Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 05 Jun 2026 06:31:12 +0000 1cdf83d2-2045-4372-ae54-dfe99b29e25b https://vulnerability.circl.lu/sighting/1cdf83d2-2045-4372-ae54-dfe99b29e25b/export {"uuid": "1cdf83d2-2045-4372-ae54-dfe99b29e25b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12678", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpcwibgf52z", "content": "", "creation_timestamp": "2024-12-20T02:15:37.647890Z"} {"uuid": "1cdf83d2-2045-4372-ae54-dfe99b29e25b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12678", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldpcwibgf52z", "content": "", "creation_timestamp": "2024-12-20T02:15:37.647890Z"} https://vulnerability.circl.lu/sighting/1cdf83d2-2045-4372-ae54-dfe99b29e25b/export Fri, 20 Dec 2024 02:15:37 +0000 c6680040-7b44-48fc-b8da-b9f17180dcfe https://vulnerability.circl.lu/sighting/c6680040-7b44-48fc-b8da-b9f17180dcfe/export {"uuid": "c6680040-7b44-48fc-b8da-b9f17180dcfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12678", "type": "seen", "source": "https://t.me/cvedetector/13395", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12678 - Nomad Privilege Escalation Through Unredacted Tokens\", \n \"Content\": \"CVE ID : CVE-2024-12678 \nPublished : Dec. 20, 2024, 2:15 a.m. | 40\u00a0minutes ago \nDescription : Nomad Community and Nomad Enterprise (\"Nomad\") allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9.4, 1.8.8, and 1.7.16. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T04:12:03.000000Z"} {"uuid": "c6680040-7b44-48fc-b8da-b9f17180dcfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12678", "type": "seen", "source": "https://t.me/cvedetector/13395", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12678 - Nomad Privilege Escalation Through Unredacted Tokens\", \n \"Content\": \"CVE ID : CVE-2024-12678 \nPublished : Dec. 20, 2024, 2:15 a.m. | 40\u00a0minutes ago \nDescription : Nomad Community and Nomad Enterprise (\"Nomad\") allocations are vulnerable to privilege escalation within a namespace through unredacted workload identity tokens. This vulnerability, identified as CVE-2024-12678, is fixed in Nomad Community Edition 1.9.4 and Nomad Enterprise 1.9.4, 1.8.8, and 1.7.16. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T04:12:03.000000Z"} https://vulnerability.circl.lu/sighting/c6680040-7b44-48fc-b8da-b9f17180dcfe/export Fri, 20 Dec 2024 04:12:03 +0000 ee5ec356-6002-4f37-8320-53db40b2a41e https://vulnerability.circl.lu/sighting/ee5ec356-6002-4f37-8320-53db40b2a41e/export {"uuid": "ee5ec356-6002-4f37-8320-53db40b2a41e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1721/", "content": "", "creation_timestamp": "2024-12-20T05:00:00.000000Z"} {"uuid": "ee5ec356-6002-4f37-8320-53db40b2a41e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1721/", "content": "", "creation_timestamp": "2024-12-20T05:00:00.000000Z"} https://vulnerability.circl.lu/sighting/ee5ec356-6002-4f37-8320-53db40b2a41e/export Fri, 20 Dec 2024 05:00:00 +0000 eb24ef7f-6af3-4a90-8b13-3e8311f842bd https://vulnerability.circl.lu/sighting/eb24ef7f-6af3-4a90-8b13-3e8311f842bd/export {"uuid": "eb24ef7f-6af3-4a90-8b13-3e8311f842bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113686169757160018", "content": "", "creation_timestamp": "2024-12-20T16:48:04.324701Z"} {"uuid": "eb24ef7f-6af3-4a90-8b13-3e8311f842bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113686169757160018", "content": "", "creation_timestamp": "2024-12-20T16:48:04.324701Z"} https://vulnerability.circl.lu/sighting/eb24ef7f-6af3-4a90-8b13-3e8311f842bd/export Fri, 20 Dec 2024 16:48:04 +0000 e84aeb4c-5903-44ca-a5dd-c09da6527968 https://vulnerability.circl.lu/sighting/e84aeb4c-5903-44ca-a5dd-c09da6527968/export {"uuid": "e84aeb4c-5903-44ca-a5dd-c09da6527968", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldqv7hruto2s", "content": "", "creation_timestamp": "2024-12-20T17:15:25.394906Z"} {"uuid": "e84aeb4c-5903-44ca-a5dd-c09da6527968", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldqv7hruto2s", "content": "", "creation_timestamp": "2024-12-20T17:15:25.394906Z"} https://vulnerability.circl.lu/sighting/e84aeb4c-5903-44ca-a5dd-c09da6527968/export Fri, 20 Dec 2024 17:15:25 +0000 181303e9-881a-4d54-a0a1-cdda90ec1abd https://vulnerability.circl.lu/sighting/181303e9-881a-4d54-a0a1-cdda90ec1abd/export {"uuid": "181303e9-881a-4d54-a0a1-cdda90ec1abd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://t.me/cvedetector/13450", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12677 - Delta Electronics DTM Soft Remote Code Execution\", \n \"Content\": \"CVE ID : CVE-2024-12677 \nPublished : Dec. 20, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T19:15:39.000000Z"} {"uuid": "181303e9-881a-4d54-a0a1-cdda90ec1abd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12677", "type": "seen", "source": "https://t.me/cvedetector/13450", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-12677 - Delta Electronics DTM Soft Remote Code Execution\", \n \"Content\": \"CVE ID : CVE-2024-12677 \nPublished : Dec. 20, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : Delta Electronics DTM Soft deserializes objects, which could allow an attacker to execute arbitrary code. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Dec 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-20T19:15:39.000000Z"} https://vulnerability.circl.lu/sighting/181303e9-881a-4d54-a0a1-cdda90ec1abd/export Fri, 20 Dec 2024 19:15:39 +0000 e7da9d64-8778-4eec-bee0-bc6eb426568e https://vulnerability.circl.lu/sighting/e7da9d64-8778-4eec-bee0-bc6eb426568e/export {"uuid": "e7da9d64-8778-4eec-bee0-bc6eb426568e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12673", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113992836082663405", "content": "", "creation_timestamp": "2025-02-12T20:37:20.926904Z"} {"uuid": "e7da9d64-8778-4eec-bee0-bc6eb426568e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12673", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113992836082663405", "content": "", "creation_timestamp": "2025-02-12T20:37:20.926904Z"} https://vulnerability.circl.lu/sighting/e7da9d64-8778-4eec-bee0-bc6eb426568e/export Wed, 12 Feb 2025 20:37:20 +0000 63e4c6fa-cda3-4372-a5c0-0ea01254a600 https://vulnerability.circl.lu/sighting/63e4c6fa-cda3-4372-a5c0-0ea01254a600/export {"uuid": "63e4c6fa-cda3-4372-a5c0-0ea01254a600", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12673", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhzgfao4wj24", "content": "", "creation_timestamp": "2025-02-13T00:25:03.552476Z"} {"uuid": "63e4c6fa-cda3-4372-a5c0-0ea01254a600", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12673", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhzgfao4wj24", "content": "", "creation_timestamp": "2025-02-13T00:25:03.552476Z"} https://vulnerability.circl.lu/sighting/63e4c6fa-cda3-4372-a5c0-0ea01254a600/export Thu, 13 Feb 2025 00:25:03 +0000 2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71 https://vulnerability.circl.lu/sighting/2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71/export {"uuid": "2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1267", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13259", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1267\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file create_account.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-253010 is the identifier assigned to this vulnerability.\n\ud83d\udccf Published: 2024-02-07T01:00:08.559Z\n\ud83d\udccf Modified: 2025-04-24T15:58:53.648Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.253010\n2. https://vuldb.com/?ctiid.253010\n3. https://drive.google.com/drive/folders/18N_20KuGPjrBbvOMSfbvBIc1sMKyycH3?usp=sharing", "creation_timestamp": "2025-04-24T16:06:38.000000Z"} {"uuid": "2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1267", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13259", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1267\n\ud83d\udd25 CVSS Score: 3.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in CodeAstro Restaurant POS System 1.0. Affected by this issue is some unknown functionality of the file create_account.php. The manipulation of the argument Full Name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-253010 is the identifier assigned to this vulnerability.\n\ud83d\udccf Published: 2024-02-07T01:00:08.559Z\n\ud83d\udccf Modified: 2025-04-24T15:58:53.648Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.253010\n2. https://vuldb.com/?ctiid.253010\n3. https://drive.google.com/drive/folders/18N_20KuGPjrBbvOMSfbvBIc1sMKyycH3?usp=sharing", "creation_timestamp": "2025-04-24T16:06:38.000000Z"} https://vulnerability.circl.lu/sighting/2fbe28be-a9f6-4f59-b334-a6a1ad9b3f71/export Thu, 24 Apr 2025 16:06:38 +0000 7d7ef0cb-3229-4495-8223-7ecf32c84d12 https://vulnerability.circl.lu/sighting/7d7ef0cb-3229-4495-8223-7ecf32c84d12/export {"uuid": "7d7ef0cb-3229-4495-8223-7ecf32c84d12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12679", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17066", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12679\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Prisna GWT WordPress plugin before 1.4.14 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\ud83d\udccf Published: 2025-05-15T20:06:53.369Z\n\ud83d\udccf Modified: 2025-05-20T19:32:51.031Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/7ca1438f-4269-4e34-be4a-766276a9f016/", "creation_timestamp": "2025-05-20T19:43:08.000000Z"} {"uuid": "7d7ef0cb-3229-4495-8223-7ecf32c84d12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12679", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17066", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12679\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Prisna GWT WordPress plugin before 1.4.14 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\ud83d\udccf Published: 2025-05-15T20:06:53.369Z\n\ud83d\udccf Modified: 2025-05-20T19:32:51.031Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/7ca1438f-4269-4e34-be4a-766276a9f016/", "creation_timestamp": "2025-05-20T19:43:08.000000Z"} https://vulnerability.circl.lu/sighting/7d7ef0cb-3229-4495-8223-7ecf32c84d12/export Tue, 20 May 2025 19:43:08 +0000