Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-08T05:07:43.480072+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/31513753-edc7-49d7-90cc-b52e19c34113/export 31513753-edc7-49d7-90cc-b52e19c34113 2026-06-08T05:07:43.864854+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "31513753-edc7-49d7-90cc-b52e19c34113", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8725", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116587680874193200", "content": "\ud83d\udee1\ufe0f CVE-2026-8725: SSRF in CoreWorxLab CAAL v1.0 \u2013 1.6.0 (MEDIUM). Remote, unauthenticated attackers can trigger server requests. No patch; restrict outbound traffic & monitor logs. Exploit is public. https://radar.offseq.com/threat/cve-2026-8725-server-side-request-forgery-in-corew-ac445f41 #OffSeq #SSRF #Vuln #BlueTeam", "creation_timestamp": "2026-05-17T03:00:39.192750Z"} 2026-05-17T03:00:39.192750+00:00 https://vulnerability.circl.lu/sighting/c9e5d506-c2aa-4afb-885d-69da57649b1d/export c9e5d506-c2aa-4afb-885d-69da57649b1d 2026-06-08T05:07:43.864675+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c9e5d506-c2aa-4afb-885d-69da57649b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-8725", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mlzen4c7jy2l", "content": "\ud83d\udea9 MEDIUM severity SSRF in CoreWorxLab CAAL v1.0 \u2013 1.6.0. Exploit is public, no patch yet. Restrict outbound requests & use WAF rules until guidance is released. https://radar.offseq.com/threat/cve-2026-8725-server-side-request-forgery-in-corew-ac445f41 #OffSeq #SSRF #Vulnerability", "creation_timestamp": "2026-05-17T03:01:57.072559Z"} 2026-05-17T03:01:57.072559+00:00 https://vulnerability.circl.lu/sighting/966dbd7f-18b4-4243-be15-a7382bf16fac/export 966dbd7f-18b4-4243-be15-a7382bf16fac 2026-06-08T05:07:43.862294+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "966dbd7f-18b4-4243-be15-a7382bf16fac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-8725", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlzkmhinu32e", "content": "CVE-2026-8725 - CoreWorxLab CAAL test-hass Endpoint webhooks.py server-side request forgery\nCVE ID : CVE-2026-8725\n \n Published : May 17, 2026, 2:16 a.m. | 1\u00a0hour, 53\u00a0minutes ago\n \n Description : A weakness has been identified in CoreWorxLab CAAL up to 1.6.0. The affected elem...", "creation_timestamp": "2026-05-17T04:47:32.704663Z"} 2026-05-17T04:47:32.704663+00:00