a322edb13d7</title>
    <updated>2026-07-15T16:24:06.179378+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c4aa1e86-6127-4c27-a99c-6a322edb13d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42759", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtkkb5yzt2r", "content": "CVE-2026-42759 - WordPress Affiliate Super Assistent plugin\nCVE ID : CVE-2026-42759\n \n Published : May 27, 2026, 11:16 a.m. | 48\u00a0minutes ago\n \n Description : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Timo Affiliate Su...", "creation_timestamp": "2026-05-27T12:55:33.335150Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c4aa1e86-6127-4c27-a99c-6a322edb13d7/export"/>
    <published>2026-05-27T12:55:33.335150+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/62922000-207b-4017-93a3-d8eb39a7d075/export</id>
    <title>62922000-207b-4017-93a3-d8eb39a7d075</title>
    <updated>2026-07-15T16:24:06.179467+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "62922000-207b-4017-93a3-d8eb39a7d075", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42758", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmtjcflqm22c", "content": "CVE-2026-42758 - WordPress WebinarIgnition plugin\nCVE ID : CVE-2026-42758\n \n Published : 27 May 2026, 9:49 a.m. | 1\u00a0hour, 20\u00a0minutes ago\n \n Description : Incorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-ignition allows Privilege ...", "creation_timestamp": "2026-05-27T12:33:14.691031Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/62922000-207b-4017-93a3-d8eb39a7d075/export"/>
    <published>2026-05-27T12:33:14.691031+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6dc2845d-9e6c-49ba-8288-32a57b765729/export</id>
    <title>6dc2845d-9e6c-49ba-8288-32a57b765729</title>
    <updated>2026-07-15T16:24:06.179559+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6dc2845d-9e6c-49ba-8288-32a57b765729", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42756", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmti44iy5t2k", "content": "CVE-2026-42756 - WordPress QuickWebP \u2013 Compress / Optimize Images &amp;amp; Convert WebP | SEO Friendly plugin\nCVE ID : CVE-2026-42756\n \n Published : 27 May 2026, 9:49 a.m. | 1\u00a0hour, 20\u00a0minutes ago\n \n Description : Improper Limitation of a Pathname to a Restricted Directory ('Path Tra...", "creation_timestamp": "2026-05-27T12:11:50.096677Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6dc2845d-9e6c-49ba-8288-32a57b765729/export"/>
    <published>2026-05-27T12:11:50.096677+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/77297b5c-0aff-421d-aa7f-3a75e18578d0/export</id>
    <title>77297b5c-0aff-421d-aa7f-3a75e18578d0</title>
    <updated>2026-07-15T16:24:06.179652+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "77297b5c-0aff-421d-aa7f-3a75e18578d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42758", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthiihcsk2w", "content": "\ud83d\udd34 CVE-2026-42758 - Critical (9.8)\n\nIncorrect Privilege Assignment vulnerability in Saleswonder Team: Tobias WebinarIgnition webinar-...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42758/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T12:00:52.125584Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/77297b5c-0aff-421d-aa7f-3a75e18578d0/export"/>
    <published>2026-05-27T12:00:52.125584+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/61a739f2-15ab-42b4-8dc2-650217b91f04/export</id>
    <title>61a739f2-15ab-42b4-8dc2-650217b91f04</title>
    <updated>2026-07-15T16:24:06.179740+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "61a739f2-15ab-42b4-8dc2-650217b91f04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42757", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthiasatw2s", "content": "\ud83d\udd34 CVE-2026-42757 - Critical (9.9)\n\nImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in S...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42757/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T12:00:44.127446Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/61a739f2-15ab-42b4-8dc2-650217b91f04/export"/>
    <published>2026-05-27T12:00:44.127446+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/861cf73e-0ac6-4d66-9cdf-e0b402117938/export</id>
    <title>861cf73e-0ac6-4d66-9cdf-e0b402117938</title>
    <updated>2026-07-15T16:24:06.180716+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "861cf73e-0ac6-4d66-9cdf-e0b402117938", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-42756", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mmthhzbw3y2c", "content": "\ud83d\udd34 CVE-2026-42756 - Critical (9.9)\n\nImproper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in L...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-42756/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-27T12:00:36.620280Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/861cf73e-0ac6-4d66-9cdf-e0b402117938/export"/>
    <published>2026-05-27T12:00:36.620280+00:00</published>
  </entry>
</feed>
