<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T20:19:53.218677+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3f202907-2397-4b72-ac90-4e98017beedd/export</id>
    <title>3f202907-2397-4b72-ac90-4e98017beedd</title>
    <updated>2026-07-12T20:19:53.242688+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3f202907-2397-4b72-ac90-4e98017beedd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mqgfl4ieaj2e", "content": "Daily IT Security Digest \u2014 2026-07-12\nsystems.\nSources: [The Hacker Wire](https://www.thehackerwire.com/vulnerability/CVE-2026-61444/)\n\n## 6. miniOrange OAuth SSO: Critical Auth Bypass \u2014 CVE-2026-57807\nA CRITICAL authentication bypass vulnerability (CVE-2026-57807) exists in miniOrange OAuth SSO", "creation_timestamp": "2026-07-12T05:02:41.939148Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3f202907-2397-4b72-ac90-4e98017beedd/export"/>
    <published>2026-07-12T05:02:41.939148+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/601fc6ff-0ef3-47e7-b37a-96acaf49e7e4/export</id>
    <title>601fc6ff-0ef3-47e7-b37a-96acaf49e7e4</title>
    <updated>2026-07-12T20:19:53.245311+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "601fc6ff-0ef3-47e7-b37a-96acaf49e7e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mqgfl3wllt2n", "content": "Daily IT Security Digest \u2014 2026-07-12\naccess to compromised infrastructure.\nSources: [Dark Reading](https://www.darkreading.com/threat-intel)\n\n## 5. PraisonAI Code Injection: CVE-2026-61444 (CVSS 9.1)\nPraisonAI versions before 4.6.78 contain a critical (9.1) code injection vulnerability in", "creation_timestamp": "2026-07-12T05:02:41.388600Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/601fc6ff-0ef3-47e7-b37a-96acaf49e7e4/export"/>
    <published>2026-07-12T05:02:41.388600+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cfaf555d-2fd6-4c77-88f2-81bd5fb19469/export</id>
    <title>cfaf555d-2fd6-4c77-88f2-81bd5fb19469</title>
    <updated>2026-07-12T20:19:53.245545+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cfaf555d-2fd6-4c77-88f2-81bd5fb19469", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqg6qo3jgk2a", "content": "\ud83d\udd34 CVE-2026-61444 - Critical (9.1)\n\nPraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where th...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-61444/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T03:00:32.448769Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cfaf555d-2fd6-4c77-88f2-81bd5fb19469/export"/>
    <published>2026-07-12T03:00:32.448769+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/63ddfca2-e1b3-425b-b323-87a03c801eaa/export</id>
    <title>63ddfca2-e1b3-425b-b323-87a03c801eaa</title>
    <updated>2026-07-12T20:19:53.245750+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "63ddfca2-e1b3-425b-b323-87a03c801eaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdcxer6yr2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61444 \u0432 PraisonAI: \u0443\u0433\u0440\u043e\u0437\u0430 \u043a\u043e\u0434\u043e\u0432\u043e\u0439 \u0438\u043d\u044a\u0435\u043a\u0446\u0438\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/5060FB42-BA87-49D4-BA5D-7C51D67CC63C", "creation_timestamp": "2026-07-10T23:37:52.964515Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/63ddfca2-e1b3-425b-b323-87a03c801eaa/export"/>
    <published>2026-07-10T23:37:52.964515+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1c9ba42b-12d3-4436-85d2-ec0969c2a4a5/export</id>
    <title>1c9ba42b-12d3-4436-85d2-ec0969c2a4a5</title>
    <updated>2026-07-12T20:19:53.245933+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1c9ba42b-12d3-4436-85d2-ec0969c2a4a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcxpdd2vg2f", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61444 \u0432 PraisonAI: \u0443\u0433\u0440\u043e\u0437\u0430 \u043a\u043e\u0434\u043e\u0432\u043e\u0439 \u0438\u043d\u044a\u0435\u043a\u0446\u0438\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/779EE65E-1B51-4818-823B-2581DEB16CC4", "creation_timestamp": "2026-07-10T20:16:31.863257Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1c9ba42b-12d3-4436-85d2-ec0969c2a4a5/export"/>
    <published>2026-07-10T20:16:31.863257+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7b2ea529-d5d5-40d1-98e2-a3470dd9eb67/export</id>
    <title>7b2ea529-d5d5-40d1-98e2-a3470dd9eb67</title>
    <updated>2026-07-12T20:19:53.246109+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7b2ea529-d5d5-40d1-98e2-a3470dd9eb67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqclwzjjnb2f", "content": "CVE-2026-61444\nOld versions of PraisonAI may allow attackers to inject and run malicious code on your system. This could happen if you run an outdated version of PraisonAI and an attacker sends a specially crafted request. To\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-10T16:46:05.034107Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7b2ea529-d5d5-40d1-98e2-a3470dd9eb67/export"/>
    <published>2026-07-10T16:46:05.034107+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2f158195-2b7c-4bb4-8ea9-0ab18223f0ec/export</id>
    <title>2f158195-2b7c-4bb4-8ea9-0ab18223f0ec</title>
    <updated>2026-07-12T20:19:53.246284+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2f158195-2b7c-4bb4-8ea9-0ab18223f0ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqck7yabkh27", "content": "CVE-2026-61444 - PraisonAI before 4.6.78 Code Injection via f-string\nCVE ID : CVE-2026-61444\n \n Published : July 10, 2026, 3:16 p.m. | 32\u00a0minutes ago\n \n Description : PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file...", "creation_timestamp": "2026-07-10T16:15:18.051709Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2f158195-2b7c-4bb4-8ea9-0ab18223f0ec/export"/>
    <published>2026-07-10T16:15:18.051709+00:00</published>
  </entry>
</feed>
