<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-17T19:05:49.800803+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4381f77f-4045-4492-a488-d893e2bab09b/export</id>
    <title>4381f77f-4045-4492-a488-d893e2bab09b</title>
    <updated>2026-07-17T19:05:49.821739+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4381f77f-4045-4492-a488-d893e2bab09b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/1039", "content": "CVE-2024-46483: Integer Overflow in Xlight FTP Server, 9.8 rating \ud83d\udd25\n\nBy overflowing the variable, an attacker could cause remote code execution on the host or a denial of service.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/M8D2R\n\ud83d\udc49 Dork: \\*.banner:\"Xlight\" OR raw_tcp.response_data:\"Xlight\"\n\nRead more: https://github.com/kn32/cve-2024-46483", "creation_timestamp": "2026-07-12T00:00:45.404801Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4381f77f-4045-4492-a488-d893e2bab09b/export"/>
    <published>2026-07-12T00:00:45.404801+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3cf13a68-3906-40c8-9a58-d0b40d7d5769/export</id>
    <title>3cf13a68-3906-40c8-9a58-d0b40d7d5769</title>
    <updated>2026-07-17T19:05:49.823353+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3cf13a68-3906-40c8-9a58-d0b40d7d5769", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/1039", "content": "CVE-2024-46483: Integer Overflow in Xlight FTP Server, 9.8 rating \ud83d\udd25\n\nBy overflowing the variable, an attacker could cause remote code execution on the host or a denial of service.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/M8D2R\n\ud83d\udc49 Dork: \\*.banner:\"Xlight\" OR raw_tcp.response_data:\"Xlight\"\n\nRead more: https://github.com/kn32/cve-2024-46483", "creation_timestamp": "2026-07-11T17:00:04.586310Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3cf13a68-3906-40c8-9a58-d0b40d7d5769/export"/>
    <published>2026-07-11T17:00:04.586310+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e8cb1157-3edc-4d0e-a055-4c294cb08059/export</id>
    <title>e8cb1157-3edc-4d0e-a055-4c294cb08059</title>
    <updated>2026-07-17T19:05:49.823473+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e8cb1157-3edc-4d0e-a055-4c294cb08059", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "seen", "source": "https://t.me/brutsecurity/1039", "content": "CVE-2024-46483: Integer Overflow in Xlight FTP Server, 9.8 rating \ud83d\udd25\n\nBy overflowing the variable, an attacker could cause remote code execution on the host or a denial of service.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/M8D2R\n\ud83d\udc49 Dork: \\*.banner:\"Xlight\" OR raw_tcp.response_data:\"Xlight\"\n\nRead more: https://github.com/kn32/cve-2024-46483", "creation_timestamp": "2026-07-10T00:00:36.034028Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e8cb1157-3edc-4d0e-a055-4c294cb08059/export"/>
    <published>2026-07-10T00:00:36.034028+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/680caa4e-958f-43b1-9bd5-6c048037973e/export</id>
    <title>680caa4e-958f-43b1-9bd5-6c048037973e</title>
    <updated>2026-07-17T19:05:49.823571+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "680caa4e-958f-43b1-9bd5-6c048037973e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "seen", "source": "https://t.me/brutsecurity/1039", "content": "CVE-2024-46483: Integer Overflow in Xlight FTP Server, 9.8 rating \ud83d\udd25\n\nBy overflowing the variable, an attacker could cause remote code execution on the host or a denial of service.\n\nSearch at Netlas.io:\n\ud83d\udc49 Link: https://nt.ls/M8D2R\n\ud83d\udc49 Dork: \\*.banner:\"Xlight\" OR raw_tcp.response_data:\"Xlight\"\n\nRead more: https://github.com/kn32/cve-2024-46483", "creation_timestamp": "2026-07-09T03:00:12.154688Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/680caa4e-958f-43b1-9bd5-6c048037973e/export"/>
    <published>2026-07-09T03:00:12.154688+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/eb113b4d-ec76-49bb-941f-b367eeb2f5ad/export</id>
    <title>eb113b4d-ec76-49bb-941f-b367eeb2f5ad</title>
    <updated>2026-07-17T19:05:49.823661+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "eb113b4d-ec76-49bb-941f-b367eeb2f5ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/690", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&amp;amp;CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&amp;amp;CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser &amp;lt;24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:26.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/eb113b4d-ec76-49bb-941f-b367eeb2f5ad/export"/>
    <published>2024-11-15T05:24:26+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ec8c9111-9275-40c0-a834-34fbfe82e573/export</id>
    <title>ec8c9111-9275-40c0-a834-34fbfe82e573</title>
    <updated>2026-07-17T19:05:49.823758+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ec8c9111-9275-40c0-a834-34fbfe82e573", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/24431", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&amp;amp;CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&amp;amp;CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser &amp;lt;24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:25.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ec8c9111-9275-40c0-a834-34fbfe82e573/export"/>
    <published>2024-11-15T05:24:25+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d24a63ba-055d-4ec1-b6f7-a0eeefc01445/export</id>
    <title>d24a63ba-055d-4ec1-b6f7-a0eeefc01445</title>
    <updated>2026-07-17T19:05:49.823855+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d24a63ba-055d-4ec1-b6f7-a0eeefc01445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/7636", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&amp;amp;CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&amp;amp;CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser &amp;lt;24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:21.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d24a63ba-055d-4ec1-b6f7-a0eeefc01445/export"/>
    <published>2024-11-15T05:24:21+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4d59f1f6-c405-4718-a1a2-a8aad4ebccc0/export</id>
    <title>4d59f1f6-c405-4718-a1a2-a8aad4ebccc0</title>
    <updated>2026-07-17T19:05:49.823935+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4d59f1f6-c405-4718-a1a2-a8aad4ebccc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/9017", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&amp;amp;CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&amp;amp;CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser &amp;lt;24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:21.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4d59f1f6-c405-4718-a1a2-a8aad4ebccc0/export"/>
    <published>2024-11-15T05:24:21+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/cd13ad01-5b70-48cf-8d40-c55a80a927fc/export</id>
    <title>cd13ad01-5b70-48cf-8d40-c55a80a927fc</title>
    <updated>2026-07-17T19:05:49.824024+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "cd13ad01-5b70-48cf-8d40-c55a80a927fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1216", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&amp;amp;CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&amp;amp;CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser &amp;lt;24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T04:10:10.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/cd13ad01-5b70-48cf-8d40-c55a80a927fc/export"/>
    <published>2024-11-15T04:10:10+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4269cfc3-2cb1-4972-8204-f31071e500d1/export</id>
    <title>4269cfc3-2cb1-4972-8204-f31071e500d1</title>
    <updated>2026-07-17T19:05:49.824109+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cve.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4269cfc3-2cb1-4972-8204-f31071e500d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3901", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\n\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&amp;amp;CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&amp;amp;CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser &amp;lt;24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T04:10:09.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4269cfc3-2cb1-4972-8204-f31071e500d1/export"/>
    <published>2024-11-15T04:10:09+00:00</published>
  </entry>
</feed>
