https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 09 May 2026 22:24:25 +0000 https://vulnerability.circl.lu/sighting/eff1de12-6319-477b-aed0-a326115915e3/export {"uuid": "eff1de12-6319-477b-aed0-a326115915e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9552", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2957\n\ud83d\udd25 CVSS Score: 7.1 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub_401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-03-30T19:00:07.178Z\n\ud83d\udccf Modified: 2025-03-30T19:00:07.178Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.302010\n2. https://vuldb.com/?ctiid.302010\n3. https://vuldb.com/?submit.521719\n4. https://docs.google.com/document/d/1NnvweBsYJQ0MGwBvpi5aAe69g8g5PaNL/edit#heading=h.gjdgxs\n5. https://drive.google.com/file/d/1Hq3-cTke0SeJguNpop-jpzMtoCHkg9Cb/view?usp=drive_link", "creation_timestamp": "2025-03-30T19:32:28.000000Z"} {"uuid": "eff1de12-6319-477b-aed0-a326115915e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9552", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2957\n\ud83d\udd25 CVSS Score: 7.1 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub_401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-03-30T19:00:07.178Z\n\ud83d\udccf Modified: 2025-03-30T19:00:07.178Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.302010\n2. https://vuldb.com/?ctiid.302010\n3. https://vuldb.com/?submit.521719\n4. https://docs.google.com/document/d/1NnvweBsYJQ0MGwBvpi5aAe69g8g5PaNL/edit#heading=h.gjdgxs\n5. https://drive.google.com/file/d/1Hq3-cTke0SeJguNpop-jpzMtoCHkg9Cb/view?usp=drive_link", "creation_timestamp": "2025-03-30T19:32:28.000000Z"} https://vulnerability.circl.lu/sighting/eff1de12-6319-477b-aed0-a326115915e3/export Sun, 30 Mar 2025 19:32:28 +0000 https://vulnerability.circl.lu/sighting/6686b36c-ead9-4c1c-86a7-6526bf0f5014/export {"uuid": "6686b36c-ead9-4c1c-86a7-6526bf0f5014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "seen", "source": "Telegram/D4G2y7Lt0clBHELobM9JrHHaOIOxKBHt0TACuW0rNT_vIWI", "content": "", "creation_timestamp": "2025-03-30T22:00:20.000000Z"} {"uuid": "6686b36c-ead9-4c1c-86a7-6526bf0f5014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "seen", "source": "Telegram/D4G2y7Lt0clBHELobM9JrHHaOIOxKBHt0TACuW0rNT_vIWI", "content": "", "creation_timestamp": "2025-03-30T22:00:20.000000Z"} https://vulnerability.circl.lu/sighting/6686b36c-ead9-4c1c-86a7-6526bf0f5014/export Sun, 30 Mar 2025 22:00:20 +0000 https://vulnerability.circl.lu/sighting/e97af8f9-2c8b-417a-befc-7fcde7e2a2c0/export {"uuid": "e97af8f9-2c8b-417a-befc-7fcde7e2a2c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "seen", "source": "https://t.me/cvedetector/21519", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2957 - TRENDnet TEW-411BRP+ HTTP Request Handler Null Pointer Dereference Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2957 \nPublished : March 30, 2025, 7:15 p.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub_401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"30 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-30T23:06:38.000000Z"} {"uuid": "e97af8f9-2c8b-417a-befc-7fcde7e2a2c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2957", "type": "seen", "source": "https://t.me/cvedetector/21519", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2957 - TRENDnet TEW-411BRP+ HTTP Request Handler Null Pointer Dereference Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2957 \nPublished : March 30, 2025, 7:15 p.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : A vulnerability was found in TRENDnet TEW-411BRP+ 2.07. It has been classified as problematic. Affected is the function sub_401DB0 of the file /usr/sbin/httpd of the component HTTP Request Handler. The manipulation leads to null pointer dereference. The attack can only be initiated within the local network. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"30 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-30T23:06:38.000000Z"} https://vulnerability.circl.lu/sighting/e97af8f9-2c8b-417a-befc-7fcde7e2a2c0/export Sun, 30 Mar 2025 23:06:38 +0000 https://vulnerability.circl.lu/sighting/b9f4af44-72d2-4e00-80af-5ee543e818a9/export {"uuid": "b9f4af44-72d2-4e00-80af-5ee543e818a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10328", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-29570\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc.\n\ud83d\udccf Published: 2025-04-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T19:24:24.643Z\n\ud83d\udd17 References:\n1. https://github.com/IOTRes/IOT_Firmware_Update/blob/main/firmwareupdate.md", "creation_timestamp": "2025-04-03T19:35:39.000000Z"} {"uuid": "b9f4af44-72d2-4e00-80af-5ee543e818a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10328", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-29570\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc.\n\ud83d\udccf Published: 2025-04-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T19:24:24.643Z\n\ud83d\udd17 References:\n1. https://github.com/IOTRes/IOT_Firmware_Update/blob/main/firmwareupdate.md", "creation_timestamp": "2025-04-03T19:35:39.000000Z"} https://vulnerability.circl.lu/sighting/b9f4af44-72d2-4e00-80af-5ee543e818a9/export Thu, 03 Apr 2025 19:35:39 +0000 https://vulnerability.circl.lu/sighting/b6e4beb8-2d9d-4e19-90d0-a1bd00e86527/export {"uuid": "b6e4beb8-2d9d-4e19-90d0-a1bd00e86527", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llwsmfbvya2z", "content": "", "creation_timestamp": "2025-04-03T21:06:34.089313Z"} {"uuid": "b6e4beb8-2d9d-4e19-90d0-a1bd00e86527", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llwsmfbvya2z", "content": "", "creation_timestamp": "2025-04-03T21:06:34.089313Z"} https://vulnerability.circl.lu/sighting/b6e4beb8-2d9d-4e19-90d0-a1bd00e86527/export Thu, 03 Apr 2025 21:06:34 +0000 https://vulnerability.circl.lu/sighting/9fa99618-f1b4-4141-b691-b1c52ae702be/export {"uuid": "9fa99618-f1b4-4141-b691-b1c52ae702be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "seen", "source": "https://t.me/cvedetector/22025", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-29570 - Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-29570 \nPublished : April 3, 2025, 8:15 p.m. | 1\u00a0hour ago \nDescription : An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"03 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T23:36:27.000000Z"} {"uuid": "9fa99618-f1b4-4141-b691-b1c52ae702be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29570", "type": "seen", "source": "https://t.me/cvedetector/22025", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-29570 - Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-29570 \nPublished : April 3, 2025, 8:15 p.m. | 1\u00a0hour ago \nDescription : An issue in Shenzhen Libituo Technology Co., Ltd LBT-T300-T400 v3.2 allows a local attacker to escalate privileges via the function tftp_image_check of a binary named rc. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"03 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T23:36:27.000000Z"} https://vulnerability.circl.lu/sighting/9fa99618-f1b4-4141-b691-b1c52ae702be/export Thu, 03 Apr 2025 23:36:27 +0000 https://vulnerability.circl.lu/sighting/cf8d2491-8a03-4a8f-8a06-d8a28bfcf710/export {"uuid": "cf8d2491-8a03-4a8f-8a06-d8a28bfcf710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29573", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3loh6qq3ipb2p", "content": "", "creation_timestamp": "2025-05-05T20:16:38.835426Z"} {"uuid": "cf8d2491-8a03-4a8f-8a06-d8a28bfcf710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29573", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3loh6qq3ipb2p", "content": "", "creation_timestamp": "2025-05-05T20:16:38.835426Z"} https://vulnerability.circl.lu/sighting/cf8d2491-8a03-4a8f-8a06-d8a28bfcf710/export Mon, 05 May 2025 20:16:38 +0000 https://vulnerability.circl.lu/sighting/ae3a57c4-0aaa-4a66-bb20-c0359bc67187/export {"uuid": "ae3a57c4-0aaa-4a66-bb20-c0359bc67187", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29573", "type": "seen", "source": "https://t.me/cvedetector/24491", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-29573 - Mezzanine CMS Forms Module XSS Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-29573 \nPublished : May 5, 2025, 7:15 p.m. | 20\u00a0minutes ago \nDescription : Cross-Site Scripting (XSS) vulnerability exists in Mezzanine CMS 6.0.0 in the \"View Entries\" feature within the Forms module. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"05 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-05T21:44:33.000000Z"} {"uuid": "ae3a57c4-0aaa-4a66-bb20-c0359bc67187", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29573", "type": "seen", "source": "https://t.me/cvedetector/24491", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-29573 - Mezzanine CMS Forms Module XSS Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-29573 \nPublished : May 5, 2025, 7:15 p.m. | 20\u00a0minutes ago \nDescription : Cross-Site Scripting (XSS) vulnerability exists in Mezzanine CMS 6.0.0 in the \"View Entries\" feature within the Forms module. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"05 May 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-05T21:44:33.000000Z"} https://vulnerability.circl.lu/sighting/ae3a57c4-0aaa-4a66-bb20-c0359bc67187/export Mon, 05 May 2025 21:44:33 +0000 https://vulnerability.circl.lu/sighting/df98c611-944c-4b74-91c9-fd126ce02993/export {"uuid": "df98c611-944c-4b74-91c9-fd126ce02993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29572", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lua2nj4l2w2j", "content": "", "creation_timestamp": "2025-07-18T08:45:47.181510Z"} {"uuid": "df98c611-944c-4b74-91c9-fd126ce02993", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-29572", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lua2nj4l2w2j", "content": "", "creation_timestamp": "2025-07-18T08:45:47.181510Z"} https://vulnerability.circl.lu/sighting/df98c611-944c-4b74-91c9-fd126ce02993/export Fri, 18 Jul 2025 08:45:47 +0000