<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-16T19:38:36.416565+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2a0d2b6b-1512-442e-a23c-a1e7fb4b922a/export</id>
    <title>2a0d2b6b-1512-442e-a23c-a1e7fb4b922a</title>
    <updated>2026-07-16T19:38:36.439971+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2a0d2b6b-1512-442e-a23c-a1e7fb4b922a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48324", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mqqq2w6rh42h", "content": "\ud83d\udccc CVE-2026-48324 - ColdFusion is affected by an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability that could result in a... https://www.cyberhub.blog/cves/CVE-2026-48324", "creation_timestamp": "2026-07-16T07:37:07.223730Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2a0d2b6b-1512-442e-a23c-a1e7fb4b922a/export"/>
    <published>2026-07-16T07:37:07.223730+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7bb025c8-e4b9-44f6-a77d-46097606904f/export</id>
    <title>7bb025c8-e4b9-44f6-a77d-46097606904f</title>
    <updated>2026-07-16T19:38:36.442952+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7bb025c8-e4b9-44f6-a77d-46097606904f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48324", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mqo2753h3w2c", "content": "Adobe ColdFusion 2025 faces a CRITICAL SQL Injection (CVE-2026-48324, CVSS 9.1) enabling code execution. Patch not confirmed \u2014 restrict access &amp;amp; monitor for attacks now. https://radar.offseq.com/threat/cve-2026-48324-improper-neutralization-of-special--e4f7ad5cedb0440f #OffSeq #ColdFusion #Vulner...", "creation_timestamp": "2026-07-15T06:00:27.609877Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7bb025c8-e4b9-44f6-a77d-46097606904f/export"/>
    <published>2026-07-15T06:00:27.609877+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0d9fb17c-1b53-4373-931a-1340ba7c9f69/export</id>
    <title>0d9fb17c-1b53-4373-931a-1340ba7c9f69</title>
    <updated>2026-07-16T19:38:36.443092+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0d9fb17c-1b53-4373-931a-1340ba7c9f69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-48324", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116922464631643074", "content": "CVE-2026-48324 (CRITICAL, CVSS 9.1): Adobe ColdFusion 2025 suffers from an SQL Injection (CWE-89) allowing arbitrary code execution. No patch confirmed \u2014 restrict access &amp;amp; monitor SQL activity. https://radar.offseq.com/threat/cve-2026-48324-improper-neutralization-of-special--e4f7ad5cedb0440f #OffSeq #ColdFusion #SQLInjection #Vuln", "creation_timestamp": "2026-07-15T06:00:25.224044Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0d9fb17c-1b53-4373-931a-1340ba7c9f69/export"/>
    <published>2026-07-15T06:00:25.224044+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e2b058a3-e43a-4fd9-be73-1dcf5a91f318/export</id>
    <title>e2b058a3-e43a-4fd9-be73-1dcf5a91f318</title>
    <updated>2026-07-16T19:38:36.443226+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e2b058a3-e43a-4fd9-be73-1dcf5a91f318", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48324", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqndm3tvq72b", "content": "CVE-2026-48324\nColdFusion software is at risk of being exploited by malicious code that can execute arbitrary actions with the current user's permissions. This vulnerability can be exploited without user interaction, making\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-14T23:16:05.560548Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e2b058a3-e43a-4fd9-be73-1dcf5a91f318/export"/>
    <published>2026-07-14T23:16:05.560548+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/241b00e0-feae-49a3-9159-44093f6aabfc/export</id>
    <title>241b00e0-feae-49a3-9159-44093f6aabfc</title>
    <updated>2026-07-16T19:38:36.443337+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "241b00e0-feae-49a3-9159-44093f6aabfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-48324", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqncl5chk42x", "content": "CVE-2026-48324 - ColdFusion | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)\nCVE ID : CVE-2026-48324\n \n Published : July 14, 2026, 9:16 p.m. | 35\u00a0minutes ago\n \n Description : ColdFusion is affected by an Improper Neutralization of...", "creation_timestamp": "2026-07-14T22:57:39.808619Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/241b00e0-feae-49a3-9159-44093f6aabfc/export"/>
    <published>2026-07-14T22:57:39.808619+00:00</published>
  </entry>
</feed>
