https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 31 May 2026 05:52:49 +0000 https://vulnerability.circl.lu/sighting/75fd1e25-4fc7-4fcf-8440-de6c1bf42eb2/export {"uuid": "75fd1e25-4fc7-4fcf-8440-de6c1bf42eb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlekri3yqc2c", "content": "\ud83d\udfe0 CVE-2026-29202 - High (8.8)\n\nInsufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-29202/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:24:27.066400Z"} {"uuid": "75fd1e25-4fc7-4fcf-8440-de6c1bf42eb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlekri3yqc2c", "content": "\ud83d\udfe0 CVE-2026-29202 - High (8.8)\n\nInsufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-29202/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:24:27.066400Z"} https://vulnerability.circl.lu/sighting/75fd1e25-4fc7-4fcf-8440-de6c1bf42eb2/export Fri, 08 May 2026 20:24:27 +0000 https://vulnerability.circl.lu/sighting/7b4c163e-2911-4f36-a963-6f7109c760c8/export {"uuid": "7b4c163e-2911-4f36-a963-6f7109c760c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mlepr6ouzy27", "content": "`create_user`\u30d7\u30e9\u30b0\u30a4\u30f3\u306e`plugin`\u30d1\u30e9\u30e1\u30fc\u30bf\u306e\u5165\u529b\u691c\u8a3c\u4e0d\u5099\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u6e08\u307f\u30a2\u30ab\u30a6\u30f3\u30c8\u306e\u30b7\u30b9\u30c6\u30e0\u30e6\u30fc\u30b6\u30fc\u3068\u3057\u3066\u4efb\u610f\u306ePerl\u30b3\u30fc\u30c9\u5b9f\u884c\u304c\u53ef\u80fd\u306b\u306a\u308b\u8106\u5f31\u6027\u3002\nCVE-2026-29202 CVSS 8.8 | HIGH", "creation_timestamp": "2026-05-08T21:53:45.606743Z"} {"uuid": "7b4c163e-2911-4f36-a963-6f7109c760c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mlepr6ouzy27", "content": "`create_user`\u30d7\u30e9\u30b0\u30a4\u30f3\u306e`plugin`\u30d1\u30e9\u30e1\u30fc\u30bf\u306e\u5165\u529b\u691c\u8a3c\u4e0d\u5099\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u6e08\u307f\u30a2\u30ab\u30a6\u30f3\u30c8\u306e\u30b7\u30b9\u30c6\u30e0\u30e6\u30fc\u30b6\u30fc\u3068\u3057\u3066\u4efb\u610f\u306ePerl\u30b3\u30fc\u30c9\u5b9f\u884c\u304c\u53ef\u80fd\u306b\u306a\u308b\u8106\u5f31\u6027\u3002\nCVE-2026-29202 CVSS 8.8 | HIGH", "creation_timestamp": "2026-05-08T21:53:45.606743Z"} https://vulnerability.circl.lu/sighting/7b4c163e-2911-4f36-a963-6f7109c760c8/export Fri, 08 May 2026 21:53:45 +0000 https://vulnerability.circl.lu/sighting/6eb39437-4102-4b72-8edd-a0cf7bbcc8b0/export {"uuid": "6eb39437-4102-4b72-8edd-a0cf7bbcc8b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116544182422691954", "content": "Spoiler de l'\u00e9pisode de hier : cPanel a bien livr\u00e9 les d\u00e9tails techniques en m\u00eame temps que les patchs. Au menu de l'after :\n\u2022 CVE-2026-29201 : path traversal :8bitrainbow: via feature::LOADFEATUREFILE \u2192 fichier arbitraire en world-readable\u2022 CVE-2026-29202 : injection Perl dans create_user (param\u00e8tre plugin)\u2022 CVE-2026-29203 : symlink mal g\u00e9r\u00e9 \u2192 chmod arbitraire \u2192 DoS + escalade de privil\u00e8ges\n/scripts/upcp et go apero!Bon courage aux admins de garde \ud83e\udee1\nhttps://docs.cpanel.net/changelogs/134-change-log/#134025\nhttps://vulnerability.circl.lu/vuln/CVE-2026-29203\n#CyberVeille #cpanel #CVE_2026_29203#CVE_2026_29202#CVE_2026_29201", "creation_timestamp": "2026-05-09T10:38:17.215832Z"} {"uuid": "6eb39437-4102-4b72-8edd-a0cf7bbcc8b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116544182422691954", "content": "Spoiler de l'\u00e9pisode de hier : cPanel a bien livr\u00e9 les d\u00e9tails techniques en m\u00eame temps que les patchs. Au menu de l'after :\n\u2022 CVE-2026-29201 : path traversal :8bitrainbow: via feature::LOADFEATUREFILE \u2192 fichier arbitraire en world-readable\u2022 CVE-2026-29202 : injection Perl dans create_user (param\u00e8tre plugin)\u2022 CVE-2026-29203 : symlink mal g\u00e9r\u00e9 \u2192 chmod arbitraire \u2192 DoS + escalade de privil\u00e8ges\n/scripts/upcp et go apero!Bon courage aux admins de garde \ud83e\udee1\nhttps://docs.cpanel.net/changelogs/134-change-log/#134025\nhttps://vulnerability.circl.lu/vuln/CVE-2026-29203\n#CyberVeille #cpanel #CVE_2026_29203#CVE_2026_29202#CVE_2026_29201", "creation_timestamp": "2026-05-09T10:38:17.215832Z"} https://vulnerability.circl.lu/sighting/6eb39437-4102-4b72-8edd-a0cf7bbcc8b0/export Sat, 09 May 2026 10:38:17 +0000 https://vulnerability.circl.lu/sighting/936e1748-82ab-4ac1-935d-090fb98579d7/export {"uuid": "936e1748-82ab-4ac1-935d-090fb98579d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mlhlj7bx752u", "content": "cPanel released a second emergency security patch for three new high-severity vulnerabilities (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) on May 8, 2026, following a major ransomware attack. This indicates a deeper code audit after the previous compromise.", "creation_timestamp": "2026-05-10T01:15:42.494363Z"} {"uuid": "936e1748-82ab-4ac1-935d-090fb98579d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mlhlj7bx752u", "content": "cPanel released a second emergency security patch for three new high-severity vulnerabilities (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) on May 8, 2026, following a major ransomware attack. This indicates a deeper code audit after the previous compromise.", "creation_timestamp": "2026-05-10T01:15:42.494363Z"} https://vulnerability.circl.lu/sighting/936e1748-82ab-4ac1-935d-090fb98579d7/export Sun, 10 May 2026 01:15:42 +0000 https://vulnerability.circl.lu/sighting/0b01fb39-9ba2-4fb2-a209-6338b9edcc70/export {"uuid": "0b01fb39-9ba2-4fb2-a209-6338b9edcc70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mli2inlydw2y", "content": "Critical: Three New cPanel & WHM Vulnerabilities (CVEs 2026-29201/2/3) Threaten Code Execution and DoS \u2014 Patch Immediately +\u00a0Video\n\nIntroduction: Three newly disclosed critical security vulnerabilities in cPanel & WHM, tracked as CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, could allow\u2026", "creation_timestamp": "2026-05-10T05:43:50.542455Z"} {"uuid": "0b01fb39-9ba2-4fb2-a209-6338b9edcc70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mli2inlydw2y", "content": "Critical: Three New cPanel & WHM Vulnerabilities (CVEs 2026-29201/2/3) Threaten Code Execution and DoS \u2014 Patch Immediately +\u00a0Video\n\nIntroduction: Three newly disclosed critical security vulnerabilities in cPanel & WHM, tracked as CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, could allow\u2026", "creation_timestamp": "2026-05-10T05:43:50.542455Z"} https://vulnerability.circl.lu/sighting/0b01fb39-9ba2-4fb2-a209-6338b9edcc70/export Sun, 10 May 2026 05:43:50 +0000 https://vulnerability.circl.lu/sighting/9e06791a-87b4-4546-9632-7da43814735d/export {"uuid": "9e06791a-87b4-4546-9632-7da43814735d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlizxrgkd32y", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:03.971742Z"} {"uuid": "9e06791a-87b4-4546-9632-7da43814735d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlizxrgkd32y", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:03.971742Z"} https://vulnerability.circl.lu/sighting/9e06791a-87b4-4546-9632-7da43814735d/export Sun, 10 May 2026 15:07:03 +0000 https://vulnerability.circl.lu/sighting/09de2881-d4c4-47d0-bced-c50bade9412f/export {"uuid": "09de2881-d4c4-47d0-bced-c50bade9412f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlizyboth425", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #PotatoSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:20.035768Z"} {"uuid": "09de2881-d4c4-47d0-bced-c50bade9412f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlizyboth425", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #PotatoSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:20.035768Z"} https://vulnerability.circl.lu/sighting/09de2881-d4c4-47d0-bced-c50bade9412f/export Sun, 10 May 2026 15:07:20 +0000 https://vulnerability.circl.lu/sighting/91b80695-2b64-4591-a6b3-d4386926ca88/export {"uuid": "91b80695-2b64-4591-a6b3-d4386926ca88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mlj6rgbnzch2", "content": "New cPanel vulnerabilities could allow file access and remote code execution cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation h...\n\n#Breaking #News #Security #cPanel #CVE-2026-29201 #CVE-2026-29202 #CVE-2026-29203 #Cybercrime [\u2026]", "creation_timestamp": "2026-05-10T16:33:03.327148Z"} {"uuid": "91b80695-2b64-4591-a6b3-d4386926ca88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mlj6rgbnzch2", "content": "New cPanel vulnerabilities could allow file access and remote code execution cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation h...\n\n#Breaking #News #Security #cPanel #CVE-2026-29201 #CVE-2026-29202 #CVE-2026-29203 #Cybercrime [\u2026]", "creation_timestamp": "2026-05-10T16:33:03.327148Z"} https://vulnerability.circl.lu/sighting/91b80695-2b64-4591-a6b3-d4386926ca88/export Sun, 10 May 2026 16:33:03 +0000 https://vulnerability.circl.lu/sighting/d826eac8-51e6-4ad3-9956-fba6e5fd62b4/export {"uuid": "d826eac8-51e6-4ad3-9956-fba6e5fd62b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlljuslwde2l", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) allow RCE and DoS attacks. Admins must update immediately to secure servers. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-11T14:57:10.840233Z"} {"uuid": "d826eac8-51e6-4ad3-9956-fba6e5fd62b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlljuslwde2l", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) allow RCE and DoS attacks. Admins must update immediately to secure servers. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-11T14:57:10.840233Z"} https://vulnerability.circl.lu/sighting/d826eac8-51e6-4ad3-9956-fba6e5fd62b4/export Mon, 11 May 2026 14:57:10 +0000 https://vulnerability.circl.lu/sighting/de09d939-8adb-47fe-ae5d-1e70b00426a9/export {"uuid": "de09d939-8adb-47fe-ae5d-1e70b00426a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-vulnerabilities-cpanel-and-whm-leading-privilege-escalation-patch", "content": "", "creation_timestamp": "2026-05-12T01:21:19.000000Z"} {"uuid": "de09d939-8adb-47fe-ae5d-1e70b00426a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-vulnerabilities-cpanel-and-whm-leading-privilege-escalation-patch", "content": "", "creation_timestamp": "2026-05-12T01:21:19.000000Z"} https://vulnerability.circl.lu/sighting/de09d939-8adb-47fe-ae5d-1e70b00426a9/export Tue, 12 May 2026 01:21:19 +0000