https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 19:01:43 +0000 https://vulnerability.circl.lu/sighting/230289fd-37ba-4a0b-aaf1-e2f52576d090/export {"uuid": "230289fd-37ba-4a0b-aaf1-e2f52576d090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10245", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113469307791147295", "content": "", "creation_timestamp": "2024-11-12T09:37:13.183542Z"} {"uuid": "230289fd-37ba-4a0b-aaf1-e2f52576d090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10245", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113469307791147295", "content": "", "creation_timestamp": "2024-11-12T09:37:13.183542Z"} https://vulnerability.circl.lu/sighting/230289fd-37ba-4a0b-aaf1-e2f52576d090/export Tue, 12 Nov 2024 09:37:13 +0000 https://vulnerability.circl.lu/sighting/6d4bae33-f81e-4c83-ba8e-76d8b050c8fa/export {"uuid": "6d4bae33-f81e-4c83-ba8e-76d8b050c8fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10245", "type": "seen", "source": "https://t.me/cvedetector/10594", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10245 - Relais 2FA WordPress Authentication Bypass\", \n \"Content\": \"CVE ID : CVE-2024-10245 \nPublished : Nov. 12, 2024, 10:15 a.m. | 42\u00a0minutes ago \nDescription : The Relais 2FA plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0. This is due to incorrect authentication and capability checking in the 'rl_do_ajax' function. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"12 Nov 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-12T12:11:00.000000Z"} {"uuid": "6d4bae33-f81e-4c83-ba8e-76d8b050c8fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10245", "type": "seen", "source": "https://t.me/cvedetector/10594", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10245 - Relais 2FA WordPress Authentication Bypass\", \n \"Content\": \"CVE ID : CVE-2024-10245 \nPublished : Nov. 12, 2024, 10:15 a.m. | 42\u00a0minutes ago \nDescription : The Relais 2FA plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 1.0. This is due to incorrect authentication and capability checking in the 'rl_do_ajax' function. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator, if they have access to the email. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"12 Nov 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-12T12:11:00.000000Z"} https://vulnerability.circl.lu/sighting/6d4bae33-f81e-4c83-ba8e-76d8b050c8fa/export Tue, 12 Nov 2024 12:11:00 +0000 https://vulnerability.circl.lu/sighting/6b7a19e9-2987-41eb-ae0d-e38d4bda544e/export {"uuid": "6b7a19e9-2987-41eb-ae0d-e38d4bda544e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10240", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113476036942359070", "content": "", "creation_timestamp": "2024-11-13T14:08:31.939149Z"} {"uuid": "6b7a19e9-2987-41eb-ae0d-e38d4bda544e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10240", "type": "seen", "source": "https://infosec.exchange/users/screaminggoat/statuses/113476036942359070", "content": "", "creation_timestamp": "2024-11-13T14:08:31.939149Z"} https://vulnerability.circl.lu/sighting/6b7a19e9-2987-41eb-ae0d-e38d4bda544e/export Wed, 13 Nov 2024 14:08:31 +0000 https://vulnerability.circl.lu/sighting/59f0b590-0061-49b9-909d-1958d4533231/export {"uuid": "59f0b590-0061-49b9-909d-1958d4533231", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10240", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113550886323735999", "content": "", "creation_timestamp": "2024-11-26T19:23:42.885265Z"} {"uuid": "59f0b590-0061-49b9-909d-1958d4533231", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10240", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113550886323735999", "content": "", "creation_timestamp": "2024-11-26T19:23:42.885265Z"} https://vulnerability.circl.lu/sighting/59f0b590-0061-49b9-909d-1958d4533231/export Tue, 26 Nov 2024 19:23:42 +0000 https://vulnerability.circl.lu/sighting/173ccfc5-5454-4620-9651-417f85213ede/export {"uuid": "173ccfc5-5454-4620-9651-417f85213ede", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10247", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113603802589938190", "content": "", "creation_timestamp": "2024-12-06T03:41:01.013369Z"} {"uuid": "173ccfc5-5454-4620-9651-417f85213ede", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10247", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113603802589938190", "content": "", "creation_timestamp": "2024-12-06T03:41:01.013369Z"} https://vulnerability.circl.lu/sighting/173ccfc5-5454-4620-9651-417f85213ede/export Fri, 06 Dec 2024 03:41:01 +0000 https://vulnerability.circl.lu/sighting/163a2afe-2ac7-44c7-b314-c9240d3984af/export {"uuid": "163a2afe-2ac7-44c7-b314-c9240d3984af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10247", "type": "seen", "source": "https://t.me/cvedetector/12167", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10247 - The Video Gallery \u2013 Best WordPress YouTube Gallery\", \n \"Content\": \"CVE ID : CVE-2024-10247 \nPublished : Dec. 6, 2024, 4:15 a.m. | 41\u00a0minutes ago \nDescription : The Video Gallery \u2013 Best WordPress YouTube Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the orderby parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"06 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-06T06:25:05.000000Z"} {"uuid": "163a2afe-2ac7-44c7-b314-c9240d3984af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10247", "type": "seen", "source": "https://t.me/cvedetector/12167", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10247 - The Video Gallery \u2013 Best WordPress YouTube Gallery\", \n \"Content\": \"CVE ID : CVE-2024-10247 \nPublished : Dec. 6, 2024, 4:15 a.m. | 41\u00a0minutes ago \nDescription : The Video Gallery \u2013 Best WordPress YouTube Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the orderby parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with Administrator-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"06 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-06T06:25:05.000000Z"} https://vulnerability.circl.lu/sighting/163a2afe-2ac7-44c7-b314-c9240d3984af/export Fri, 06 Dec 2024 06:25:05 +0000 https://vulnerability.circl.lu/sighting/822f8753-eb20-4e5f-a189-238ae2c7e812/export {"uuid": "822f8753-eb20-4e5f-a189-238ae2c7e812", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10244", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113679881672387892", "content": "", "creation_timestamp": "2024-12-19T14:08:55.573468Z"} {"uuid": "822f8753-eb20-4e5f-a189-238ae2c7e812", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10244", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113679881672387892", "content": "", "creation_timestamp": "2024-12-19T14:08:55.573468Z"} https://vulnerability.circl.lu/sighting/822f8753-eb20-4e5f-a189-238ae2c7e812/export Thu, 19 Dec 2024 14:08:55 +0000 https://vulnerability.circl.lu/sighting/be743fae-af23-4f87-8999-a38bc90e9a47/export {"uuid": "be743fae-af23-4f87-8999-a38bc90e9a47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10244", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldo2ott22d2a", "content": "", "creation_timestamp": "2024-12-19T14:15:31.145583Z"} {"uuid": "be743fae-af23-4f87-8999-a38bc90e9a47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10244", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldo2ott22d2a", "content": "", "creation_timestamp": "2024-12-19T14:15:31.145583Z"} https://vulnerability.circl.lu/sighting/be743fae-af23-4f87-8999-a38bc90e9a47/export Thu, 19 Dec 2024 14:15:31 +0000 https://vulnerability.circl.lu/sighting/5a7558e3-f761-4c5b-bde5-68b801b706d3/export {"uuid": "5a7558e3-f761-4c5b-bde5-68b801b706d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10244", "type": "seen", "source": "https://t.me/cvedetector/13332", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10244 - ISDO Software Web Software SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-10244 \nPublished : Dec. 19, 2024, 2:15 p.m. | 22\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ISDO Software Web Software allows SQL Injection.This issue affects Web Software: before 3.6. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"19 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-19T15:39:22.000000Z"} {"uuid": "5a7558e3-f761-4c5b-bde5-68b801b706d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10244", "type": "seen", "source": "https://t.me/cvedetector/13332", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10244 - ISDO Software Web Software SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-10244 \nPublished : Dec. 19, 2024, 2:15 p.m. | 22\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ISDO Software Web Software allows SQL Injection.This issue affects Web Software: before 3.6. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"19 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-19T15:39:22.000000Z"} https://vulnerability.circl.lu/sighting/5a7558e3-f761-4c5b-bde5-68b801b706d3/export Thu, 19 Dec 2024 15:39:22 +0000 https://vulnerability.circl.lu/sighting/6ed95d8f-2bee-4d6c-a4fc-e63966b86150/export {"uuid": "6ed95d8f-2bee-4d6c-a4fc-e63966b86150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10249", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulqnzdeq2x", "content": "", "creation_timestamp": "2025-02-11T02:17:30.152199Z"} {"uuid": "6ed95d8f-2bee-4d6c-a4fc-e63966b86150", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10249", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulqnzdeq2x", "content": "", "creation_timestamp": "2025-02-11T02:17:30.152199Z"} https://vulnerability.circl.lu/sighting/6ed95d8f-2bee-4d6c-a4fc-e63966b86150/export Tue, 11 Feb 2025 02:17:30 +0000