<?xml version="1.0" encoding="UTF-8"?>
<!--generator='jetpack-15.9.1'-->
<!--Jetpack_Sitemap_Buffer_News_XMLWriter-->
<?xml-stylesheet type="text/xsl" href="//www.vistanetinc.com/news-sitemap.xsl"?>
<urlset xmlns="http://www.sitemaps.org/schemas/sitemap/0.9" xmlns:news="http://www.google.com/schemas/sitemap-news/0.9" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://www.sitemaps.org/schemas/sitemap/0.9 http://www.sitemaps.org/schemas/sitemap/0.9/sitemap.xsd">
 <url>
  <loc>https://www.vistanetinc.com/vu152953-payrange-android-app-version-7-0-7-contains-multiple-vulnerabilities/</loc>
  <lastmod>2026-07-09T17:03:26Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Vista Net, Inc.</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>VU#152953: PayRange Android app version 7.0.7 contains multiple vulnerabilities</news:title>
   <news:publication_date>2026-07-09T17:03:26Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://www.vistanetinc.com/vu734812-xerte-online-toolkit-contains-an-authentication-bypass-that-allows-for-rce/</loc>
  <lastmod>2026-07-09T12:37:52Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Vista Net, Inc.</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>VU#734812: Xerte Online Toolkit contains an authentication bypass that allows for RCE</news:title>
   <news:publication_date>2026-07-09T12:37:52Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
 <url>
  <loc>https://www.vistanetinc.com/vu849433-adalo-database-api-enables-cross-app-user-data-extraction-via-over-fetching-and-missing-authorization-controls/</loc>
  <lastmod>2026-07-08T14:03:43Z</lastmod>
  <news:news>
   <news:publication>
    <news:name>Vista Net, Inc.</news:name>
    <news:language>en</news:language>
   </news:publication>
   <news:title>VU#849433: Adalo Database API Enables Cross-App User Data Extraction via Over-Fetching and Missing Authorization Controls</news:title>
   <news:publication_date>2026-07-08T14:03:43Z</news:publication_date>
   <news:genres>Blog</news:genres>
  </news:news>
 </url>
</urlset>
