https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 22 Jun 2026 06:26:43 +0000 https://vulnerability.circl.lu/sighting/8bf8dbaf-401f-4ed9-9641-3ef041e831cb/export {"uuid": "8bf8dbaf-401f-4ed9-9641-3ef041e831cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24050", "type": "seen", "source": "https://t.me/ctinow/158951", "content": "https://ift.tt/2YGwEzb\nCVE-2023-24050 | Connectize AC21000 G6 641.139.1.1256 Admin Panel cross site scripting", "creation_timestamp": "2023-12-24T08:41:39.000000Z"} {"uuid": "8bf8dbaf-401f-4ed9-9641-3ef041e831cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24050", "type": "seen", "source": "https://t.me/ctinow/158951", "content": "https://ift.tt/2YGwEzb\nCVE-2023-24050 | Connectize AC21000 G6 641.139.1.1256 Admin Panel cross site scripting", "creation_timestamp": "2023-12-24T08:41:39.000000Z"} https://vulnerability.circl.lu/sighting/8bf8dbaf-401f-4ed9-9641-3ef041e831cb/export Sun, 24 Dec 2023 08:41:39 +0000 https://vulnerability.circl.lu/sighting/e60025fc-7ccf-4408-9c28-d726d927cfd1/export {"uuid": "e60025fc-7ccf-4408-9c28-d726d927cfd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "exploited", "source": "https://t.me/DEVIL_La_RSx/204", "content": "\ud83d\ude08 [ Diego Capriotti ]\n\nThis has been one of my favorites for a while, but now it's time to let it go.\nHere's my preferred way of getting the KeePass db that we often hunt for:\ndowngrade the executable to version 2.53, use CVE-2023-24055 and wait for the busy admin to trigger the dump of the database. \nThe target can remain clean and you can simply check for the dump creation.\nKeePass version 2.53 can still open kdbx created with the version 2.57 and if using a proper xml the user will likely notice nothing. \nUpdate alerts can also be disabled within the xml.\n\n\ud83d\udd17 https://gist.github.com/naksyn/6d5660dacd0730498a274b85d62a77e8\n\n\ud83d\udc25 [ ]", "creation_timestamp": "2024-10-31T10:33:07.000000Z"} {"uuid": "e60025fc-7ccf-4408-9c28-d726d927cfd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "exploited", "source": "https://t.me/DEVIL_La_RSx/204", "content": "\ud83d\ude08 [ Diego Capriotti ]\n\nThis has been one of my favorites for a while, but now it's time to let it go.\nHere's my preferred way of getting the KeePass db that we often hunt for:\ndowngrade the executable to version 2.53, use CVE-2023-24055 and wait for the busy admin to trigger the dump of the database. \nThe target can remain clean and you can simply check for the dump creation.\nKeePass version 2.53 can still open kdbx created with the version 2.57 and if using a proper xml the user will likely notice nothing. \nUpdate alerts can also be disabled within the xml.\n\n\ud83d\udd17 https://gist.github.com/naksyn/6d5660dacd0730498a274b85d62a77e8\n\n\ud83d\udc25 [ ]", "creation_timestamp": "2024-10-31T10:33:07.000000Z"} https://vulnerability.circl.lu/sighting/e60025fc-7ccf-4408-9c28-d726d927cfd1/export Thu, 31 Oct 2024 10:33:07 +0000 https://vulnerability.circl.lu/sighting/46a68e43-57eb-4efe-9002-ae31d021ecd4/export {"uuid": "46a68e43-57eb-4efe-9002-ae31d021ecd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "https://bsky.app/profile/tuxpanik.bsky.social/post/3lgvgbx6gx222", "content": "", "creation_timestamp": "2025-01-29T16:47:15.772812Z"} {"uuid": "46a68e43-57eb-4efe-9002-ae31d021ecd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "https://bsky.app/profile/tuxpanik.bsky.social/post/3lgvgbx6gx222", "content": "", "creation_timestamp": "2025-01-29T16:47:15.772812Z"} https://vulnerability.circl.lu/sighting/46a68e43-57eb-4efe-9002-ae31d021ecd4/export Wed, 29 Jan 2025 16:47:15 +0000 https://vulnerability.circl.lu/sighting/933a5fe6-09e4-4e97-8b3f-899327703b2f/export {"uuid": "933a5fe6-09e4-4e97-8b3f-899327703b2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24057", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9990", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24057\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: HL7 (Health Level 7) FHIR Core Libraries before 5.6.92 allow attackers to extract files into arbitrary directories via directory traversal from a crafted ZIP or TGZ archive (for a prepackaged terminology cache, NPM package, or comparison archive).\n\ud83d\udccf Published: 2023-01-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-01T19:26:42.787Z\n\ud83d\udd17 References:\n1. https://github.com/HL7/fhir-ig-publisher/security/advisories/GHSA-xr8x-pxm6-prjg", "creation_timestamp": "2025-04-01T19:32:26.000000Z"} {"uuid": "933a5fe6-09e4-4e97-8b3f-899327703b2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24057", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9990", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24057\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: HL7 (Health Level 7) FHIR Core Libraries before 5.6.92 allow attackers to extract files into arbitrary directories via directory traversal from a crafted ZIP or TGZ archive (for a prepackaged terminology cache, NPM package, or comparison archive).\n\ud83d\udccf Published: 2023-01-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-01T19:26:42.787Z\n\ud83d\udd17 References:\n1. https://github.com/HL7/fhir-ig-publisher/security/advisories/GHSA-xr8x-pxm6-prjg", "creation_timestamp": "2025-04-01T19:32:26.000000Z"} https://vulnerability.circl.lu/sighting/933a5fe6-09e4-4e97-8b3f-899327703b2f/export Tue, 01 Apr 2025 19:32:26 +0000 https://vulnerability.circl.lu/sighting/46d420ba-70a8-408c-962d-2e3ffab88fa8/export {"uuid": "46d420ba-70a8-408c-962d-2e3ffab88fa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24058", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10130", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24058\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Booked Scheduler 2.5.5 allows authenticated users to create and schedule events for any other user via a modified userId value to reservation_save.php. NOTE: 2.5.5 is a version from 2014; the latest version of Booked Scheduler is not affected. However, LabArchives Scheduler (Sep 6, 2022 Feature Release) is affected.\n\ud83d\udccf Published: 2023-01-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-02T16:09:24.559Z\n\ud83d\udd17 References:\n1. https://s1n1st3r.gitbook.io/theb10g/booked-scheduler-v2.5.5-vulnerability\n2. https://www.limswiki.org/index.php/Booked\n3. https://github.com/LibreBooking/app/tags?after=2.7.1\n4. https://github.com/LibreBooking/app/blob/0a6cb1a9eb84835553c8caf93db2791f8655140f/Web/ajax/reservation_save.php\n5. https://github.com/LibreBooking/app/blob/0a6cb1a9eb84835553c8caf93db2791f8655140f/Pages/Ajax/ReservationSavePage.php#L234-L237\n6. https://www.labarchives.com/labarchives-knowledge-base/2022-feature-releases-2/\n7. https://www.bookedscheduler.com/the-future-of-booked/", "creation_timestamp": "2025-04-02T16:35:12.000000Z"} {"uuid": "46d420ba-70a8-408c-962d-2e3ffab88fa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24058", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10130", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24058\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Booked Scheduler 2.5.5 allows authenticated users to create and schedule events for any other user via a modified userId value to reservation_save.php. NOTE: 2.5.5 is a version from 2014; the latest version of Booked Scheduler is not affected. However, LabArchives Scheduler (Sep 6, 2022 Feature Release) is affected.\n\ud83d\udccf Published: 2023-01-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-02T16:09:24.559Z\n\ud83d\udd17 References:\n1. https://s1n1st3r.gitbook.io/theb10g/booked-scheduler-v2.5.5-vulnerability\n2. https://www.limswiki.org/index.php/Booked\n3. https://github.com/LibreBooking/app/tags?after=2.7.1\n4. https://github.com/LibreBooking/app/blob/0a6cb1a9eb84835553c8caf93db2791f8655140f/Web/ajax/reservation_save.php\n5. https://github.com/LibreBooking/app/blob/0a6cb1a9eb84835553c8caf93db2791f8655140f/Pages/Ajax/ReservationSavePage.php#L234-L237\n6. https://www.labarchives.com/labarchives-knowledge-base/2022-feature-releases-2/\n7. https://www.bookedscheduler.com/the-future-of-booked/", "creation_timestamp": "2025-04-02T16:35:12.000000Z"} https://vulnerability.circl.lu/sighting/46d420ba-70a8-408c-962d-2e3ffab88fa8/export Wed, 02 Apr 2025 16:35:12 +0000 https://vulnerability.circl.lu/sighting/3b26be74-4a1f-4da4-89af-741920d16b5d/export {"uuid": "3b26be74-4a1f-4da4-89af-741920d16b5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24059", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/10131", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24059\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Grand Theft Auto V for PC allows attackers to achieve partial remote code execution or modify files on a PC, as exploited in the wild in January 2023.\n\ud83d\udccf Published: 2023-01-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-02T16:08:01.372Z\n\ud83d\udd17 References:\n1. https://support.rockstargames.com/community/200063373/13252523900819\n2. https://support.rockstargames.com/community/200063373/13249062368147\n3. https://www.reddit.com/r/gtaonline/comments/10hsosu/mass_reporting_the_dangerous_pc_exploit/\n4. https://twitter.com/TezFunz2/status/1616575783215964166", "creation_timestamp": "2025-04-02T16:35:13.000000Z"} {"uuid": "3b26be74-4a1f-4da4-89af-741920d16b5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24059", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/10131", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-24059\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Grand Theft Auto V for PC allows attackers to achieve partial remote code execution or modify files on a PC, as exploited in the wild in January 2023.\n\ud83d\udccf Published: 2023-01-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-02T16:08:01.372Z\n\ud83d\udd17 References:\n1. https://support.rockstargames.com/community/200063373/13252523900819\n2. https://support.rockstargames.com/community/200063373/13249062368147\n3. https://www.reddit.com/r/gtaonline/comments/10hsosu/mass_reporting_the_dangerous_pc_exploit/\n4. https://twitter.com/TezFunz2/status/1616575783215964166", "creation_timestamp": "2025-04-02T16:35:13.000000Z"} https://vulnerability.circl.lu/sighting/3b26be74-4a1f-4da4-89af-741920d16b5d/export Wed, 02 Apr 2025 16:35:13 +0000 https://vulnerability.circl.lu/sighting/3de46671-00aa-431a-adae-d3de43d6de8b/export {"uuid": "3de46671-00aa-431a-adae-d3de43d6de8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:56.000000Z"} {"uuid": "3de46671-00aa-431a-adae-d3de43d6de8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:56.000000Z"} https://vulnerability.circl.lu/sighting/3de46671-00aa-431a-adae-d3de43d6de8b/export Wed, 01 Oct 2025 18:11:56 +0000 https://vulnerability.circl.lu/sighting/f443c6f2-0626-471b-8db5-b37d45b1e67a/export {"uuid": "f443c6f2-0626-471b-8db5-b37d45b1e67a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:27.000000Z"} {"uuid": "f443c6f2-0626-471b-8db5-b37d45b1e67a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:27.000000Z"} https://vulnerability.circl.lu/sighting/f443c6f2-0626-471b-8db5-b37d45b1e67a/export Wed, 08 Oct 2025 21:59:27 +0000 https://vulnerability.circl.lu/sighting/f7be31b0-c285-42cc-84b8-c5a88290fb29/export {"uuid": "f7be31b0-c285-42cc-84b8-c5a88290fb29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "https://bsky.app/profile/david-senate.bsky.social/post/3m7petwnc7z2r", "content": "", "creation_timestamp": "2025-12-11T10:35:24.229435Z"} {"uuid": "f7be31b0-c285-42cc-84b8-c5a88290fb29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24055", "type": "seen", "source": "https://bsky.app/profile/david-senate.bsky.social/post/3m7petwnc7z2r", "content": "", "creation_timestamp": "2025-12-11T10:35:24.229435Z"} https://vulnerability.circl.lu/sighting/f7be31b0-c285-42cc-84b8-c5a88290fb29/export Thu, 11 Dec 2025 10:35:24 +0000 https://vulnerability.circl.lu/sighting/7dcd23e5-1410-480e-989a-6ffdfd9de0ee/export {"uuid": "7dcd23e5-1410-480e-989a-6ffdfd9de0ee", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24059", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/107f37e8-c9f4-4abf-94f3-904f4fc8cd1d", "content": "", "creation_timestamp": "2026-06-19T12:47:00.185068Z"} {"uuid": "7dcd23e5-1410-480e-989a-6ffdfd9de0ee", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24059", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/107f37e8-c9f4-4abf-94f3-904f4fc8cd1d", "content": "", "creation_timestamp": "2026-06-19T12:47:00.185068Z"} https://vulnerability.circl.lu/sighting/7dcd23e5-1410-480e-989a-6ffdfd9de0ee/export Fri, 19 Jun 2026 12:47:00 +0000