<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-01T06:56:44.998068+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/defd01e7-2fb4-4691-945a-0545a466eb3f/export</id>
    <title>defd01e7-2fb4-4691-945a-0545a466eb3f</title>
    <updated>2026-07-01T06:56:45.022438+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "defd01e7-2fb4-4691-945a-0545a466eb3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2123", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljxq6qdadw2j", "content": "", "creation_timestamp": "2025-03-09T19:05:19.959869Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/defd01e7-2fb4-4691-945a-0545a466eb3f/export"/>
    <published>2025-03-09T19:05:19.959869+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0a9ff36c-8cdd-4502-8461-5c691f961a4d/export</id>
    <title>0a9ff36c-8cdd-4502-8461-5c691f961a4d</title>
    <updated>2026-07-01T06:56:45.024677+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0a9ff36c-8cdd-4502-8461-5c691f961a4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2123", "type": "seen", "source": "https://t.me/cvedetector/19926", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2123 - GeSHi CSS Handler Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2123 \nPublished : March 9, 2025, 3:15 p.m. | 1\u00a0hour, 17\u00a0minutes ago \nDescription : A vulnerability, which was classified as problematic, has been found in GeSHi up to 1.0.9.1. Affected by this issue is the function get_var of the file /contrib/cssgen.php of the component CSS Handler. The manipulation of the argument default-styles/keywords-1/keywords-2/keywords-3/keywords-4/comments leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 3.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-09T17:57:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0a9ff36c-8cdd-4502-8461-5c691f961a4d/export"/>
    <published>2025-03-09T17:57:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/42f5086e-5f99-496e-af32-626b1cc65a8c/export</id>
    <title>42f5086e-5f99-496e-af32-626b1cc65a8c</title>
    <updated>2026-07-01T06:56:45.024822+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "42f5086e-5f99-496e-af32-626b1cc65a8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2123", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6967", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2123\n\ud83d\udd25 CVSS Score: 5.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in GeSHi up to 1.0.9.1. Affected by this issue is the function get_var of the file /contrib/cssgen.php of the component CSS Handler. The manipulation of the argument default-styles/keywords-1/keywords-2/keywords-3/keywords-4/comments leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-03-09T15:00:12.269Z\n\ud83d\udccf Modified: 2025-03-09T15:00:12.269Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.299036\n2. https://vuldb.com/?ctiid.299036\n3. https://vuldb.com/?submit.507418\n4. https://github.com/GeSHi/geshi-1.0/issues/159\n5. https://github.com/GeSHi/geshi-1.0/issues/159#issue-2880408694", "creation_timestamp": "2025-03-09T15:37:29.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/42f5086e-5f99-496e-af32-626b1cc65a8c/export"/>
    <published>2025-03-09T15:37:29+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/088b436c-f20f-4e5b-94c1-f1e5ded755bc/export</id>
    <title>088b436c-f20f-4e5b-94c1-f1e5ded755bc</title>
    <updated>2026-07-01T06:56:45.024940+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "088b436c-f20f-4e5b-94c1-f1e5ded755bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21238", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4992", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21238\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)\n\ud83d\udd39 Description: Windows Telephony Service Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2025-01-14T18:04:54.493Z\n\ud83d\udccf Modified: 2025-02-21T20:29:10.138Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21238", "creation_timestamp": "2025-02-21T21:22:47.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/088b436c-f20f-4e5b-94c1-f1e5ded755bc/export"/>
    <published>2025-02-21T21:22:47+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f3ad7708-4960-42a9-88fb-0f9f9a1b871c/export</id>
    <title>f3ad7708-4960-42a9-88fb-0f9f9a1b871c</title>
    <updated>2026-07-01T06:56:45.025052+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f3ad7708-4960-42a9-88fb-0f9f9a1b871c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21237", "type": "seen", "source": "Telegram/onn_ySLag5tw1YWC2vcPXED5cEnvDFXXJbBltGwMJHEP-Vs-", "content": "", "creation_timestamp": "2025-01-30T02:17:49.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f3ad7708-4960-42a9-88fb-0f9f9a1b871c/export"/>
    <published>2025-01-30T02:17:49+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dab966a3-7879-4056-ba8c-6a190783a202/export</id>
    <title>dab966a3-7879-4056-ba8c-6a190783a202</title>
    <updated>2026-07-01T06:56:45.025156+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dab966a3-7879-4056-ba8c-6a190783a202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21239", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1897", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21239\n\ud83d\udd39 Description: Windows Telephony Service Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2025-01-14T18:03:30.635Z\n\ud83d\udccf Modified: 2025-01-15T21:59:03.453Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21239", "creation_timestamp": "2025-01-15T22:55:30.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dab966a3-7879-4056-ba8c-6a190783a202/export"/>
    <published>2025-01-15T22:55:30+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6b3fa5ac-c1c4-4c3f-af74-65c9b78e8d72/export</id>
    <title>6b3fa5ac-c1c4-4c3f-af74-65c9b78e8d72</title>
    <updated>2026-07-01T06:56:45.025270+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6b3fa5ac-c1c4-4c3f-af74-65c9b78e8d72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21233", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1896", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21233\n\ud83d\udd39 Description: Windows Telephony Service Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2025-01-14T18:03:27.442Z\n\ud83d\udccf Modified: 2025-01-15T21:59:10.984Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21233", "creation_timestamp": "2025-01-15T22:55:29.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6b3fa5ac-c1c4-4c3f-af74-65c9b78e8d72/export"/>
    <published>2025-01-15T22:55:29+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bff3bb09-5a22-421f-937a-6327b0f9a009/export</id>
    <title>bff3bb09-5a22-421f-937a-6327b0f9a009</title>
    <updated>2026-07-01T06:56:45.025369+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bff3bb09-5a22-421f-937a-6327b0f9a009", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21238", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1681", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-21238\n\ud83d\udd39 Description: Windows Telephony Service Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2025-01-14T18:04:54.493Z\n\ud83d\udccf Modified: 2025-01-15T01:10:54.012Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21238", "creation_timestamp": "2025-01-15T02:10:31.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bff3bb09-5a22-421f-937a-6327b0f9a009/export"/>
    <published>2025-01-15T02:10:31+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/26d9f7b9-be6c-4303-acba-044164421ba7/export</id>
    <title>26d9f7b9-be6c-4303-acba-044164421ba7</title>
    <updated>2026-07-01T06:56:45.025476+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "26d9f7b9-be6c-4303-acba-044164421ba7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21239", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113828585084446644", "content": "", "creation_timestamp": "2025-01-14T20:26:09.912174Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/26d9f7b9-be6c-4303-acba-044164421ba7/export"/>
    <published>2025-01-14T20:26:09.912174+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6e3f2807-aaf6-4f99-bd4e-ae9666cd0ba3/export</id>
    <title>6e3f2807-aaf6-4f99-bd4e-ae9666cd0ba3</title>
    <updated>2026-07-01T06:56:45.025579+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6e3f2807-aaf6-4f99-bd4e-ae9666cd0ba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-21238", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113828526083594683", "content": "", "creation_timestamp": "2025-01-14T20:11:09.567799Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6e3f2807-aaf6-4f99-bd4e-ae9666cd0ba3/export"/>
    <published>2025-01-14T20:11:09.567799+00:00</published>
  </entry>
</feed>
