Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-09T19:30:35.966573+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/63467164-5a93-43cd-84fb-33ba5f81ee4c/export 63467164-5a93-43cd-84fb-33ba5f81ee4c 2026-05-09T19:30:36.218821+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "63467164-5a93-43cd-84fb-33ba5f81ee4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54918", "type": "seen", "source": "https://t.me/cvedetector/12436", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-54918 - Kashipara E-learning Management System File Upload RCE\", \n \"Content\": \"CVE ID : CVE-2024-54918 \nPublished : Dec. 9, 2024, 7:15 p.m. | 44\u00a0minutes ago \nDescription : Kashipara E-learning Management System v1.0 is vulnerable to Remote Code Execution via File Upload in /teacher_avatar.php. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"09 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T21:23:55.000000Z"} 2024-12-09T21:23:55+00:00 https://vulnerability.circl.lu/sighting/85131065-296d-4d94-b6b8-8f795e742f90/export 85131065-296d-4d94-b6b8-8f795e742f90 2026-05-09T19:30:36.218744+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "85131065-296d-4d94-b6b8-8f795e742f90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54910", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113805505863425025", "content": "", "creation_timestamp": "2025-01-10T18:36:48.589971Z"} 2025-01-10T18:36:48.589971+00:00 https://vulnerability.circl.lu/sighting/74fbc054-8d7f-45e4-b887-183ad904b23c/export 74fbc054-8d7f-45e4-b887-183ad904b23c 2026-05-09T19:30:36.218583+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "74fbc054-8d7f-45e4-b887-183ad904b23c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54910", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lffvqfxyza22", "content": "", "creation_timestamp": "2025-01-10T19:16:00.089057Z"} 2025-01-10T19:16:00.089057+00:00 https://vulnerability.circl.lu/sighting/2b63c50f-0e6b-4276-8c10-2b63c9d2358a/export 2b63c50f-0e6b-4276-8c10-2b63c9d2358a 2026-05-09T19:30:36.218321+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "2b63c50f-0e6b-4276-8c10-2b63c9d2358a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54910", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lffwqzrok62q", "content": "", "creation_timestamp": "2025-01-10T19:34:14.733606Z"} 2025-01-10T19:34:14.733606+00:00 https://vulnerability.circl.lu/sighting/d3ffe74a-31f5-4c70-97eb-edd864434b73/export d3ffe74a-31f5-4c70-97eb-edd864434b73 2026-05-09T19:30:36.218042+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "d3ffe74a-31f5-4c70-97eb-edd864434b73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54910", "type": "seen", "source": "https://t.me/cvedetector/14994", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-54910 - Hasleo Backup Suite Free Unvalidated File Recovery Insecure Permissions\", \n \"Content\": \"CVE ID : CVE-2024-54910 \nPublished : Jan. 10, 2025, 7:15 p.m. | 38\u00a0minutes ago \nDescription : Hasleo Backup Suite Free v4.9.4 and before is vulnerable to Insecure Permissions via the File recovery function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"10 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-10T21:21:50.000000Z"} 2025-01-10T21:21:50+00:00 https://vulnerability.circl.lu/sighting/1f95c394-9b69-4f79-b62e-8164fd451966/export 1f95c394-9b69-4f79-b62e-8164fd451966 2026-05-09T19:30:36.217784+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "1f95c394-9b69-4f79-b62e-8164fd451966", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54910", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1513", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-54910\n\ud83d\udd39 Description: Hasleo Backup Suite Free v4.9.4 and before is vulnerable to Insecure Permissions via the File recovery function.\n\ud83d\udccf Published: 2025-01-10T00:00:00\n\ud83d\udccf Modified: 2025-01-14T15:54:05.441Z\n\ud83d\udd17 References:\n1. https://www.easyuefi.com/backup-software/backup-suite-free.html\n2. https://github.com/KrakenEU/CVE-2024-54910", "creation_timestamp": "2025-01-14T16:18:43.000000Z"} 2025-01-14T16:18:43+00:00 https://vulnerability.circl.lu/sighting/25fe2a5d-99f4-4a8e-8278-589c3779b3ea/export 25fe2a5d-99f4-4a8e-8278-589c3779b3ea 2026-05-09T19:30:36.217513+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "25fe2a5d-99f4-4a8e-8278-589c3779b3ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54916", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhws2shj2s2g", "content": "", "creation_timestamp": "2025-02-11T23:15:52.447436Z"} 2025-02-11T23:15:52.447436+00:00 https://vulnerability.circl.lu/sighting/b7176762-3ff3-4ebe-ab85-5c7411b57557/export b7176762-3ff3-4ebe-ab85-5c7411b57557 2026-05-09T19:30:36.217221+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "b7176762-3ff3-4ebe-ab85-5c7411b57557", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54916", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3959", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-54916\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the checkPasscode method.\n\ud83d\udccf Published: 2025-02-12T00:32:17Z\n\ud83d\udccf Modified: 2025-02-12T00:32:17Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-54916\n2. https://drive.google.com/file/d/1knf8-_fFUSLd3ZmbEpy0_OVzSN1UR1JR/view?usp=sharing\n3. https://github.com/SAHALLL/CVE-2024-54916", "creation_timestamp": "2025-02-12T01:09:56.000000Z"} 2025-02-12T01:09:56+00:00 https://vulnerability.circl.lu/sighting/4dff37f5-a656-4b33-9223-86398c014945/export 4dff37f5-a656-4b33-9223-86398c014945 2026-05-09T19:30:36.216812+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "4dff37f5-a656-4b33-9223-86398c014945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54916", "type": "seen", "source": "https://t.me/cvedetector/17775", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-54916 - Telegram Android Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-54916 \nPublished : Feb. 11, 2025, 11:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the checkPasscode method. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"12 Feb 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T01:46:35.000000Z"} 2025-02-12T01:46:35+00:00 https://vulnerability.circl.lu/sighting/8ad61130-b049-4c33-86a2-bef394227485/export 8ad61130-b049-4c33-86a2-bef394227485 2026-05-09T19:30:36.212528+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "8ad61130-b049-4c33-86a2-bef394227485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-54916", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7911", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-54916\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in the SharedConfig class of Telegram Android APK v.11.7.0 allows a physically proximate attacker to bypass authentication and escalate privileges by manipulating the return value of the checkPasscode method.\n\ud83d\udccf Published: 2025-02-11T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T14:38:40.077Z\n\ud83d\udd17 References:\n1. https://drive.google.com/file/d/1knf8-_fFUSLd3ZmbEpy0_OVzSN1UR1JR/view?usp=sharing\n2. https://github.com/SAHALLL/CVE-2024-54916", "creation_timestamp": "2025-03-18T14:50:00.000000Z"} 2025-03-18T14:50:00+00:00