https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 01 Jun 2026 09:01:21 +0000 https://vulnerability.circl.lu/sighting/80f4cf17-9962-49ea-afe2-dd25581850ef/export {"uuid": "80f4cf17-9962-49ea-afe2-dd25581850ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3009", "type": "seen", "source": "https://t.me/cvedetector/21648", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-3009 - Jinher Network OA C6 SQL Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-3009 \nPublished : March 31, 2025, 8:15 p.m. | 51\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in Jinher Network OA C6. Affected by this vulnerability is an unknown functionality of the file /C6/JHSoft.Web.NetDisk/NetDiskProperty.aspx. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"31 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-31T23:23:52.000000Z"} {"uuid": "80f4cf17-9962-49ea-afe2-dd25581850ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3009", "type": "seen", "source": "https://t.me/cvedetector/21648", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-3009 - Jinher Network OA C6 SQL Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-3009 \nPublished : March 31, 2025, 8:15 p.m. | 51\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in Jinher Network OA C6. Affected by this vulnerability is an unknown functionality of the file /C6/JHSoft.Web.NetDisk/NetDiskProperty.aspx. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"31 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-31T23:23:52.000000Z"} https://vulnerability.circl.lu/sighting/80f4cf17-9962-49ea-afe2-dd25581850ef/export Mon, 31 Mar 2025 23:23:52 +0000 https://vulnerability.circl.lu/sighting/8610fe4e-47ae-4b0e-b2a2-5103f7bfe298/export {"uuid": "8610fe4e-47ae-4b0e-b2a2-5103f7bfe298", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30095", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3llsozmuu6t2u", "content": "", "creation_timestamp": "2025-04-02T05:51:39.377345Z"} {"uuid": "8610fe4e-47ae-4b0e-b2a2-5103f7bfe298", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30095", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3llsozmuu6t2u", "content": "", "creation_timestamp": "2025-04-02T05:51:39.377345Z"} https://vulnerability.circl.lu/sighting/8610fe4e-47ae-4b0e-b2a2-5103f7bfe298/export Wed, 02 Apr 2025 05:51:39 +0000 https://vulnerability.circl.lu/sighting/dc724d65-7734-4d9a-8eb4-fe6527c530ab/export {"uuid": "dc724d65-7734-4d9a-8eb4-fe6527c530ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30095", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3llsye2icb22v", "content": "", "creation_timestamp": "2025-04-02T08:38:36.694044Z"} {"uuid": "dc724d65-7734-4d9a-8eb4-fe6527c530ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30095", "type": "seen", "source": "https://bsky.app/profile/andranglin.bsky.social/post/3llsye2icb22v", "content": "", "creation_timestamp": "2025-04-02T08:38:36.694044Z"} https://vulnerability.circl.lu/sighting/dc724d65-7734-4d9a-8eb4-fe6527c530ab/export Wed, 02 Apr 2025 08:38:36 +0000 https://vulnerability.circl.lu/sighting/ef0ec3bf-5a11-4431-9f10-63f9330a8df0/export {"uuid": "ef0ec3bf-5a11-4431-9f10-63f9330a8df0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10065", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30090\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true.\n\ud83d\udccf Published: 2025-04-02T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-02T13:27:48.268Z\n\ud83d\udd17 References:\n1. https://squirrelmail.org\n2. https://squirrelmail.org/security/issue.php?d=2025-04-02", "creation_timestamp": "2025-04-02T13:33:35.000000Z"} {"uuid": "ef0ec3bf-5a11-4431-9f10-63f9330a8df0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10065", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30090\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true.\n\ud83d\udccf Published: 2025-04-02T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-02T13:27:48.268Z\n\ud83d\udd17 References:\n1. https://squirrelmail.org\n2. https://squirrelmail.org/security/issue.php?d=2025-04-02", "creation_timestamp": "2025-04-02T13:33:35.000000Z"} https://vulnerability.circl.lu/sighting/ef0ec3bf-5a11-4431-9f10-63f9330a8df0/export Wed, 02 Apr 2025 13:33:35 +0000 https://vulnerability.circl.lu/sighting/d1b1d757-1b06-42eb-ae5f-e978eb86260c/export {"uuid": "d1b1d757-1b06-42eb-ae5f-e978eb86260c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114268817864484797", "content": "", "creation_timestamp": "2025-04-02T14:23:09.081666Z"} {"uuid": "d1b1d757-1b06-42eb-ae5f-e978eb86260c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114268817864484797", "content": "", "creation_timestamp": "2025-04-02T14:23:09.081666Z"} https://vulnerability.circl.lu/sighting/d1b1d757-1b06-42eb-ae5f-e978eb86260c/export Wed, 02 Apr 2025 14:23:09 +0000 https://vulnerability.circl.lu/sighting/7a63a230-be8d-40b2-a3cf-f7808be2d5c0/export {"uuid": "7a63a230-be8d-40b2-a3cf-f7808be2d5c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114268817864484797", "content": "", "creation_timestamp": "2025-04-02T14:23:09.095055Z"} {"uuid": "7a63a230-be8d-40b2-a3cf-f7808be2d5c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114268817864484797", "content": "", "creation_timestamp": "2025-04-02T14:23:09.095055Z"} https://vulnerability.circl.lu/sighting/7a63a230-be8d-40b2-a3cf-f7808be2d5c0/export Wed, 02 Apr 2025 14:23:09 +0000 https://vulnerability.circl.lu/sighting/58048597-ca29-495a-903a-bc5e01919921/export {"uuid": "58048597-ca29-495a-903a-bc5e01919921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "Telegram/btQPrV2iQXCSUzBFQMhVPOopOlgRe2hHkcaTb6iIuQoYL_o", "content": "", "creation_timestamp": "2025-04-02T16:00:20.000000Z"} {"uuid": "58048597-ca29-495a-903a-bc5e01919921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "Telegram/btQPrV2iQXCSUzBFQMhVPOopOlgRe2hHkcaTb6iIuQoYL_o", "content": "", "creation_timestamp": "2025-04-02T16:00:20.000000Z"} https://vulnerability.circl.lu/sighting/58048597-ca29-495a-903a-bc5e01919921/export Wed, 02 Apr 2025 16:00:20 +0000 https://vulnerability.circl.lu/sighting/35b37df6-3fa0-4cbc-bc40-068808bc4238/export {"uuid": "35b37df6-3fa0-4cbc-bc40-068808bc4238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://t.me/cvedetector/21864", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-30090 - SquirrelMail MIME PHP XSS Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-30090 \nPublished : April 2, 2025, 1:15 p.m. | 1\u00a0hour, 4\u00a0minutes ago \nDescription : mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T16:39:22.000000Z"} {"uuid": "35b37df6-3fa0-4cbc-bc40-068808bc4238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30090", "type": "seen", "source": "https://t.me/cvedetector/21864", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-30090 - SquirrelMail MIME PHP XSS Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-30090 \nPublished : April 2, 2025, 1:15 p.m. | 1\u00a0hour, 4\u00a0minutes ago \nDescription : mime.php in SquirrelMail through 1.4.23-svn-20250401 and 1.5.x through 1.5.2-svn-20250401 allows XSS via e-mail headers, because JavaScript payloads are mishandled after $encoded has been set to true. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T16:39:22.000000Z"} https://vulnerability.circl.lu/sighting/35b37df6-3fa0-4cbc-bc40-068808bc4238/export Wed, 02 Apr 2025 16:39:22 +0000 https://vulnerability.circl.lu/sighting/de5c308f-655c-496b-9fb6-d262c3253d5f/export {"uuid": "de5c308f-655c-496b-9fb6-d262c3253d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30091", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-08-10T18:27:45.000000Z"} {"uuid": "de5c308f-655c-496b-9fb6-d262c3253d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30091", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-08-10T18:27:45.000000Z"} https://vulnerability.circl.lu/sighting/de5c308f-655c-496b-9fb6-d262c3253d5f/export Sun, 10 Aug 2025 18:27:45 +0000 https://vulnerability.circl.lu/sighting/b55b0fa1-5456-46dd-bf81-97b7708d725b/export {"uuid": "b55b0fa1-5456-46dd-bf81-97b7708d725b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30091", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-09-10T07:48:01.000000Z"} {"uuid": "b55b0fa1-5456-46dd-bf81-97b7708d725b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30091", "type": "seen", "source": "MISP/f2f93f16-9318-44b1-9be3-2d3346ca540c", "content": "", "creation_timestamp": "2025-09-10T07:48:01.000000Z"} https://vulnerability.circl.lu/sighting/b55b0fa1-5456-46dd-bf81-97b7708d725b/export Wed, 10 Sep 2025 07:48:01 +0000