Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-08T02:22:06.259768+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/af737feb-3f45-4851-bb5c-e6556da4224d/export af737feb-3f45-4851-bb5c-e6556da4224d 2026-05-08T02:22:06.444860+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "af737feb-3f45-4851-bb5c-e6556da4224d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46565", "type": "seen", "source": "https://bsky.app/profile/mynameisv.bsky.social/post/3lofscowf6k2y", "content": "", "creation_timestamp": "2025-05-05T07:01:24.584699Z"} 2025-05-05T07:01:24.584699+00:00 https://vulnerability.circl.lu/sighting/41ecdec7-0c5b-4ccd-b3ca-d7c09894fb88/export 41ecdec7-0c5b-4ccd-b3ca-d7c09894fb88 2026-05-08T02:22:06.444779+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "41ecdec7-0c5b-4ccd-b3ca-d7c09894fb88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46561", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lqkqgl4r4k2r", "content": "", "creation_timestamp": "2025-06-01T17:01:30.675710Z"} 2025-06-01T17:01:30.675710+00:00 https://vulnerability.circl.lu/sighting/861d8322-208e-4a7f-bbed-535ae6773821/export 861d8322-208e-4a7f-bbed-535ae6773821 2026-05-08T02:22:06.444700+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "861d8322-208e-4a7f-bbed-535ae6773821", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46566", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqqkl2lmpn2q", "content": "", "creation_timestamp": "2025-06-04T00:32:34.355629Z"} 2025-06-04T00:32:34.355629+00:00 https://vulnerability.circl.lu/sighting/40f9bdf1-bf60-4338-864b-8a3ae0bb567b/export 40f9bdf1-bf60-4338-864b-8a3ae0bb567b 2026-05-08T02:22:06.444595+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "40f9bdf1-bf60-4338-864b-8a3ae0bb567b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46568", "type": "published-proof-of-concept", "source": "https://t.me/wr3dmast3rvs/57", "content": "\u0421\u0435\u0433\u043e\u0434\u043d\u044f \u0432 \u043b\u0430\u0439\u0432-\u0440\u0435\u0436\u0438\u043c\u0435 \u0437\u043d\u0430\u043a\u043e\u043c\u0438\u043b\u0438\u0441\u044c \u0441 \u0430\u043d\u0430\u043b\u0438\u0437\u043e\u043c \u043a\u043e\u0434\u0430 \u043d\u0430 \u043f\u0440\u0438\u043c\u0435\u0440\u0435 SSRF \u0432 Stirling-PDF (CVE-2025-46568): \u0447\u0442\u0435\u043d\u0438\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0447\u0435\u0440\u0435\u0437 WeasyPrint. \u041d\u0435 \u0431\u044b\u043b\u043e \u043e\u0441\u043e\u0431\u043e \u0432\u0430\u0436\u043d\u043e, \u043a\u0430\u043a\u0430\u044f CVE. \u0413\u043b\u0430\u0432\u043d\u043e\u0435 \u2014 \u043f\u043e\u0442\u0440\u0435\u043d\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0430\u043d\u0430\u043b\u0438\u0437 \u043a\u043e\u0434\u0430 \ud83c\udfc3\u200d\u2642\ufe0f\n\nStirling-PDF \u2014 \u044d\u0442\u043e \u0432\u0435\u0431-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u0434\u043b\u044f \u0440\u0430\u0431\u043e\u0442\u044b \u0441 PDF (\u043a\u043e\u043d\u0432\u0435\u0440\u0442\u0430\u0446\u0438\u044f, \u0440\u0435\u0434\u0430\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435). \u0412 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 \u0434\u043e 0.45.0 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 SSRF-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0447\u0438\u0442\u0430\u0442\u044c \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 \u0447\u0435\u0440\u0435\u0437 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0443 HTML \u0432 WeasyPrint \u26a0\ufe0f\n\n\u0421\u0443\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438:\n1. \u041f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e \u0444\u0438\u043b\u044c\u0442\u0440\u0443\u0435\u0442 HTML-\u043a\u043e\u043d\u0442\u0435\u043d\u0442, \u0437\u0430\u0433\u0440\u0443\u0436\u0435\u043d\u043d\u044b\u0439 \u043f\u043e URL;\n2. WeasyPrint \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442 \u0442\u0435\u0433 , \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0432\u0441\u0442\u0440\u0430\u0438\u0432\u0430\u0435\u0442 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b (file://) \u0432 PDF \u043a\u0430\u043a \u0441\u043a\u0440\u044b\u0442\u044b\u0435 \u0432\u043b\u043e\u0436\u0435\u043d\u0438\u044f.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u0430\u044f \u043e\u0448\u0438\u0431\u043a\u0430 \u2014 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0441\u0430\u043d\u0438\u0442\u0438\u0437\u0430\u0446\u0438\u0438 HTML \u043f\u0435\u0440\u0435\u0434 \u0440\u0435\u043d\u0434\u0435\u0440\u0438\u043d\u0433\u043e\u043c:\n// 1. \u041f\u0440\u0438\u043d\u0438\u043c\u0430\u0435\u0442 URL \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0435\u0442 \u0442\u043e\u043b\u044c\u043a\u043e \u0441\u0445\u0435\u043c\u0443 http/https\nif (!URL.matches(\"^https?://.*\") || !GeneralUtils.isValidURL(URL)) {\n throw new IllegalArgumentException(\"Invalid URL format provided.\");\n}\n\n// 2. \u041f\u0435\u0440\u0435\u0434\u0430\u0451\u0442 URL \u0432 WeasyPrint \u0431\u0435\u0437 \u043e\u0447\u0438\u0441\u0442\u043a\u0438 HTML\nList command = new ArrayList<>();\ncommand.add(runtimePathConfig.getWeasyPrintPath());\ncommand.add(URL); // HTML \u043c\u043e\u0436\u0435\u0442 \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0442\u044c \ncommand.add(\"--pdf-forms\");\ncommand.add(tempOutputFile.toString());\n\n// 3. WeasyPrint \u0440\u0435\u043d\u0434\u0435\u0440\u0438\u0442 PDF \u0441 \u0432\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u043c\u0438 \u0444\u0430\u0439\u043b\u0430\u043c\u0438\nProcessExecutor.runCommandWithOutputHandling(command);\n\nPoC:\n\n\n\n \n\n\n\n\n\u0415\u0441\u043b\u0438 \u0412\u0430\u043c \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u0435\u043d \u0430\u043d\u0430\u043b\u0438\u0437 \u043a\u043e\u0434\u0430 \u0438\u043b\u0438 \u0412\u044b \u0445\u043e\u0442\u0438\u0442\u0435 \u043f\u043e\u0437\u043d\u0430\u043a\u043e\u043c\u0438\u0442\u044c\u0441\u044f, \u043f\u0440\u0438\u0441\u043e\u0435\u0434\u0438\u043d\u044f\u0439\u0442\u0435\u0441\u044c \u043a Discord \u0438 \u0437\u0430\u0445\u043e\u0434\u0438\u0442\u0435 \u043d\u0430 \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0435 \u0432\u0441\u0442\u0440\u0435\u0447\u0438! \ud83d\udd0d", "creation_timestamp": "2025-06-21T19:52:27.000000Z"} 2025-06-21T19:52:27+00:00 https://vulnerability.circl.lu/sighting/aa478604-de18-4833-9c70-73b2852f54e6/export aa478604-de18-4833-9c70-73b2852f54e6 2026-05-08T02:22:06.444496+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "aa478604-de18-4833-9c70-73b2852f54e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4656", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19484", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-4656\n\ud83d\udd25 CVSS Score: 3.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: Vault Community and Vault Enterprise rekey and recovery key operations can lead to a denial of service due to uncontrolled cancellation by a Vault operator. This vulnerability (CVE-2025-4656) has been remediated in Vault Community Edition 1.20.0 and Vault Enterprise 1.20.0, 1.19.6, 1.18.11, 1.17.17, and 1.16.22.\n\ud83d\udccf Published: 2025-06-25T16:15:11.861Z\n\ud83d\udccf Modified: 2025-06-25T16:17:34.648Z\n\ud83d\udd17 References:\n1. https://discuss.hashicorp.com/t/hcsec-2025-11-vault-vulnerable-to-recovery-key-cancellation-denial-of-service/75570", "creation_timestamp": "2025-06-25T16:47:42.000000Z"} 2025-06-25T16:47:42+00:00 https://vulnerability.circl.lu/sighting/af8b0718-0673-4693-b338-da41aa1069a5/export af8b0718-0673-4693-b338-da41aa1069a5 2026-05-08T02:22:06.444405+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "af8b0718-0673-4693-b338-da41aa1069a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46569", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lvgncwlzts2p", "content": "", "creation_timestamp": "2025-08-02T17:01:05.937418Z"} 2025-08-02T17:01:05.937418+00:00 https://vulnerability.circl.lu/sighting/c82f9bdb-99d5-437e-a8be-9b3ffdfd7d6e/export c82f9bdb-99d5-437e-a8be-9b3ffdfd7d6e 2026-05-08T02:22:06.444318+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "c82f9bdb-99d5-437e-a8be-9b3ffdfd7d6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46569", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lvhmyo5sn72t", "content": "", "creation_timestamp": "2025-08-03T02:27:59.440325Z"} 2025-08-03T02:27:59.440325+00:00 https://vulnerability.circl.lu/sighting/4cfc996c-d304-4424-8ccd-8a14ae9cf36f/export 4cfc996c-d304-4424-8ccd-8a14ae9cf36f 2026-05-08T02:22:06.444223+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "4cfc996c-d304-4424-8ccd-8a14ae9cf36f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46565", "type": "published-proof-of-concept", "source": "https://t.me/realcodeb0ss/183", "content": "", "creation_timestamp": "2025-11-21T18:06:21.000000Z"} 2025-11-21T18:06:21+00:00 https://vulnerability.circl.lu/sighting/344b3117-09ec-44af-8c98-44985e862664/export 344b3117-09ec-44af-8c98-44985e862664 2026-05-08T02:22:06.444091+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "344b3117-09ec-44af-8c98-44985e862664", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46564", "type": "seen", "source": "https://gist.github.com/MagnaCapax/15579d7add88dacf2ba0c5bb47be443b", "content": "", "creation_timestamp": "2026-02-11T08:11:05.000000Z"} 2026-02-11T08:11:05+00:00 https://vulnerability.circl.lu/sighting/7b2d9f2a-52e8-4e5b-8454-ab9037047f6d/export 7b2d9f2a-52e8-4e5b-8454-ab9037047f6d 2026-05-08T02:22:06.439785+00:00 Automation user http://cve.circl.lu/user/automation {"uuid": "7b2d9f2a-52e8-4e5b-8454-ab9037047f6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-46565", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2025/CVE-2025-46565.yaml", "content": "", "creation_timestamp": "2026-03-26T01:31:37.000000Z"} 2026-03-26T01:31:37+00:00