<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-02T23:55:55.551062+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e2e5fb30-4050-42d7-8841-4dcd08d2f27c/export</id>
    <title>e2e5fb30-4050-42d7-8841-4dcd08d2f27c</title>
    <updated>2026-07-02T23:55:55.569652+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e2e5fb30-4050-42d7-8841-4dcd08d2f27c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24790", "type": "seen", "source": "https://bsky.app/profile/andresbohren.bsky.social/post/3mmubm7gb3s22", "content": "\ud83d\udea8New #JabraDirect Version has been published\n- Addresses several vulnerabilities:\nCVE-2025-22871, CVE-2024-24790, CVE-2023-24531, CVE-2023-29827\ntinyurl.com/5f7mmkvf", "creation_timestamp": "2026-05-27T19:48:15.707588Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e2e5fb30-4050-42d7-8841-4dcd08d2f27c/export"/>
    <published>2026-05-27T19:48:15.707588+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/106ce6d1-579e-4d7b-978d-e23c326676f8/export</id>
    <title>106ce6d1-579e-4d7b-978d-e23c326676f8</title>
    <updated>2026-07-02T23:55:55.572950+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "106ce6d1-579e-4d7b-978d-e23c326676f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24796", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15431", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-24796\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:N)\n\ud83d\udd39 Description: Deserialization of Untrusted Data vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce \u2013 WpEvently \u2013 WordPress Plugin.This issue affects Event Manager and Tickets Selling Plugin for WooCommerce \u2013 WpEvently \u2013 WordPress Plugin: from n/a through 4.1.1.\n\n\n\ud83d\udccf Published: 2024-02-12T07:47:08.095Z\n\ud83d\udccf Modified: 2025-05-07T21:03:09.885Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/mage-eventpress/wordpress-wpevently-plugin-4-1-1-php-object-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-05-07T21:22:47.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/106ce6d1-579e-4d7b-978d-e23c326676f8/export"/>
    <published>2025-05-07T21:22:47+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c28ec7f3-1cd7-4e58-b0b9-64547d6caffd/export</id>
    <title>c28ec7f3-1cd7-4e58-b0b9-64547d6caffd</title>
    <updated>2026-07-02T23:55:55.574033+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c28ec7f3-1cd7-4e58-b0b9-64547d6caffd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24794", "type": "seen", "source": "Telegram/YQpP6wTxSkueiYtDSoYX0NGdoVP-mIwfnzaMq2vlxLZYao7J", "content": "", "creation_timestamp": "2025-02-14T10:05:09.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c28ec7f3-1cd7-4e58-b0b9-64547d6caffd/export"/>
    <published>2025-02-14T10:05:09+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/499685ae-ac18-4780-ad13-63f5dbc48ce5/export</id>
    <title>499685ae-ac18-4780-ad13-63f5dbc48ce5</title>
    <updated>2026-07-02T23:55:55.574491+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "499685ae-ac18-4780-ad13-63f5dbc48ce5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24793", "type": "seen", "source": "Telegram/PnpSZJEXExvRlJpW7LNRczyIGg8v8LN7FNTanvZ-srfJuipI", "content": "", "creation_timestamp": "2025-02-14T10:05:09.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/499685ae-ac18-4780-ad13-63f5dbc48ce5/export"/>
    <published>2025-02-14T10:05:09+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3da10d4c-cef4-4a2f-ad01-8a36cdf89551/export</id>
    <title>3da10d4c-cef4-4a2f-ad01-8a36cdf89551</title>
    <updated>2026-07-02T23:55:55.574793+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3da10d4c-cef4-4a2f-ad01-8a36cdf89551", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24793", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4118", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-24793\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-02-20T11:15:08.090\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931\n2. https://talosintelligence.com/vulnerability_reports/TALOS-2024-1931", "creation_timestamp": "2025-02-12T19:08:07.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3da10d4c-cef4-4a2f-ad01-8a36cdf89551/export"/>
    <published>2025-02-12T19:08:07+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/58a394ce-1076-420b-9a0e-b2f6442a5e87/export</id>
    <title>58a394ce-1076-420b-9a0e-b2f6442a5e87</title>
    <updated>2026-07-02T23:55:55.575083+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "58a394ce-1076-420b-9a0e-b2f6442a5e87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24795", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-319-04", "content": "", "creation_timestamp": "2024-11-14T12:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/58a394ce-1076-420b-9a0e-b2f6442a5e87/export"/>
    <published>2024-11-14T12:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a659e7f1-f637-4966-be54-3330172b44a1/export</id>
    <title>a659e7f1-f637-4966-be54-3330172b44a1</title>
    <updated>2026-07-02T23:55:55.575347+00:00</updated>
    <author>
      <name>Alexandre Dulaunoy</name>
      <uri>https://cve.circl.lu/user/adulau</uri>
    </author>
    <content>{"uuid": "a659e7f1-f637-4966-be54-3330172b44a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-24795", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/c47579eb-e740-4902-8769-3c3df45be090", "content": "", "creation_timestamp": "2024-07-17T12:45:46.254101Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a659e7f1-f637-4966-be54-3330172b44a1/export"/>
    <published>2024-07-17T12:45:46.254101+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a0729380-1657-45aa-9d50-63ede37eae92/export</id>
    <title>a0729380-1657-45aa-9d50-63ede37eae92</title>
    <updated>2026-07-02T23:55:55.579109+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a0729380-1657-45aa-9d50-63ede37eae92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24795", "type": "seen", "source": "https://t.me/arpsyndicate/4650", "content": "#ExploitObserverAlert\n\nCVE-2024-24795\n\nDESCRIPTION: Exploit Observer has 4 entries in 1 file formats related to CVE-2024-24795. HTTP Response splitting in multiple modules in Apache HTTP Server allows an attacker that can inject malicious response headers into backend applications to cause an HTTP desynchronization attack.  Users are recommended to upgrade to version 2.4.59, which fixes this issue.\n\nFIRST-EPSS: 0.000430000\nARPS-EXPLOITABILITY: 0.7214286", "creation_timestamp": "2024-04-13T12:35:34.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a0729380-1657-45aa-9d50-63ede37eae92/export"/>
    <published>2024-04-13T12:35:34+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/961fc957-7497-4e0d-9cdb-eea3cde779f6/export</id>
    <title>961fc957-7497-4e0d-9cdb-eea3cde779f6</title>
    <updated>2026-07-02T23:55:55.579280+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "961fc957-7497-4e0d-9cdb-eea3cde779f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2479", "type": "seen", "source": "https://t.me/ctinow/209722", "content": "https://ift.tt/eAgMzZD\nCVE-2024-2479 | MHA Sistemas arMHAzena 9.6.0.0 Cadastro Page Query cross site scripting", "creation_timestamp": "2024-03-16T22:26:47.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/961fc957-7497-4e0d-9cdb-eea3cde779f6/export"/>
    <published>2024-03-16T22:26:47+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/59fcd77b-b6b2-4d8f-a4b9-3af1befcea88/export</id>
    <title>59fcd77b-b6b2-4d8f-a4b9-3af1befcea88</title>
    <updated>2026-07-02T23:55:55.579404+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "59fcd77b-b6b2-4d8f-a4b9-3af1befcea88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2479", "type": "seen", "source": "https://t.me/arpsyndicate/4251", "content": "#ExploitObserverAlert\n\nCVE-2024-2479\n\nDESCRIPTION: Exploit Observer has 26 entries in 3 file formats related to CVE-2024-2479. A vulnerability classified as problematic has been found in MHA Sistemas arMHAzena 9.6.0.0. This affects an unknown part of the component Cadastro Page. The manipulation of the argument Query leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-256887. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\nFIRST-EPSS: 0.000450000", "creation_timestamp": "2024-03-16T20:45:45.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/59fcd77b-b6b2-4d8f-a4b9-3af1befcea88/export"/>
    <published>2024-03-16T20:45:45+00:00</published>
  </entry>
</feed>
