Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-21T22:20:50.773377+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f83dddd0-f26d-4913-bb28-645b00d36050/export f83dddd0-f26d-4913-bb28-645b00d36050 2026-06-21T22:20:50.814761+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "f83dddd0-f26d-4913-bb28-645b00d36050", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/jqsHB6FIdeMNMlYJLaE-SWbBIQ7X4SKPFQvaPULFC7d8_bM", "content": "", "creation_timestamp": "2026-04-14T15:00:07.000000Z"} 2026-04-14T15:00:07+00:00 https://vulnerability.circl.lu/sighting/fcdffa47-8964-45d0-8d85-b48cba140cc6/export fcdffa47-8964-45d0-8d85-b48cba140cc6 2026-06-21T22:20:50.814646+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "fcdffa47-8964-45d0-8d85-b48cba140cc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/pCo_ULdqtYm5JNcUwpHa2UncR4FyWF1uQHW0ymYDC6k2-2Y", "content": "", "creation_timestamp": "2026-04-15T09:00:05.000000Z"} 2026-04-15T09:00:05+00:00 https://vulnerability.circl.lu/sighting/e1727eca-fcd9-4427-bca9-be900d57b42a/export e1727eca-fcd9-4427-bca9-be900d57b42a 2026-06-21T22:20:50.814527+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "e1727eca-fcd9-4427-bca9-be900d57b42a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-59528", "type": "seen", "source": "https://bsky.app/profile/ai-nerd.bsky.social/post/3mjn2wvwvuy2w", "content": "", "creation_timestamp": "2026-04-16T18:44:50.082124Z"} 2026-04-16T18:44:50.082124+00:00 https://vulnerability.circl.lu/sighting/4ec3efb9-6878-479a-a24d-a06be54331e0/export 4ec3efb9-6878-479a-a24d-a06be54331e0 2026-06-21T22:20:50.814410+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "4ec3efb9-6878-479a-a24d-a06be54331e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://gist.github.com/mrbrownstone07/2caf598e6f4230d711c7fbf7954c24bf", "content": "", "creation_timestamp": "2026-04-17T15:49:26.000000Z"} 2026-04-17T15:49:26+00:00 https://vulnerability.circl.lu/sighting/d44b0521-d3bc-4d0d-afe5-400eb2fc8902/export d44b0521-d3bc-4d0d-afe5-400eb2fc8902 2026-06-21T22:20:50.814288+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "d44b0521-d3bc-4d0d-afe5-400eb2fc8902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3ml2ly6ysgp25", "content": "Already on our IOC corpus before launch:\n\n@iflow-mcp/watercrawl-watercrawl-mcp v1.3.0-1.3.4 = GlassWorm (Aikido)\n20+ MCP-named repos serving SmartLoader (URLhaus)\nCVE-2025-59528: mcpServerConfig exploit\n\nThe ecosystem's been targeted, just not counted.", "creation_timestamp": "2026-05-04T21:19:28.502731Z"} 2026-05-04T21:19:28.502731+00:00 https://vulnerability.circl.lu/sighting/ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd/export ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd 2026-06-21T22:20:50.814170+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/M2s3PphtTCD9brru-X6QMyPesFMqQlhfbVnnLWpusEfiV5g", "content": "", "creation_timestamp": "2026-05-16T21:00:04.000000Z"} 2026-05-16T21:00:04+00:00 https://vulnerability.circl.lu/sighting/65cd396b-18a1-40c1-b615-2f2aae8e4cdd/export 65cd396b-18a1-40c1-b615-2f2aae8e4cdd 2026-06-21T22:20:50.814049+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "65cd396b-18a1-40c1-b615-2f2aae8e4cdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "Telegram/FMuj_IRa9WJxg8stLSMyK9s8hezzOoxBzO2QROQaixpXJv8", "content": "", "creation_timestamp": "2026-05-17T21:00:04.000000Z"} 2026-05-17T21:00:04+00:00 https://vulnerability.circl.lu/sighting/5dce8822-efb7-4819-aea8-ac32aefef0b9/export 5dce8822-efb7-4819-aea8-ac32aefef0b9 2026-06-21T22:20:50.813911+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "5dce8822-efb7-4819-aea8-ac32aefef0b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://t.me/GithubRedTeam/86822", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a HackTheBox-Silentium\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a SuriyaBoon\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 11:10:37\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFull walkthrough of HackTheBox \"Silentium\" (Medium/Linux). Chains three CVEs: CVE-2025-58434 leaks a Flowise password reset token unauthenticated, enabling account takeover; CVE-2025-59528 achieves RCE via unsanitized CustomMCP node; env vars expose SSH credentials for lateral movement. CVE-2025-8110 exploits Gogs symlink write as root to escalate.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T12:08:23.000000Z"} 2026-06-01T12:08:23+00:00 https://vulnerability.circl.lu/sighting/e1687baf-1c01-453c-838c-802c3427000f/export e1687baf-1c01-453c-838c-802c3427000f 2026-06-21T22:20:50.813749+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "e1687baf-1c01-453c-838c-802c3427000f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/pEOUYF8cGjnWnRNsVcTP1hWT8v0mLe1mBAfuN7qHOw-Q7YU", "content": "", "creation_timestamp": "2026-06-09T03:00:05.000000Z"} 2026-06-09T03:00:05+00:00 https://vulnerability.circl.lu/sighting/99d672d9-056a-4996-8946-3c5a8a59f496/export 99d672d9-056a-4996-8946-3c5a8a59f496 2026-06-21T22:20:50.811973+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "99d672d9-056a-4996-8946-3c5a8a59f496", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6fec5af1-bdae-4e72-b62f-ad6bd4e72f1c", "content": "", "creation_timestamp": "2026-06-19T12:45:35.684105Z"} 2026-06-19T12:45:35.684105+00:00