<?xml version="1.0" encoding="UTF-8"?>
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9"
        xmlns:news="http://www.google.com/schemas/sitemap-news/0.9">
  <url>
    <loc>https://www.hackerposts.org/en/blog/gitea-cve-2026-20896-docker-x-webauth-user-bypass</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-09T00:00:00.000Z</news:publication_date>
      <news:title>Gitea CVE-2026-20896: Docker image trusts X-WEBAUTH-USER from anywhere</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/en/blog/microsoft-defender-cve-2026-50656-rogueplanet-lpe-patched</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-09T00:00:00.000Z</news:publication_date>
      <news:title>Microsoft patches Defender RoguePlanet LPE CVE-2026-50656</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/fr/blog/hpe-aruba-instant-on-5g-core-certfr-2026-avi-0846</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>fr</news:language>
      </news:publication>
      <news:publication_date>2026-07-09T00:00:00.000Z</news:publication_date>
      <news:title>HPE Aruba : quatre CVE sur Instant On et Private 5G Core (AVI-0846)</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/fr/blog/php-cve-2026-14355-openssl-aes-wrap-pad-certfr-2026-avi-0843</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>fr</news:language>
      </news:publication>
      <news:publication_date>2026-07-09T00:00:00.000Z</news:publication_date>
      <news:title>PHP CVE-2026-14355 : corruption tas dans openssl_encrypt (CERTFR-2026-AVI-0843)</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/en/blog/januscape-cve-2026-53359-kvm-shadow-mmu-vm-escape</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-08T00:00:00.000Z</news:publication_date>
      <news:title>Januscape (CVE-2026-53359): 16-year-old KVM UAF escapes VMs on Intel and AMD</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/en/blog/langflow-cve-2026-55255-idor-cisa-kev</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>en</news:language>
      </news:publication>
      <news:publication_date>2026-07-08T00:00:00.000Z</news:publication_date>
      <news:title>Langflow CVE-2026-55255 IDOR added to CISA KEV, patch to 1.9.2</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/fr/blog/roundcube-1-6-17-1-7-2-certfr-2026-avi-0835</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>fr</news:language>
      </news:publication>
      <news:publication_date>2026-07-08T00:00:00.000Z</news:publication_date>
      <news:title>Roundcube 1.6.17 / 1.7.2 corrigent un XSS zero-click en texte brut (CERTFR-2026-AVI-0835)</news:title>
    </news:news>
  </url>
  <url>
    <loc>https://www.hackerposts.org/fr/blog/spip-4-4-16-certfr-2026-avi-0838-sqli-xss</loc>
    <news:news>
      <news:publication>
        <news:name>Hacker Posts</news:name>
        <news:language>fr</news:language>
      </news:publication>
      <news:publication_date>2026-07-08T00:00:00.000Z</news:publication_date>
      <news:title>SPIP 4.4.16 corrige SQLi, XSS et fuite de données (CERTFR-2026-AVI-0838)</news:title>
    </news:news>
  </url>
</urlset>
