https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-28T20:05:30.079196+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/07c17151-2d40-4bd2-b5c5-03c1d38df58d/export07c17151-2d40-4bd2-b5c5-03c1d38df58d2026-06-28T20:05:30.111059+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "07c17151-2d40-4bd2-b5c5-03c1d38df58d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30800", "type": "seen", "source": "Telegram/cPqT6nqiD-thauJ-DKhE53G7U-5ABg4xxTY3u1WPg9UTpjI", "content": "", "creation_timestamp": "2023-09-08T03:40:16.000000Z"}2023-09-08T03:40:16+00:00https://vulnerability.circl.lu/sighting/6cc3bb90-5e5f-4be0-80f4-4bd5cd059803/export6cc3bb90-5e5f-4be0-80f4-4bd5cd0598032026-06-28T20:05:30.110937+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "6cc3bb90-5e5f-4be0-80f4-4bd5cd059803", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30801", "type": "exploited", "source": "https://t.me/cibsecurity/71941", "content": "\u203c CVE-2023-30801 \u203c\n\nAll versions of the qBittorrent client through 4.5.5 use default credentials when the web user interface is enabled. The administrator is not forced to change the default credentials. As of 4.5.5, this issue has not been fixed. A remote attacker can use the default credentials to authenticate and execute arbitrary operating system commands using the \"external program\" feature in the web user interface. This was reportedly exploited in the wild in March 2023.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:16:40.000000Z"}2023-10-10T18:16:40+00:00https://vulnerability.circl.lu/sighting/9865380e-1089-42e5-bf97-7b91b42b71b2/export9865380e-1089-42e5-bf97-7b91b42b71b22026-06-28T20:05:30.110820+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "9865380e-1089-42e5-bf97-7b91b42b71b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30802", "type": "seen", "source": "https://t.me/cibsecurity/71945", "content": "\u203c CVE-2023-30802 \u203c\n\nThe Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:16:45.000000Z"}2023-10-10T18:16:45+00:00https://vulnerability.circl.lu/sighting/b5d8457d-aa93-4950-8019-d25a6e3b954a/exportb5d8457d-aa93-4950-8019-d25a6e3b954a2026-06-28T20:05:30.110697+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "b5d8457d-aa93-4950-8019-d25a6e3b954a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30804", "type": "seen", "source": "https://t.me/cibsecurity/71946", "content": "\u203c CVE-2023-30804 \u203c\n\nThe Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:16:46.000000Z"}2023-10-10T18:16:46+00:00https://vulnerability.circl.lu/sighting/88a032b5-93e2-4f6b-bac7-1e806b855833/export88a032b5-93e2-4f6b-bac7-1e806b8558332026-06-28T20:05:30.110563+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "88a032b5-93e2-4f6b-bac7-1e806b855833", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30803", "type": "seen", "source": "https://t.me/cibsecurity/71946", "content": "\u203c CVE-2023-30804 \u203c\n\nThe Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and unauthenticated attacker when paired with CVE-2023-30803.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:16:46.000000Z"}2023-10-10T18:16:46+00:00https://vulnerability.circl.lu/sighting/5b5a93a8-394b-46cd-9d4f-cbf876463898/export5b5a93a8-394b-46cd-9d4f-cbf8764638982026-06-28T20:05:30.110411+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "5b5a93a8-394b-46cd-9d4f-cbf876463898", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30806", "type": "seen", "source": "https://t.me/cibsecurity/71951", "content": "\u203c CVE-2023-30806 \u203c\n\nThe Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /cgi-bin/login.cgi endpoint. This is due to mishandling of shell meta-characters in the PHPSESSID cookie.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:16:52.000000Z"}2023-10-10T18:16:52+00:00https://vulnerability.circl.lu/sighting/788bdeb3-ea2e-4c48-949f-c16ec1d94df5/export788bdeb3-ea2e-4c48-949f-c16ec1d94df52026-06-28T20:05:30.110012+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "788bdeb3-ea2e-4c48-949f-c16ec1d94df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30803", "type": "seen", "source": "https://t.me/cibsecurity/71953", "content": "\u203c CVE-2023-30803 \u203c\n\nThe Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for header.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:16:54.000000Z"}2023-10-10T18:16:54+00:00https://vulnerability.circl.lu/sighting/ee3c02bf-3e5c-4b58-a309-b30b0ec34419/exportee3c02bf-3e5c-4b58-a309-b30b0ec344192026-06-28T20:05:30.109146+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "ee3c02bf-3e5c-4b58-a309-b30b0ec34419", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30805", "type": "seen", "source": "https://t.me/cibsecurity/71958", "content": "\u203c CVE-2023-30805 \u203c\n\nThe Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. A remote and unauthenticated attacker can execute arbitrary commands by sending a crafted HTTP POST request to the /LogInOut.php endpoint. This is due to mishandling of shell meta-characters in the \"un\" parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-10T18:17:00.000000Z"}2023-10-10T18:17:00+00:00https://vulnerability.circl.lu/sighting/7c185868-0c6f-4375-9fab-4796e9648d92/export7c185868-0c6f-4375-9fab-4796e9648d922026-06-28T20:05:30.108983+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "7c185868-0c6f-4375-9fab-4796e9648d92", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30801", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/acbd87d4-2cf7-443c-b844-85171fed11c0", "content": "", "creation_timestamp": "2026-06-19T12:46:47.202695Z"}2026-06-19T12:46:47.202695+00:00https://vulnerability.circl.lu/sighting/c108e28e-362a-4584-abd9-db295bcdf4bb/exportc108e28e-362a-4584-abd9-db295bcdf4bb2026-06-28T20:05:30.103092+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "c108e28e-362a-4584-abd9-db295bcdf4bb", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30801", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/8c04574c-9524-43ab-ac1c-d4d90f85c382", "content": "", "creation_timestamp": "2026-06-23T14:04:05.041504Z"}2026-06-23T14:04:05.041504+00:00