Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 20 Jun 2026 04:54:08 +0000 c7c82f0b-1cae-40e2-97ff-5c8964e9c047 https://vulnerability.circl.lu/sighting/c7c82f0b-1cae-40e2-97ff-5c8964e9c047/export {"uuid": "c7c82f0b-1cae-40e2-97ff-5c8964e9c047", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26533", "type": "seen", "source": "https://t.me/cibsecurity/38838", "content": "\u203c CVE-2022-26533 \u203c\n\nAlist v2.1.0 and below was discovered to contain a cross-site scripting (XSS) vulnerability via /i/:data/ipa.plist.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-12T07:15:27.000000Z"} {"uuid": "c7c82f0b-1cae-40e2-97ff-5c8964e9c047", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26533", "type": "seen", "source": "https://t.me/cibsecurity/38838", "content": "\u203c CVE-2022-26533 \u203c\n\nAlist v2.1.0 and below was discovered to contain a cross-site scripting (XSS) vulnerability via /i/:data/ipa.plist.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-12T07:15:27.000000Z"} https://vulnerability.circl.lu/sighting/c7c82f0b-1cae-40e2-97ff-5c8964e9c047/export Sat, 12 Mar 2022 07:15:27 +0000 a7a14233-f494-4ab2-94e1-89895c8018c2 https://vulnerability.circl.lu/sighting/a7a14233-f494-4ab2-94e1-89895c8018c2/export {"uuid": "a7a14233-f494-4ab2-94e1-89895c8018c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26530", "type": "seen", "source": "https://t.me/cibsecurity/40080", "content": "\u203c CVE-2022-26530 \u203c\n\nswaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-04T02:27:08.000000Z"} {"uuid": "a7a14233-f494-4ab2-94e1-89895c8018c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26530", "type": "seen", "source": "https://t.me/cibsecurity/40080", "content": "\u203c CVE-2022-26530 \u203c\n\nswaylock before 1.6 allows attackers to trigger a crash and achieve unlocked access to a Wayland compositor.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-04T02:27:08.000000Z"} https://vulnerability.circl.lu/sighting/a7a14233-f494-4ab2-94e1-89895c8018c2/export Mon, 04 Apr 2022 02:27:08 +0000 88f99413-155b-4a7d-af3d-3acba40d52b2 https://vulnerability.circl.lu/sighting/88f99413-155b-4a7d-af3d-3acba40d52b2/export {"uuid": "88f99413-155b-4a7d-af3d-3acba40d52b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26531", "type": "seen", "source": "https://t.me/cibsecurity/43229", "content": "\u203c CVE-2022-26531 \u203c\n\nMultiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, VPN series firmware versions 4.30 through 5.21, NSG series firmware versions 1.00 through 1.33 Patch 4, NXC2500 firmware version 6.10(AAIG.3) and earlier versions, NAP203 firmware version 6.25(ABFA.7) and earlier versions, NWA50AX firmware version 6.25(ABYW.5) and earlier versions, WAC500 firmware version 6.30(ABVS.2) and earlier versions, and WAX510D firmware version 6.30(ABTF.2) and earlier versions, that could allow a local authenticated attacker to cause a buffer overflow or a system crash via a crafted payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-24T12:41:38.000000Z"} {"uuid": "88f99413-155b-4a7d-af3d-3acba40d52b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26531", "type": "seen", "source": "https://t.me/cibsecurity/43229", "content": "\u203c CVE-2022-26531 \u203c\n\nMultiple improper input validation flaws were identified in some CLI commands of Zyxel USG/ZyWALL series firmware versions 4.09 through 4.71, USG FLEX series firmware versions 4.50 through 5.21, ATP series firmware versions 4.32 through 5.21, VPN series firmware versions 4.30 through 5.21, NSG series firmware versions 1.00 through 1.33 Patch 4, NXC2500 firmware version 6.10(AAIG.3) and earlier versions, NAP203 firmware version 6.25(ABFA.7) and earlier versions, NWA50AX firmware version 6.25(ABYW.5) and earlier versions, WAC500 firmware version 6.30(ABVS.2) and earlier versions, and WAX510D firmware version 6.30(ABTF.2) and earlier versions, that could allow a local authenticated attacker to cause a buffer overflow or a system crash via a crafted payload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-24T12:41:38.000000Z"} https://vulnerability.circl.lu/sighting/88f99413-155b-4a7d-af3d-3acba40d52b2/export Tue, 24 May 2022 12:41:38 +0000 1745b069-b14e-4ae2-9052-573d94961dca https://vulnerability.circl.lu/sighting/1745b069-b14e-4ae2-9052-573d94961dca/export {"uuid": "1745b069-b14e-4ae2-9052-573d94961dca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26531", "type": "seen", "source": "https://t.me/information_security_channel/47668", "content": "Technical Details Released for Recently Patched Zyxel Firewall Vulnerabilities\nhttps://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities\n\nSecurity researchers with HN Security have published technical details on two vulnerabilities affecting many Zyxel products.\nTracked as CVE-2022-26531 and CVE-2022-26532, the two security holes were addressed in late May 2022 with patches for multiple firewalls, access points (APs), and AP controllers.\nread more (https://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities)", "creation_timestamp": "2022-06-07T22:39:38.000000Z"} {"uuid": "1745b069-b14e-4ae2-9052-573d94961dca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26531", "type": "seen", "source": "https://t.me/information_security_channel/47668", "content": "Technical Details Released for Recently Patched Zyxel Firewall Vulnerabilities\nhttps://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities\n\nSecurity researchers with HN Security have published technical details on two vulnerabilities affecting many Zyxel products.\nTracked as CVE-2022-26531 and CVE-2022-26532, the two security holes were addressed in late May 2022 with patches for multiple firewalls, access points (APs), and AP controllers.\nread more (https://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities)", "creation_timestamp": "2022-06-07T22:39:38.000000Z"} https://vulnerability.circl.lu/sighting/1745b069-b14e-4ae2-9052-573d94961dca/export Tue, 07 Jun 2022 22:39:38 +0000 72905aa0-3a6e-4fdf-962c-8b97cba32df5 https://vulnerability.circl.lu/sighting/72905aa0-3a6e-4fdf-962c-8b97cba32df5/export {"uuid": "72905aa0-3a6e-4fdf-962c-8b97cba32df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26532", "type": "seen", "source": "https://t.me/information_security_channel/47668", "content": "Technical Details Released for Recently Patched Zyxel Firewall Vulnerabilities\nhttps://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities\n\nSecurity researchers with HN Security have published technical details on two vulnerabilities affecting many Zyxel products.\nTracked as CVE-2022-26531 and CVE-2022-26532, the two security holes were addressed in late May 2022 with patches for multiple firewalls, access points (APs), and AP controllers.\nread more (https://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities)", "creation_timestamp": "2022-06-07T22:39:38.000000Z"} {"uuid": "72905aa0-3a6e-4fdf-962c-8b97cba32df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26532", "type": "seen", "source": "https://t.me/information_security_channel/47668", "content": "Technical Details Released for Recently Patched Zyxel Firewall Vulnerabilities\nhttps://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities\n\nSecurity researchers with HN Security have published technical details on two vulnerabilities affecting many Zyxel products.\nTracked as CVE-2022-26531 and CVE-2022-26532, the two security holes were addressed in late May 2022 with patches for multiple firewalls, access points (APs), and AP controllers.\nread more (https://www.securityweek.com/technical-details-released-recently-patched-zyxel-firewall-vulnerabilities)", "creation_timestamp": "2022-06-07T22:39:38.000000Z"} https://vulnerability.circl.lu/sighting/72905aa0-3a6e-4fdf-962c-8b97cba32df5/export Tue, 07 Jun 2022 22:39:38 +0000 734f809e-e350-40bc-a8e8-a87422d41ef7 https://vulnerability.circl.lu/sighting/734f809e-e350-40bc-a8e8-a87422d41ef7/export {"uuid": "734f809e-e350-40bc-a8e8-a87422d41ef7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2653", "type": "seen", "source": "https://t.me/cibsecurity/47549", "content": "\u203c CVE-2022-2653 \u203c\n\nWith this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server user is root, an attacker will be able to read any file in the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-05T08:19:34.000000Z"} {"uuid": "734f809e-e350-40bc-a8e8-a87422d41ef7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2653", "type": "seen", "source": "https://t.me/cibsecurity/47549", "content": "\u203c CVE-2022-2653 \u203c\n\nWith this vulnerability an attacker can read many sensitive files like configuration files, or the /proc/self/environ file, that contains the environment variable used by the web server that includes database credentials. If the web server user is root, an attacker will be able to read any file in the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-05T08:19:34.000000Z"} https://vulnerability.circl.lu/sighting/734f809e-e350-40bc-a8e8-a87422d41ef7/export Fri, 05 Aug 2022 08:19:34 +0000 82b505fe-c5a0-4f9f-8ce9-4ea74354f603 https://vulnerability.circl.lu/sighting/82b505fe-c5a0-4f9f-8ce9-4ea74354f603/export {"uuid": "82b505fe-c5a0-4f9f-8ce9-4ea74354f603", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26531", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9996", "content": "#exploit\n1. CVE-2024-25735:\nWyreStorm Apollo VX20 - Information Disclosure\nhttps://github.com/codeb0ss/CVE-2024-25735-PoC\n\n2. CVE-2022-26531:\nZyxel zysh Format String PoC\nhttps://packetstormsecurity.com/files/177036/Zyxel-zysh-Format-String-Proof-Of-Concept.html", "creation_timestamp": "2024-02-18T12:31:01.000000Z"} {"uuid": "82b505fe-c5a0-4f9f-8ce9-4ea74354f603", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26531", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9996", "content": "#exploit\n1. CVE-2024-25735:\nWyreStorm Apollo VX20 - Information Disclosure\nhttps://github.com/codeb0ss/CVE-2024-25735-PoC\n\n2. CVE-2022-26531:\nZyxel zysh Format String PoC\nhttps://packetstormsecurity.com/files/177036/Zyxel-zysh-Format-String-Proof-Of-Concept.html", "creation_timestamp": "2024-02-18T12:31:01.000000Z"} https://vulnerability.circl.lu/sighting/82b505fe-c5a0-4f9f-8ce9-4ea74354f603/export Sun, 18 Feb 2024 12:31:01 +0000