https://vulnerability.circl.lu/sightings/feed 2026-06-04T07:52:38.578251+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/d966c83a-6cff-4055-ad9d-7da63c754881/export 2026-06-04T07:52:38.588074+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d966c83a-6cff-4055-ad9d-7da63c754881", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mmw6t4owuk2l", "content": "2/ \u26a0\ufe0f URGENT PATCH: CVE-2026-48172 in LiteSpeed cPanel Plugin (CVSS 9.8). Any cPanel user = root access to the whole server. CISA mandated patching by MAY 29. Millions of shared hosting servers potentially compromised.", "creation_timestamp": "2026-05-28T14:03:53.591558Z"} 2026-05-28T14:03:53.591558+00:00 https://vulnerability.circl.lu/sighting/2c581619-4465-4f95-8f56-8e94f771e0c4/export 2026-06-04T07:52:38.587990+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "2c581619-4465-4f95-8f56-8e94f771e0c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mmw6t4oxts2l", "content": "2/ \u26a0\ufe0f URGENT PATCH: CVE-2026-48172 in LiteSpeed cPanel Plugin (CVSS 9.8). Any cPanel user = root access to the whole server. CISA mandated patching by MAY 29. Millions of shared hosting servers potentially compromised.", "creation_timestamp": "2026-05-28T14:03:55.346302Z"} 2026-05-28T14:03:55.346302+00:00 https://vulnerability.circl.lu/sighting/d2aa4fa3-3ee1-46ac-8271-4bc085d1d360/export 2026-06-04T07:52:38.587910+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "d2aa4fa3-3ee1-46ac-8271-4bc085d1d360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mmw6t4oxtt2l", "content": "2/ \u26a0\ufe0f URGENT PATCH: CVE-2026-48172 in LiteSpeed cPanel Plugin (CVSS 9.8). Any cPanel user = root access to the whole server. CISA mandated patching by MAY 29. Millions of shared hosting servers potentially compromised.", "creation_timestamp": "2026-05-28T14:03:57.041229Z"} 2026-05-28T14:03:57.041229+00:00 https://vulnerability.circl.lu/sighting/24045840-3c60-4eeb-b068-adb23f1d89d9/export 2026-06-04T07:52:38.587829+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "24045840-3c60-4eeb-b068-adb23f1d89d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/sergioiker.bsky.social/post/3mmw6t4oxtu2l", "content": "2/ \u26a0\ufe0f URGENT PATCH: CVE-2026-48172 in LiteSpeed cPanel Plugin (CVSS 9.8). Any cPanel user = root access to the whole server. CISA mandated patching by MAY 29. Millions of shared hosting servers potentially compromised.", "creation_timestamp": "2026-05-28T14:03:58.959863Z"} 2026-05-28T14:03:58.959863+00:00 https://vulnerability.circl.lu/sighting/08025be9-d446-41ec-b7da-90fceb47ca04/export 2026-06-04T07:52:38.587741+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "08025be9-d446-41ec-b7da-90fceb47ca04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://mastodon.social/ap/users/115426718704364579/statuses/116652825312982674", "content": "\ud83d\udcf0 CISA Mandates Urgent Patch for Actively Exploited LiteSpeed cPanel Flaw Granting Root Access\n\u26a0\ufe0f CRITICAL ALERT: CISA adds LiteSpeed cPanel plugin flaw (CVE-2026-48172) to its KEV catalog. The bug allows for root access and is actively exploited. Patch immediately! #CVE #LiteSpeed #cPanel #CyberSecurity #PatchNow\n\ud83c\udf10 cyber[.]netsecops[.]io\n\ud83d\udd17 https://cyber.netsecops.io/articles/cisa-warns-of-actively-exploited-litespeed-cpanel-plugin-flaw/?utm_source=mastodon&utm_medi\u2026", "creation_timestamp": "2026-05-28T15:08:05.625781Z"} 2026-05-28T15:08:05.625781+00:00 https://vulnerability.circl.lu/sighting/fc5216d8-c0c3-434f-be70-8cf1f632c6f0/export 2026-06-04T07:52:38.587657+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "fc5216d8-c0c3-434f-be70-8cf1f632c6f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/netsecio.bsky.social/post/3mmwchl327z2c", "content": "\u26a0\ufe0f CRITICAL ALERT: CISA adds LiteSpeed cPanel plugin flaw (CVE-2026-48172) to its KEV catalog. The bug allows for root access and is actively exploited. Patch immediately! #CVE #LiteSpeed #cPanel #CyberSecurity #PatchNow\n\n\ud83c\udf10 cyber[.]netsecops[.]io", "creation_timestamp": "2026-05-28T15:08:52.185085Z"} 2026-05-28T15:08:52.185085+00:00 https://vulnerability.circl.lu/sighting/b096b8b2-db2b-45ce-8c6a-3d72411d4bd4/export 2026-06-04T07:52:38.587577+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b096b8b2-db2b-45ce-8c6a-3d72411d4bd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "Telegram/gT5VG53EHkYx7lJsNMzVATNBd8Pb7In7gs06zL9W87J77Dc", "content": "", "creation_timestamp": "2026-05-28T21:00:04.000000Z"} 2026-05-28T21:00:04+00:00 https://vulnerability.circl.lu/sighting/ff55865e-fad5-404d-bcf6-a10b5935559b/export 2026-06-04T07:52:38.587481+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ff55865e-fad5-404d-bcf6-a10b5935559b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/diesec.bsky.social/post/3mmyezng4n623", "content": "CVE-2026-48172 (CVSS 10.0): any cPanel user can run scripts as root via the LiteSpeed plugin.\nCISA KEV added May 26. Active exploitation confirmed. \n\nUpdate to plugin version 2.4.5 now.\nFederal deadline June 16.\n\n#CyberSecurity #CISA #WebHosting", "creation_timestamp": "2026-05-29T11:00:05.240641Z"} 2026-05-29T11:00:05.240641+00:00 https://vulnerability.circl.lu/sighting/aae196ef-be22-48b0-9c42-8649498dfe7d/export 2026-06-04T07:52:38.587367+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "aae196ef-be22-48b0-9c42-8649498dfe7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48172", "type": "seen", "source": "https://bsky.app/profile/getpacketai.bsky.social/post/3mn3lcde6sc2s", "content": "Critical LiteSpeed cPanel plugin flaw (CVSS 10.0) actively exploited in the wild\u2014allows any user to run scripts as root. Patch urgently if you're using cPanel with LiteSpeed.\n\nhttps://thehackernews.com/2026/05/litespeed-cpanel-plugin-cve-2026-48172.html\n\n#cybersecurity #infosec", "creation_timestamp": "2026-05-30T17:30:17.820651Z"} 2026-05-30T17:30:17.820651+00:00 https://vulnerability.circl.lu/sighting/73baa8f0-12ce-4b37-8fb3-4613083b6ad9/export 2026-06-04T07:52:38.586152+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "73baa8f0-12ce-4b37-8fb3-4613083b6ad9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48172", "type": "seen", "source": "https://bsky.app/profile/hapsis.bsky.social/post/3mn57tiswik2y", "content": "LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root\n\nthehackernews.com/2026/05/lite...\n\n#Cybersecurity #ThreatIntel #Vulnerability", "creation_timestamp": "2026-05-31T09:10:30.737997Z"} 2026-05-31T09:10:30.737997+00:00