https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 10 Jun 2026 12:26:37 +0000 https://vulnerability.circl.lu/sighting/cb2dc1e8-2976-4fba-af82-20ab785ab392/export {"uuid": "cb2dc1e8-2976-4fba-af82-20ab785ab392", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827786871340573", "content": "", "creation_timestamp": "2025-01-14T17:03:10.231036Z"} {"uuid": "cb2dc1e8-2976-4fba-af82-20ab785ab392", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113827786871340573", "content": "", "creation_timestamp": "2025-01-14T17:03:10.231036Z"} https://vulnerability.circl.lu/sighting/cb2dc1e8-2976-4fba-af82-20ab785ab392/export Tue, 14 Jan 2025 17:03:10 +0000 https://vulnerability.circl.lu/sighting/2eab391b-d873-4b4b-afdd-aa0be2b9a158/export {"uuid": "2eab391b-d873-4b4b-afdd-aa0be2b9a158", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpqvkgvig2n", "content": "", "creation_timestamp": "2025-01-14T17:16:00.938714Z"} {"uuid": "2eab391b-d873-4b4b-afdd-aa0be2b9a158", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpqvkgvig2n", "content": "", "creation_timestamp": "2025-01-14T17:16:00.938714Z"} https://vulnerability.circl.lu/sighting/2eab391b-d873-4b4b-afdd-aa0be2b9a158/export Tue, 14 Jan 2025 17:16:00 +0000 https://vulnerability.circl.lu/sighting/92eea223-bd16-4742-8e32-f6f764005205/export {"uuid": "92eea223-bd16-4742-8e32-f6f764005205", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1517", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0463\n\ud83d\udd39 Description: A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.php?userid=123&module=Users&usid=1&action=UsersAjax&minipro_const_type=1&related_module=Singin. The manipulation of the argument name leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-01-14T17:00:14.799Z\n\ud83d\udccf Modified: 2025-01-14T17:00:14.799Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.291480\n2. https://vuldb.com/?ctiid.291480\n3. https://vuldb.com/?submit.474255\n4. https://github.com/BxYQ/ld/blob/main/File_Upload_vul.doc", "creation_timestamp": "2025-01-14T17:19:59.000000Z"} {"uuid": "92eea223-bd16-4742-8e32-f6f764005205", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1517", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0463\n\ud83d\udd39 Description: A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.php?userid=123&module=Users&usid=1&action=UsersAjax&minipro_const_type=1&related_module=Singin. The manipulation of the argument name leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-01-14T17:00:14.799Z\n\ud83d\udccf Modified: 2025-01-14T17:00:14.799Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.291480\n2. https://vuldb.com/?ctiid.291480\n3. https://vuldb.com/?submit.474255\n4. https://github.com/BxYQ/ld/blob/main/File_Upload_vul.doc", "creation_timestamp": "2025-01-14T17:19:59.000000Z"} https://vulnerability.circl.lu/sighting/92eea223-bd16-4742-8e32-f6f764005205/export Tue, 14 Jan 2025 17:19:59 +0000 https://vulnerability.circl.lu/sighting/b820be18-f5e0-4aa5-821b-2e16e0e6be47/export {"uuid": "b820be18-f5e0-4aa5-821b-2e16e0e6be47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "seen", "source": "https://t.me/cvedetector/15298", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-0463 - Lingdang CRM Alexandre Unrestricted File Upload Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-0463 \nPublished : Jan. 14, 2025, 5:15 p.m. | 36\u00a0minutes ago \nDescription : A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.php?userid=123&module=Users&usid=1&action=UsersAjax&minipro_const_type=1&related_module=Singin. The manipulation of the argument name leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"14 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T19:01:08.000000Z"} {"uuid": "b820be18-f5e0-4aa5-821b-2e16e0e6be47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0463", "type": "seen", "source": "https://t.me/cvedetector/15298", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-0463 - Lingdang CRM Alexandre Unrestricted File Upload Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-0463 \nPublished : Jan. 14, 2025, 5:15 p.m. | 36\u00a0minutes ago \nDescription : A vulnerability was found in Shanghai Lingdang Information Technology Lingdang CRM up to 8.6.0.0. It has been classified as critical. Affected is an unknown function of the file /crm/weixinmp/index.php?userid=123&module=Users&usid=1&action=UsersAjax&minipro_const_type=1&related_module=Singin. The manipulation of the argument name leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"14 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T19:01:08.000000Z"} https://vulnerability.circl.lu/sighting/b820be18-f5e0-4aa5-821b-2e16e0e6be47/export Tue, 14 Jan 2025 19:01:08 +0000