https://vulnerability.circl.lu/sightings/feed 2026-06-10T02:55:59.359506+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/501b3b93-897b-49fc-bb17-90e75cc29dd8/export 2026-06-10T02:55:59.714276+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "501b3b93-897b-49fc-bb17-90e75cc29dd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8438", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnlu3eviqm2n", "content": "CVE-2026-8438 - All-In-One Security (AIOS)\nCVE ID : CVE-2026-8438\n \n Published : June 6, 2026, 2:16 a.m. | 2\u00a0hours, 16\u00a0minutes ago\n \n Description : The All-In-One Security (AIOS) \u2013 Security and Firewall plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versi...", "creation_timestamp": "2026-06-06T04:50:06.409813Z"} 2026-06-06T04:50:06.409813+00:00 https://vulnerability.circl.lu/sighting/43725b13-2d0f-45c3-9029-f2bbfcede890/export 2026-06-10T02:55:59.712575+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "43725b13-2d0f-45c3-9029-f2bbfcede890", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8438", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mnnufnkfqi2a", "content": "CVE-2026-8438. AIOS plugin stores attacker-injected scripts in your debug logs. Visitors execute them. Admin accounts compromised. CVSS 7.2. No patch available. Disable the plugin now. Scan your WordPress site: pulse-wp.com\n#WordPress #XSS #CyberSecurity", "creation_timestamp": "2026-06-07T00:01:08.144306Z"} 2026-06-07T00:01:08.144306+00:00