https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-05-28T10:35:34.469178+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/c59283a9-f347-4845-85e1-d95474caab61/exportc59283a9-f347-4845-85e1-d95474caab612026-05-28T10:35:34.685021+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "c59283a9-f347-4845-85e1-d95474caab61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11363", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf4vexs5yo25", "content": "", "creation_timestamp": "2025-01-07T05:15:38.246309Z"}2025-01-07T05:15:38.246309+00:00https://vulnerability.circl.lu/sighting/02678398-8a44-4d2a-a939-b836b406a326/export02678398-8a44-4d2a-a939-b836b406a3262026-05-28T10:35:34.684943+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "02678398-8a44-4d2a-a939-b836b406a326", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11369", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113785425925136481", "content": "", "creation_timestamp": "2025-01-07T05:30:13.675301Z"}2025-01-07T05:30:13.675301+00:00https://vulnerability.circl.lu/sighting/412f94fa-0f55-4c48-aa9c-ba12830534b1/export412f94fa-0f55-4c48-aa9c-ba12830534b12026-05-28T10:35:34.684868+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "412f94fa-0f55-4c48-aa9c-ba12830534b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11369", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113785440083941138", "content": "", "creation_timestamp": "2025-01-07T05:33:49.163411Z"}2025-01-07T05:33:49.163411+00:00https://vulnerability.circl.lu/sighting/36ab6098-277b-49de-bdfc-5c7ce5192e0e/export36ab6098-277b-49de-bdfc-5c7ce5192e0e2026-05-28T10:35:34.684781+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "36ab6098-277b-49de-bdfc-5c7ce5192e0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11369", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/344", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11369\n\ud83d\udd39 Description: The Store credit / Gift cards for woocommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'coupon', 'start_date', and 'end_date' parameters in all versions up to, and including, 1.0.49.46 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.\n\ud83d\udccf Published: 2025-01-07T05:23:53.299Z\n\ud83d\udccf Modified: 2025-01-07T05:23:53.299Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/2e8527c0-a4b0-436d-901a-c07f93c7ec5e?source=cve\n2. https://plugins.trac.wordpress.org/browser/store-credit-for-woocommerce/tags/1.0.49.42/admin/report.php#L95\n3. https://plugins.trac.wordpress.org/browser/store-credit-for-woocommerce/tags/1.0.49.42/admin/report.php#L113\n4. https://plugins.trac.wordpress.org/browser/store-credit-for-woocommerce/tags/1.0.49.42/admin/report.php#L119\n5. https://plugins.trac.wordpress.org/changeset/3213698/store-credit-for-woocommerce/trunk/admin/report.php", "creation_timestamp": "2025-01-07T05:39:03.000000Z"}2025-01-07T05:39:03+00:00https://vulnerability.circl.lu/sighting/809150e1-2ac0-42f2-bcb7-699e33a4eaa4/export809150e1-2ac0-42f2-bcb7-699e33a4eaa42026-05-28T10:35:34.684703+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "809150e1-2ac0-42f2-bcb7-699e33a4eaa4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11369", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf4yqipmlh25", "content": "", "creation_timestamp": "2025-01-07T06:15:46.345313Z"}2025-01-07T06:15:46.345313+00:00https://vulnerability.circl.lu/sighting/558e1baf-483b-41c8-a6f3-9e9e6a726ee0/export558e1baf-483b-41c8-a6f3-9e9e6a726ee02026-05-28T10:35:34.684621+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "558e1baf-483b-41c8-a6f3-9e9e6a726ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11369", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf4zpndphb2i", "content": "", "creation_timestamp": "2025-01-07T06:33:13.573232Z"}2025-01-07T06:33:13.573232+00:00https://vulnerability.circl.lu/sighting/b97608a3-f3d1-4258-8740-4e77f72069b9/exportb97608a3-f3d1-4258-8740-4e77f72069b92026-05-28T10:35:34.684529+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "b97608a3-f3d1-4258-8740-4e77f72069b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11364", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8245", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11364\n\ud83d\udd25 CVSS Score: 8.5 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Another \u201cuninitialized variable\u201d code execution vulnerability exists in the Rockwell Automation\u00a0Arena\u00ae that could allow a threat actor to craft a DOE file and force the software to access a variable prior to it being initialized. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To exploit this vulnerability, a legitimate user must execute the malicious code crafted by the threat actor.\n\ud83d\udccf Published: 2024-12-19T21:04:52.473Z\n\ud83d\udccf Modified: 2025-03-20T18:03:57.750Z\n\ud83d\udd17 References:\n1. https://www.rockwellautomation.com/en-us/trust-center/security-advisories/advisory.SD1713.html", "creation_timestamp": "2025-03-20T18:20:41.000000Z"}2025-03-20T18:20:41+00:00https://vulnerability.circl.lu/sighting/64b22758-2f69-408f-83c1-412570ed8b70/export64b22758-2f69-408f-83c1-412570ed8b702026-05-28T10:35:34.684438+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "64b22758-2f69-408f-83c1-412570ed8b70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1136", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12889", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1136\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: The Coming Soon Page & Maintenance Mode plugin for WordPress is vulnerable to unauthorized access of data due to an improperly implemented URL check in the wpsm_coming_soon_redirect function in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to view a site with maintenance mode or coming-soon mode enabled to view the site's content.\n\ud83d\udccf Published: 2024-02-28T08:33:13.484Z\n\ud83d\udccf Modified: 2025-04-22T15:58:35.494Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/e3c52d6e-b3f4-4ba8-aee4-b9f11704e1de?source=cve\n2. https://plugins.trac.wordpress.org/browser/responsive-coming-soon/trunk/redirect.php#L11", "creation_timestamp": "2025-04-22T16:03:32.000000Z"}2025-04-22T16:03:32+00:00https://vulnerability.circl.lu/sighting/9e4d8a88-8b25-4447-bdd0-05efd4c0407e/export9e4d8a88-8b25-4447-bdd0-05efd4c0407e2026-05-28T10:35:34.684334+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "9e4d8a88-8b25-4447-bdd0-05efd4c0407e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11364", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:31.000000Z"}2025-09-15T13:28:31+00:00https://vulnerability.circl.lu/sighting/220c615c-09b4-4e63-91d4-7611429273ae/export220c615c-09b4-4e63-91d4-7611429273ae2026-05-28T10:35:34.682347+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "220c615c-09b4-4e63-91d4-7611429273ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11364", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:01.000000Z"}2025-09-16T03:45:01+00:00