<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T19:46:39.545261+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5e20e8ab-0d7d-4956-9448-e7bb5f54e228/export</id>
    <title>5e20e8ab-0d7d-4956-9448-e7bb5f54e228</title>
    <updated>2026-07-15T19:46:39.575466+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5e20e8ab-0d7d-4956-9448-e7bb5f54e228", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5269", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqp2wcttif2y", "content": "CVE-2026-5269 - navigator ncs\nCiena's Navigator Network Control Suite and Manage Control Plan have hidden system accounts with easily guessable passwords. These accounts don't have much power on their\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#navigatorncs #ciena #CVE #infosec", "creation_timestamp": "2026-07-15T15:46:04.199980Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5e20e8ab-0d7d-4956-9448-e7bb5f54e228/export"/>
    <published>2026-07-15T15:46:04.199980+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/21b48446-b38e-4b73-8c53-b65cd67c6e81/export</id>
    <title>21b48446-b38e-4b73-8c53-b65cd67c6e81</title>
    <updated>2026-07-15T19:46:39.580047+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "21b48446-b38e-4b73-8c53-b65cd67c6e81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5269", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqnfnw7qtt2i", "content": "CVE-2026-5269 - Navigator NCS and MCP System Accounts with Default Passwords\nCVE ID : CVE-2026-5269\n \n Published : July 14, 2026, 11:17 p.m. | 14\u00a0minutes ago\n \n Description : In Ciena's Navigator Network Control Suite (NCS) and Manage Control Plan (MCP), there are hidden syste...", "creation_timestamp": "2026-07-14T23:52:54.200306Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/21b48446-b38e-4b73-8c53-b65cd67c6e81/export"/>
    <published>2026-07-14T23:52:54.200306+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/238d8b39-6fc5-43d2-8713-ea3b864fe9a3/export</id>
    <title>238d8b39-6fc5-43d2-8713-ea3b864fe9a3</title>
    <updated>2026-07-15T19:46:39.580224+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "238d8b39-6fc5-43d2-8713-ea3b864fe9a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-52693", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116758257705278854", "content": "\ud83d\udd34 CRITICAL: CVE-2026-52693 in impleCode eCommerce Product Catalog &amp;lt;=3.5.5 enables unauthenticated SQL Injection. Sensitive data at risk \u2014 patch status unconfirmed. Apply input validation &amp;amp; watch for vendor updates. https://radar.offseq.com/threat/cve-2026-52693-cwe-89-improper-neutralization-of-s-53fcc5a2 #OffSeq #SQLInjection #Infosec #Vuln", "creation_timestamp": "2026-06-16T06:00:43.840125Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/238d8b39-6fc5-43d2-8713-ea3b864fe9a3/export"/>
    <published>2026-06-16T06:00:43.840125+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/976ca89d-2c83-4948-be32-e51fa51f8226/export</id>
    <title>976ca89d-2c83-4948-be32-e51fa51f8226</title>
    <updated>2026-07-15T19:46:39.580348+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "976ca89d-2c83-4948-be32-e51fa51f8226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-52693", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mof4ohota627", "content": "CRITICAL: Unauthenticated SQL Injection in impleCode eCommerce Product Catalog &amp;lt;=3.5.5. Sensitive data at risk. Patch status unknown \u2014 implement input validation &amp;amp; monitor vendor. https://radar.offseq.com/threat/cve-2026-52693-cwe-89-improper-neutralization-of-s-53fcc5a2 #OffSeq #SQLInjection #ec...", "creation_timestamp": "2026-06-16T06:00:28.214051Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/976ca89d-2c83-4948-be32-e51fa51f8226/export"/>
    <published>2026-06-16T06:00:28.214051+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b4aa49b0-f41f-47c5-92e0-7fa3615373c6/export</id>
    <title>b4aa49b0-f41f-47c5-92e0-7fa3615373c6</title>
    <updated>2026-07-15T19:46:39.580464+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b4aa49b0-f41f-47c5-92e0-7fa3615373c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52693", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moelwr42op2n", "content": "\ud83d\udd34 CVE-2026-52693 - Critical (9.3)\n\nUnauthenticated SQL Injection in eCommerce Product Catalog &amp;lt;= 3.5.5 versions.\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-52693/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-16T01:00:53.565485Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b4aa49b0-f41f-47c5-92e0-7fa3615373c6/export"/>
    <published>2026-06-16T01:00:53.565485+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0dea03ef-6073-4c7c-be54-16315f8e8c93/export</id>
    <title>0dea03ef-6073-4c7c-be54-16315f8e8c93</title>
    <updated>2026-07-15T19:46:39.580593+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0dea03ef-6073-4c7c-be54-16315f8e8c93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52699", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moeizrwkeq2a", "content": "CVE-2026-52699 - WordPress VikRentCar plugin\nCVE ID : CVE-2026-52699\n \n Published : June 15, 2026, 9:17 p.m. | 2\u00a0hours, 24\u00a0minutes ago\n \n Description : Unauthenticated Insecure Direct Object References (IDOR) in VikRentCar &amp;lt;= 1.4.5 versions.\n \n Severity: 7.5 | HIGH\n \n Visit...", "creation_timestamp": "2026-06-16T00:08:52.776544Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0dea03ef-6073-4c7c-be54-16315f8e8c93/export"/>
    <published>2026-06-16T00:08:52.776544+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7896236a-3794-4069-8a38-3ac91b9cf49d/export</id>
    <title>7896236a-3794-4069-8a38-3ac91b9cf49d</title>
    <updated>2026-07-15T19:46:39.580703+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7896236a-3794-4069-8a38-3ac91b9cf49d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52695", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moeiifsxce2m", "content": "CVE-2026-52695 - WordPress ABC Crypto Checkout plugin\nCVE ID : CVE-2026-52695\n \n Published : June 15, 2026, 9:17 p.m. | 2\u00a0hours, 24\u00a0minutes ago\n \n Description : Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout &amp;lt;= 1.8.2 versions.\n \n Severity: 7.5 | HIGH\n \n Visi...", "creation_timestamp": "2026-06-15T23:59:09.726037Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7896236a-3794-4069-8a38-3ac91b9cf49d/export"/>
    <published>2026-06-15T23:59:09.726037+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/10efc950-1edf-45bc-a662-4bf31efde9b2/export</id>
    <title>10efc950-1edf-45bc-a662-4bf31efde9b2</title>
    <updated>2026-07-15T19:46:39.580815+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "10efc950-1edf-45bc-a662-4bf31efde9b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52692", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moefbee6n22n", "content": "\ud83d\udfe0 CVE-2026-52692 - High (7.5)\n\nUnauthenticated Sensitive Data Exposure in Affiliates Manager &amp;lt;= 2.9.50 versions.\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-52692/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-15T23:01:32.612743Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/10efc950-1edf-45bc-a662-4bf31efde9b2/export"/>
    <published>2026-06-15T23:01:32.612743+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/463970cf-0b5a-4e89-a1bc-2fff52538b99/export</id>
    <title>463970cf-0b5a-4e89-a1bc-2fff52538b99</title>
    <updated>2026-07-15T19:46:39.580920+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "463970cf-0b5a-4e89-a1bc-2fff52538b99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52693", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moecblu3xg22", "content": "CVE-2026-52693 - WordPress eCommerce Product Catalog plugin\nCVE ID : CVE-2026-52693\n \n Published : June 15, 2026, 8:19 p.m. | 49\u00a0minutes ago\n \n Description : Unauthenticated SQL Injection in eCommerce Product Catalog &amp;lt;= 3.5.5 versions.\n \n Severity: 9.3 | CRITICAL\n \n Visit t...", "creation_timestamp": "2026-06-15T22:07:58.605290Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/463970cf-0b5a-4e89-a1bc-2fff52538b99/export"/>
    <published>2026-06-15T22:07:58.605290+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/47c7bbc5-07d7-4cf5-afcb-01daa7e59a37/export</id>
    <title>47c7bbc5-07d7-4cf5-afcb-01daa7e59a37</title>
    <updated>2026-07-15T19:46:39.581030+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "47c7bbc5-07d7-4cf5-afcb-01daa7e59a37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52699", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moebwccie52y", "content": "\ud83d\udfe0 CVE-2026-52699 - High (7.5)\n\nUnauthenticated Insecure Direct Object References (IDOR) in VikRentCar &amp;lt;= 1.4.5 versions.\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-52699/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-15T22:01:40.283706Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/47c7bbc5-07d7-4cf5-afcb-01daa7e59a37/export"/>
    <published>2026-06-15T22:01:40.283706+00:00</published>
  </entry>
</feed>
