Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-12T16:02:20.728881+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/fc04fdd6-2ddb-4751-a230-ed675de6e402/export fc04fdd6-2ddb-4751-a230-ed675de6e402 2026-06-12T16:02:20.992879+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fc04fdd6-2ddb-4751-a230-ed675de6e402", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48901", "type": "seen", "source": "https://t.me/cvedetector/11330", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-48901 - Moodle Report Access Control Information Disclosure\", \n \"Content\": \"CVE ID : CVE-2024-48901 \nPublished : Nov. 18, 2024, 12:15 p.m. | 39\u00a0minutes ago \nDescription : A vulnerability was found in Moodle. Additional checks are required to ensure users can only access the schedule of a report if they have permission to edit that report. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"18 Nov 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T14:02:35.000000Z"} 2024-11-18T14:02:35+00:00 https://vulnerability.circl.lu/sighting/b92d2486-7e4f-47d1-a728-4c195bd9a59d/export b92d2486-7e4f-47d1-a728-4c195bd9a59d 2026-06-12T16:02:20.992801+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "b92d2486-7e4f-47d1-a728-4c195bd9a59d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48905", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14403", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48905\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Sematell ReplyOne 7.4.3.0 has Insecure Permissions for the /rest/sessions endpoint.\n\ud83d\udccf Published: 2025-05-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T20:58:45.411Z\n\ud83d\udd17 References:\n1. https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-082.txt", "creation_timestamp": "2025-05-01T21:26:26.000000Z"} 2025-05-01T21:26:26+00:00 https://vulnerability.circl.lu/sighting/e186f82e-42e6-4b5c-bd24-867963a8d7c6/export e186f82e-42e6-4b5c-bd24-867963a8d7c6 2026-06-12T16:02:20.992721+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "e186f82e-42e6-4b5c-bd24-867963a8d7c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48907", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14404", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48907\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Sematell ReplyOne 7.4.3.0 allows SSRF via the application server API.\n\ud83d\udccf Published: 2025-05-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T20:57:03.732Z\n\ud83d\udd17 References:\n1. https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-083.txt", "creation_timestamp": "2025-05-01T21:26:27.000000Z"} 2025-05-01T21:26:27+00:00 https://vulnerability.circl.lu/sighting/b6fd6c68-df46-4c32-a3e6-b4959fc723d4/export b6fd6c68-df46-4c32-a3e6-b4959fc723d4 2026-06-12T16:02:20.992639+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "b6fd6c68-df46-4c32-a3e6-b4959fc723d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48906", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14405", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48906\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Sematell ReplyOne 7.4.3.0 allows XSS via a ReplyDesk e-mail attachment name.\n\ud83d\udccf Published: 2025-05-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T20:55:26.850Z\n\ud83d\udd17 References:\n1. https://www.syss.de/fileadmin/dokumente/Publikationen/Advisories/SYSS-2024-081.txt", "creation_timestamp": "2025-05-01T21:26:28.000000Z"} 2025-05-01T21:26:28+00:00 https://vulnerability.circl.lu/sighting/5250111c-0e53-40f2-8836-190a6800c9b1/export 5250111c-0e53-40f2-8836-190a6800c9b1 2026-06-12T16:02:20.992547+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5250111c-0e53-40f2-8836-190a6800c9b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48907", "type": "seen", "source": "https://t.me/cvedetector/24284", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-48907 - Sematell ReplyOne 7.4.3.0 allows SSRF via the appl\", \n \"Content\": \"CVE ID : CVE-2024-48907 \nPublished : May 1, 2025, 9:15 p.m. | 1\u00a0hour, 26\u00a0minutes ago \nDescription : Sematell ReplyOne 7.4.3.0 allows SSRF via the application server API. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-02T00:53:06.000000Z"} 2025-05-02T00:53:06+00:00 https://vulnerability.circl.lu/sighting/3eee7db7-04de-47d1-b868-40d97834d749/export 3eee7db7-04de-47d1-b868-40d97834d749 2026-06-12T16:02:20.992461+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "3eee7db7-04de-47d1-b868-40d97834d749", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48905", "type": "seen", "source": "https://t.me/cvedetector/24285", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-48905 - Sematell ReplyOne Authentication Bypass\", \n \"Content\": \"CVE ID : CVE-2024-48905 \nPublished : May 1, 2025, 9:15 p.m. | 1\u00a0hour, 26\u00a0minutes ago \nDescription : Sematell ReplyOne 7.4.3.0 has Insecure Permissions for the /rest/sessions endpoint. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-02T00:53:07.000000Z"} 2025-05-02T00:53:07+00:00 https://vulnerability.circl.lu/sighting/20b7c75e-b3f4-46b4-b2b1-190ba1bec8d8/export 20b7c75e-b3f4-46b4-b2b1-190ba1bec8d8 2026-06-12T16:02:20.992357+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "20b7c75e-b3f4-46b4-b2b1-190ba1bec8d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48906", "type": "seen", "source": "https://t.me/cvedetector/24286", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-48906 - Sematell ReplyOne Cross-Site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-48906 \nPublished : May 1, 2025, 9:15 p.m. | 1\u00a0hour, 26\u00a0minutes ago \nDescription : Sematell ReplyOne 7.4.3.0 allows XSS via a ReplyDesk e-mail attachment name. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-02T00:53:08.000000Z"} 2025-05-02T00:53:08+00:00 https://vulnerability.circl.lu/sighting/7a8b4f61-d224-4068-9225-7953e57dd7b9/export 7a8b4f61-d224-4068-9225-7953e57dd7b9 2026-06-12T16:02:20.991382+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "7a8b4f61-d224-4068-9225-7953e57dd7b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-48908", "type": "published-proof-of-concept", "source": "https://github.com/lycheeverse/lychee-action/security/advisories/GHSA-65rg-554r-9j5x", "content": "", "creation_timestamp": "2025-08-28T13:24:35.000000Z"} 2025-08-28T13:24:35+00:00 https://vulnerability.circl.lu/sighting/717220e5-006f-4cee-aa74-cb04993a0313/export 717220e5-006f-4cee-aa74-cb04993a0313 2026-06-12T16:02:20.991273+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "717220e5-006f-4cee-aa74-cb04993a0313", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-48901", "type": "seen", "source": "MISP/1c5c38d6-3401-41ac-be0e-4cf361fa6f51", "content": "", "creation_timestamp": "2025-09-25T00:36:29.000000Z"} 2025-09-25T00:36:29+00:00 https://vulnerability.circl.lu/sighting/a0ff9250-1bb8-49e5-8ddf-fe51a120d7e0/export a0ff9250-1bb8-49e5-8ddf-fe51a120d7e0 2026-06-12T16:02:20.989628+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "a0ff9250-1bb8-49e5-8ddf-fe51a120d7e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4890", "type": "published-proof-of-concept", "source": "Telegram/TnTlInxxzNpt0OgbsDLOj6rIodSNCMGeXkGWTk3FIFq8dbI", "content": "", "creation_timestamp": "2025-11-12T15:00:09.000000Z"} 2025-11-12T15:00:09+00:00