https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-06-05T06:31:12.120368+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/1cdf83d2-2045-4372-ae54-dfe99b29e25b/export1cdf83d2-2045-4372-ae54-dfe99b29e25b2026-06-05T06:31:12.348813+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "1cdf83d2-2045-4372-ae54-dfe99b29e25b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12678", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpcwibgf52z", "content": "", "creation_timestamp": "2024-12-20T02:15:37.647890Z"}2024-12-20T02:15:37.647890+00:00https://vulnerability.circl.lu/sighting/c6680040-7b44-48fc-b8da-b9f17180dcfe/exportc6680040-7b44-48fc-b8da-b9f17180dcfe2026-06-05T06:31:12.348743+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "c6680040-7b44-48fc-b8da-b9f17180dcfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12678", "type": "seen", "source": "https://t.me/cvedetector/13395", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12678 - Nomad Privilege Escalation Through Unredacted Tokens\", \n \"Content\": \"CVE ID : CVE-2024-12678 \nPublished : Dec. 20, 2024, 2:15 a.m. | 40\u00a0minutes ago \nDescription : Nomad Community and Nomad Enterprise (\"Nomad\") allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9.4, 1.8.8, and 1.7.16. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T04:12:03.000000Z"}2024-12-20T04:12:03+00:00https://vulnerability.circl.lu/sighting/ee5ec356-6002-4f37-8320-53db40b2a41e/exportee5ec356-6002-4f37-8320-53db40b2a41e2026-06-05T06:31:12.348679+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "ee5ec356-6002-4f37-8320-53db40b2a41e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1721/", "content": "", "creation_timestamp": "2024-12-20T05:00:00.000000Z"}2024-12-20T05:00:00+00:00https://vulnerability.circl.lu/sighting/eb24ef7f-6af3-4a90-8b13-3e8311f842bd/exporteb24ef7f-6af3-4a90-8b13-3e8311f842bd2026-06-05T06:31:12.348612+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "eb24ef7f-6af3-4a90-8b13-3e8311f842bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113686169757160018", "content": "", "creation_timestamp": "2024-12-20T16:48:04.324701Z"}2024-12-20T16:48:04.324701+00:00https://vulnerability.circl.lu/sighting/e84aeb4c-5903-44ca-a5dd-c09da6527968/exporte84aeb4c-5903-44ca-a5dd-c09da65279682026-06-05T06:31:12.348541+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "e84aeb4c-5903-44ca-a5dd-c09da6527968", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldqv7hruto2s", "content": "", "creation_timestamp": "2024-12-20T17:15:25.394906Z"}2024-12-20T17:15:25.394906+00:00https://vulnerability.circl.lu/sighting/181303e9-881a-4d54-a0a1-cdda90ec1abd/export181303e9-881a-4d54-a0a1-cdda90ec1abd2026-06-05T06:31:12.348469+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "181303e9-881a-4d54-a0a1-cdda90ec1abd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://t.me/cvedetector/13450", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12677 - Delta Electronics DTM Soft Remote Code Execution\", \n \"Content\": \"CVE ID : CVE-2024-12677 \nPublished : Dec. 20, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T19:15:39.000000Z"}2024-12-20T19:15:39+00:00https://vulnerability.circl.lu/sighting/e7da9d64-8778-4eec-bee0-bc6eb426568e/exporte7da9d64-8778-4eec-bee0-bc6eb426568e2026-06-05T06:31:12.348402+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "e7da9d64-8778-4eec-bee0-bc6eb426568e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12673", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113992836082663405", "content": "", "creation_timestamp": "2025-02-12T20:37:20.926904Z"}2025-02-12T20:37:20.926904+00:00https://vulnerability.circl.lu/sighting/63e4c6fa-cda3-4372-a5c0-0ea01254a600/export63e4c6fa-cda3-4372-a5c0-0ea01254a6002026-06-05T06:31:12.348326+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "63e4c6fa-cda3-4372-a5c0-0ea01254a600", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12673", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhzgfao4wj24", "content": "", "creation_timestamp": "2025-02-13T00:25:03.552476Z"}2025-02-13T00:25:03.552476+00:00https://vulnerability.circl.lu/sighting/2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71/export2fbe28be-a9f6-4f59-b334-a6a1ad9b3f712026-06-05T06:31:12.348221+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1267", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13259", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1267\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file create_account.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-253010 is the identifier assigned to this vulnerability.\n\ud83d\udccf Published: 2024-02-07T01:00:08.559Z\n\ud83d\udccf Modified: 2025-04-24T15:58:53.648Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.253010\n2. https://vuldb.com/?ctiid.253010\n3. https://drive.google.com/drive/folders/18N_20KuGPjrBbvOMSfbvBIc1sMKyycH3?usp=sharing", "creation_timestamp": "2025-04-24T16:06:38.000000Z"}2025-04-24T16:06:38+00:00https://vulnerability.circl.lu/sighting/7d7ef0cb-3229-4495-8223-7ecf32c84d12/export7d7ef0cb-3229-4495-8223-7ecf32c84d122026-06-05T06:31:12.345198+00:00Automation userhttps://cve.circl.lu/user/automation{"uuid": "7d7ef0cb-3229-4495-8223-7ecf32c84d12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12679", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17066", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12679\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Prisna GWT WordPress plugin before 1.4.14 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\ud83d\udccf Published: 2025-05-15T20:06:53.369Z\n\ud83d\udccf Modified: 2025-05-20T19:32:51.031Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/7ca1438f-4269-4e34-be4a-766276a9f016/", "creation_timestamp": "2025-05-20T19:43:08.000000Z"}2025-05-20T19:43:08+00:00