https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 29 May 2026 23:09:14 +0000 https://vulnerability.circl.lu/sighting/ad2b95ed-89ba-49c2-8077-49735dd0cdec/export {"uuid": "ad2b95ed-89ba-49c2-8077-49735dd0cdec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mfv2xflkle2z", "content": "", "creation_timestamp": "2026-02-28T01:25:31.512394Z"} {"uuid": "ad2b95ed-89ba-49c2-8077-49735dd0cdec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mfv2xflkle2z", "content": "", "creation_timestamp": "2026-02-28T01:25:31.512394Z"} https://vulnerability.circl.lu/sighting/ad2b95ed-89ba-49c2-8077-49735dd0cdec/export Sat, 28 Feb 2026 01:25:31 +0000 https://vulnerability.circl.lu/sighting/25211b57-2332-4428-a519-dc62933f38cf/export {"uuid": "25211b57-2332-4428-a519-dc62933f38cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/opendcim_install_sqli_rce.rb", "content": "", "creation_timestamp": "2026-04-14T20:15:55.000000Z"} {"uuid": "25211b57-2332-4428-a519-dc62933f38cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/opendcim_install_sqli_rce.rb", "content": "", "creation_timestamp": "2026-04-14T20:15:55.000000Z"} https://vulnerability.circl.lu/sighting/25211b57-2332-4428-a519-dc62933f38cf/export Tue, 14 Apr 2026 20:15:55 +0000 https://vulnerability.circl.lu/sighting/858a98c9-73da-4e16-81f0-bcbc61afebd5/export {"uuid": "858a98c9-73da-4e16-81f0-bcbc61afebd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mjks6k2s4z26", "content": "", "creation_timestamp": "2026-04-15T21:02:40.913272Z"} {"uuid": "858a98c9-73da-4e16-81f0-bcbc61afebd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mjks6k2s4z26", "content": "", "creation_timestamp": "2026-04-15T21:02:40.913272Z"} https://vulnerability.circl.lu/sighting/858a98c9-73da-4e16-81f0-bcbc61afebd5/export Wed, 15 Apr 2026 21:02:40 +0000 https://vulnerability.circl.lu/sighting/e8e76b96-8563-453d-b2c9-86d09680e4c9/export {"uuid": "e8e76b96-8563-453d-b2c9-86d09680e4c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://infosec.exchange/users/catc0n/statuses/116574230763721167", "content": "\u2757Earlier today, VulnCheck Canaries detected first-time exploitation of CVE-2026-28515 and CVE-2026-28517 in openDCIM, an open-source code base used for data center infrastructure management. \n\ud83d\udc1a The cluster of attacker activity we're observing so far originates from a single Chinese IP and uses what appears to be a customized implementation of AI vuln discovery tool Vulnhuntr to automatically check for vulnerable installations before dropping a PHP webshell. \n\ud83c\udf10 The VulnCheck team's ASM queries for these vulnerabilities find fewer than 50 systems online, many of which belong to higher education institutions globally. Both CVEs were discovered by new VulnCheck research team member @chocapikk_. \nMoar KEVs: https://www.vulncheck.com/kev", "creation_timestamp": "2026-05-14T18:02:13.286046Z"} {"uuid": "e8e76b96-8563-453d-b2c9-86d09680e4c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-28517", "type": "seen", "source": "https://infosec.exchange/users/catc0n/statuses/116574230763721167", "content": "\u2757Earlier today, VulnCheck Canaries detected first-time exploitation of CVE-2026-28515 and CVE-2026-28517 in openDCIM, an open-source code base used for data center infrastructure management. \n\ud83d\udc1a The cluster of attacker activity we're observing so far originates from a single Chinese IP and uses what appears to be a customized implementation of AI vuln discovery tool Vulnhuntr to automatically check for vulnerable installations before dropping a PHP webshell. \n\ud83c\udf10 The VulnCheck team's ASM queries for these vulnerabilities find fewer than 50 systems online, many of which belong to higher education institutions globally. Both CVEs were discovered by new VulnCheck research team member @chocapikk_. \nMoar KEVs: https://www.vulncheck.com/kev", "creation_timestamp": "2026-05-14T18:02:13.286046Z"} https://vulnerability.circl.lu/sighting/e8e76b96-8563-453d-b2c9-86d09680e4c9/export Thu, 14 May 2026 18:02:13 +0000