<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T21:18:18.874639+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/492bea6e-1ecd-43ab-aec1-8aafc023d163/export</id>
    <title>492bea6e-1ecd-43ab-aec1-8aafc023d163</title>
    <updated>2026-07-15T21:18:18.899893+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "492bea6e-1ecd-43ab-aec1-8aafc023d163", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5270", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqotriltvq2p", "content": "CVE-2026-5270 - navigator ncs\nCiena Navigator and Blue Planet products may allow unauthorized access. This is a serious security risk because attackers can bypass security checks and gain access to\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#navigatorncs #blueplanet #CVE #infosec", "creation_timestamp": "2026-07-15T13:38:06.767528Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/492bea6e-1ecd-43ab-aec1-8aafc023d163/export"/>
    <published>2026-07-15T13:38:06.767528+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/777b7c1a-9657-4e9d-bbc1-6bea30771ecc/export</id>
    <title>777b7c1a-9657-4e9d-bbc1-6bea30771ecc</title>
    <updated>2026-07-15T21:18:18.903275+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "777b7c1a-9657-4e9d-bbc1-6bea30771ecc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-5270", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqngczzwyz2x", "content": "CVE-2026-5270 - Authentication Bypass in Navigator and Blue Planet Products\nCVE ID : CVE-2026-5270\n \n Published : July 14, 2026, 11:17 p.m. | 14\u00a0minutes ago\n \n Description : An authentication bypass vulnerability exists in certain releases of Ciena Navigator Network Control Su...", "creation_timestamp": "2026-07-15T00:04:42.778491Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/777b7c1a-9657-4e9d-bbc1-6bea30771ecc/export"/>
    <published>2026-07-15T00:04:42.778491+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4b8b952f-4c17-4264-9a34-15e9ac799128/export</id>
    <title>4b8b952f-4c17-4264-9a34-15e9ac799128</title>
    <updated>2026-07-15T21:18:18.903629+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4b8b952f-4c17-4264-9a34-15e9ac799128", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52706", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moihui2ijg2g", "content": "CVE-2026-52706 - WordPress JetEngine plugin\nCVE ID : CVE-2026-52706\n \n Published : June 17, 2026, 9:51 a.m. | 3\u00a0hours, 17\u00a0minutes ago\n \n Description : Unauthenticated PHP Object Injection in JetEngine &amp;lt;= 3.8.10 versions.\n \n Severity: 9.8 | CRITICAL\n \n Visit the link for mor...", "creation_timestamp": "2026-06-17T13:58:39.798980Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4b8b952f-4c17-4264-9a34-15e9ac799128/export"/>
    <published>2026-06-17T13:58:39.798980+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e6f6b8da-4f07-4bff-b9f7-6d53dacc4ca5/export</id>
    <title>e6f6b8da-4f07-4bff-b9f7-6d53dacc4ca5</title>
    <updated>2026-07-15T21:18:18.903763+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e6f6b8da-4f07-4bff-b9f7-6d53dacc4ca5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52705", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moigzsfneq25", "content": "CVE-2026-52705 - WordPress SigmaForms Pro \u2013 AI Generated Forms plugin\nCVE ID : CVE-2026-52705\n \n Published : June 17, 2026, 9:51 a.m. | 3\u00a0hours, 17\u00a0minutes ago\n \n Description : Unauthenticated Arbitrary File Upload in SigmaForms Pro \u2013 AI Generated Forms &amp;lt;= 1.4.5 versions.\n ...", "creation_timestamp": "2026-06-17T13:43:44.771758Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e6f6b8da-4f07-4bff-b9f7-6d53dacc4ca5/export"/>
    <published>2026-06-17T13:43:44.771758+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7d6ef00d-f061-42bf-acbd-0717249bad90/export</id>
    <title>7d6ef00d-f061-42bf-acbd-0717249bad90</title>
    <updated>2026-07-15T21:18:18.903864+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7d6ef00d-f061-42bf-acbd-0717249bad90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-52703", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116757903852347463", "content": "\u26a0\ufe0f CRITICAL: CVE-2026-52703 in Ninja Team FastDup (&amp;lt;=2.7.2) enables unauthenticated path traversal. Attackers could access restricted files. Monitor for vendor updates and restrict access! https://radar.offseq.com/threat/cve-2026-52703-cwe-35-path-traversal-in-ninja-team-07f46330 #OffSeq #vulnerability #infosec", "creation_timestamp": "2026-06-16T04:30:29.604208Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7d6ef00d-f061-42bf-acbd-0717249bad90/export"/>
    <published>2026-06-16T04:30:29.604208+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fb90b7ea-7934-48ba-8446-af3aca2ef924/export</id>
    <title>fb90b7ea-7934-48ba-8446-af3aca2ef924</title>
    <updated>2026-07-15T21:18:18.903939+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fb90b7ea-7934-48ba-8446-af3aca2ef924", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-52703", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3moexnkgnj42p", "content": "CRITICAL alert \ud83d\udea8: Ninja Team FastDup (&amp;lt;=2.7.2) hit by unauthenticated path traversal flaw. Review deployments, restrict access, and watch for patches! https://radar.offseq.com/threat/cve-2026-52703-cwe-35-path-traversal-in-ninja-team-07f46330 #OffSeq #vulnerability #security", "creation_timestamp": "2026-06-16T04:30:28.904848Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fb90b7ea-7934-48ba-8446-af3aca2ef924/export"/>
    <published>2026-06-16T04:30:28.904848+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9fccf661-5d8a-4c61-9e14-f34f268fac2c/export</id>
    <title>9fccf661-5d8a-4c61-9e14-f34f268fac2c</title>
    <updated>2026-07-15T21:18:18.904002+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9fccf661-5d8a-4c61-9e14-f34f268fac2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52702", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moei6c4drq2j", "content": "CVE-2026-52702 - WordPress SEO Redirection plugin\nCVE ID : CVE-2026-52702\n \n Published : June 15, 2026, 9:17 p.m. | 2\u00a0hours, 24\u00a0minutes ago\n \n Description : Unauthenticated Cross Site Scripting (XSS) in SEO Redirection &amp;lt;= 9.17 versions.\n \n Severity: 7.1 | HIGH\n \n Visit the ...", "creation_timestamp": "2026-06-15T23:53:30.289794Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9fccf661-5d8a-4c61-9e14-f34f268fac2c/export"/>
    <published>2026-06-15T23:53:30.289794+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ac81a869-729e-4e32-8a37-4e12f2c066c3/export</id>
    <title>ac81a869-729e-4e32-8a37-4e12f2c066c3</title>
    <updated>2026-07-15T21:18:18.904062+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ac81a869-729e-4e32-8a37-4e12f2c066c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52703", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3moefb56g4m2n", "content": "\ud83d\udd34 CVE-2026-52703 - Critical (9.6)\n\nUnauthenticated Path Traversal in FastDup &amp;lt;= 2.7.2 versions.\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-52703/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-15T23:01:25.046475Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ac81a869-729e-4e32-8a37-4e12f2c066c3/export"/>
    <published>2026-06-15T23:01:25.046475+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b9d526a4-4916-48f5-947c-31a7894fe0ba/export</id>
    <title>b9d526a4-4916-48f5-947c-31a7894fe0ba</title>
    <updated>2026-07-15T21:18:18.904125+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b9d526a4-4916-48f5-947c-31a7894fe0ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52703", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moeckkecr52j", "content": "CVE-2026-52703 - WordPress FastDup plugin\nCVE ID : CVE-2026-52703\n \n Published : June 15, 2026, 8:19 p.m. | 49\u00a0minutes ago\n \n Description : Unauthenticated Path Traversal in FastDup &amp;lt;= 2.7.2 versions.\n \n Severity: 9.6 | CRITICAL\n \n Visit the link for more details, such as C...", "creation_timestamp": "2026-06-15T22:12:59.148333Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b9d526a4-4916-48f5-947c-31a7894fe0ba/export"/>
    <published>2026-06-15T22:12:59.148333+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9fb4fa21-968a-4453-b69d-fc024572da8d/export</id>
    <title>9fb4fa21-968a-4453-b69d-fc024572da8d</title>
    <updated>2026-07-15T21:18:18.904198+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9fb4fa21-968a-4453-b69d-fc024572da8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-52700", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moebymanjo2b", "content": "CVE-2026-52700 - WordPress WCMultiShipping plugin\nCVE ID : CVE-2026-52700\n \n Published : June 15, 2026, 8:19 p.m. | 49\u00a0minutes ago\n \n Description : Subscriber SQL Injection in WCMultiShipping &amp;lt;= 3.0.2 versions.\n \n Severity: 8.5 | HIGH\n \n Visit the link for more details, suc...", "creation_timestamp": "2026-06-15T22:02:57.010704Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9fb4fa21-968a-4453-b69d-fc024572da8d/export"/>
    <published>2026-06-15T22:02:57.010704+00:00</published>
  </entry>
</feed>
