<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 15 Jul 2026 16:39:14 +0000</lastBuildDate>
    <item>
      <title>de84d254-302f-48e8-8a52-0226b8a70434</title>
      <link>https://vulnerability.circl.lu/sighting/de84d254-302f-48e8-8a52-0226b8a70434/export</link>
      <description>{"uuid": "de84d254-302f-48e8-8a52-0226b8a70434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22983", "type": "seen", "source": "https://t.me/cibsecurity/42630", "content": "\u203c CVE-2020-22983 \u203c\n\nA Server-Side Request Forgery (SSRF) vulnerability exists in MicroStrategy Web SDK 11.1 and earlier, allows remote unauthenticated attackers to conduct a server-side request forgery (SSRF) attack via the srcURL parameter to the shortURL task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T16:27:40.000000Z"}</description>
      <content:encoded>{"uuid": "de84d254-302f-48e8-8a52-0226b8a70434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22983", "type": "seen", "source": "https://t.me/cibsecurity/42630", "content": "\u203c CVE-2020-22983 \u203c\n\nA Server-Side Request Forgery (SSRF) vulnerability exists in MicroStrategy Web SDK 11.1 and earlier, allows remote unauthenticated attackers to conduct a server-side request forgery (SSRF) attack via the srcURL parameter to the shortURL task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T16:27:40.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/de84d254-302f-48e8-8a52-0226b8a70434/export</guid>
      <pubDate>Fri, 13 May 2022 16:27:40 +0000</pubDate>
    </item>
    <item>
      <title>7fff5ba6-f7c4-439c-b192-f70468d98ded</title>
      <link>https://vulnerability.circl.lu/sighting/7fff5ba6-f7c4-439c-b192-f70468d98ded/export</link>
      <description>{"uuid": "7fff5ba6-f7c4-439c-b192-f70468d98ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22985", "type": "seen", "source": "https://t.me/cibsecurity/42567", "content": "\u203c CVE-2020-22985 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the key parameter to the getESRIExtraConfig task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:29.000000Z"}</description>
      <content:encoded>{"uuid": "7fff5ba6-f7c4-439c-b192-f70468d98ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22985", "type": "seen", "source": "https://t.me/cibsecurity/42567", "content": "\u203c CVE-2020-22985 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the key parameter to the getESRIExtraConfig task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:29.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7fff5ba6-f7c4-439c-b192-f70468d98ded/export</guid>
      <pubDate>Fri, 13 May 2022 00:42:29 +0000</pubDate>
    </item>
    <item>
      <title>d085a911-976d-476f-a5ac-7e8c54ab44b4</title>
      <link>https://vulnerability.circl.lu/sighting/d085a911-976d-476f-a5ac-7e8c54ab44b4/export</link>
      <description>{"uuid": "d085a911-976d-476f-a5ac-7e8c54ab44b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22986", "type": "seen", "source": "https://t.me/cibsecurity/42561", "content": "\u203c CVE-2020-22986 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the searchString parameter to the wikiScrapper task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:24.000000Z"}</description>
      <content:encoded>{"uuid": "d085a911-976d-476f-a5ac-7e8c54ab44b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22986", "type": "seen", "source": "https://t.me/cibsecurity/42561", "content": "\u203c CVE-2020-22986 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the searchString parameter to the wikiScrapper task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:24.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/d085a911-976d-476f-a5ac-7e8c54ab44b4/export</guid>
      <pubDate>Fri, 13 May 2022 00:42:24 +0000</pubDate>
    </item>
    <item>
      <title>6fdb0614-99f6-45b8-a064-c8d4ab5c25a2</title>
      <link>https://vulnerability.circl.lu/sighting/6fdb0614-99f6-45b8-a064-c8d4ab5c25a2/export</link>
      <description>{"uuid": "6fdb0614-99f6-45b8-a064-c8d4ab5c25a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22987", "type": "seen", "source": "https://t.me/cibsecurity/42558", "content": "\u203c CVE-2020-22987 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the fileToUpload parameter to the uploadFile task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:20.000000Z"}</description>
      <content:encoded>{"uuid": "6fdb0614-99f6-45b8-a064-c8d4ab5c25a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22987", "type": "seen", "source": "https://t.me/cibsecurity/42558", "content": "\u203c CVE-2020-22987 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via the fileToUpload parameter to the uploadFile task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:20.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6fdb0614-99f6-45b8-a064-c8d4ab5c25a2/export</guid>
      <pubDate>Fri, 13 May 2022 00:42:20 +0000</pubDate>
    </item>
    <item>
      <title>99a86fdf-2832-4f96-ab6c-d3f130413be1</title>
      <link>https://vulnerability.circl.lu/sighting/99a86fdf-2832-4f96-ab6c-d3f130413be1/export</link>
      <description>{"uuid": "99a86fdf-2832-4f96-ab6c-d3f130413be1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22984", "type": "seen", "source": "https://t.me/cibsecurity/42557", "content": "\u203c CVE-2020-22984 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via key parameter to the getGoogleExtraConfig task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:18.000000Z"}</description>
      <content:encoded>{"uuid": "99a86fdf-2832-4f96-ab6c-d3f130413be1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-22984", "type": "seen", "source": "https://t.me/cibsecurity/42557", "content": "\u203c CVE-2020-22984 \u203c\n\nCross-Site Scripting (XSS) vulnerability in MicroStrategy Web SDK 10.11 and earlier, allows remote unauthenticated attackers to execute arbitrary code via key parameter to the getGoogleExtraConfig task.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T00:42:18.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/99a86fdf-2832-4f96-ab6c-d3f130413be1/export</guid>
      <pubDate>Fri, 13 May 2022 00:42:18 +0000</pubDate>
    </item>
  </channel>
</rss>
