<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 05 Jul 2026 00:09:26 +0000</lastBuildDate>
    <item>
      <title>ab3ad434-5cd7-48a8-a6a9-a48dd34e70ff</title>
      <link>https://vulnerability.circl.lu/sighting/ab3ad434-5cd7-48a8-a6a9-a48dd34e70ff/export</link>
      <description>{"uuid": "ab3ad434-5cd7-48a8-a6a9-a48dd34e70ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25377", "type": "seen", "source": "https://t.me/ctinow/191275", "content": "https://ift.tt/Q8YIMHJ\nCVE-2022-25377", "creation_timestamp": "2024-02-22T23:26:35.000000Z"}</description>
      <content:encoded>{"uuid": "ab3ad434-5cd7-48a8-a6a9-a48dd34e70ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25377", "type": "seen", "source": "https://t.me/ctinow/191275", "content": "https://ift.tt/Q8YIMHJ\nCVE-2022-25377", "creation_timestamp": "2024-02-22T23:26:35.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ab3ad434-5cd7-48a8-a6a9-a48dd34e70ff/export</guid>
      <pubDate>Thu, 22 Feb 2024 23:26:35 +0000</pubDate>
    </item>
    <item>
      <title>8c260027-eef6-44bd-8227-421b8f5c0254</title>
      <link>https://vulnerability.circl.lu/sighting/8c260027-eef6-44bd-8227-421b8f5c0254/export</link>
      <description>{"uuid": "8c260027-eef6-44bd-8227-421b8f5c0254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25377", "type": "seen", "source": "https://t.me/ctinow/191272", "content": "https://ift.tt/Q8YIMHJ\nCVE-2022-25377", "creation_timestamp": "2024-02-22T23:26:33.000000Z"}</description>
      <content:encoded>{"uuid": "8c260027-eef6-44bd-8227-421b8f5c0254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25377", "type": "seen", "source": "https://t.me/ctinow/191272", "content": "https://ift.tt/Q8YIMHJ\nCVE-2022-25377", "creation_timestamp": "2024-02-22T23:26:33.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8c260027-eef6-44bd-8227-421b8f5c0254/export</guid>
      <pubDate>Thu, 22 Feb 2024 23:26:33 +0000</pubDate>
    </item>
    <item>
      <title>20a72f33-7a79-494c-be23-000c4b187ea0</title>
      <link>https://vulnerability.circl.lu/sighting/20a72f33-7a79-494c-be23-000c4b187ea0/export</link>
      <description>{"uuid": "20a72f33-7a79-494c-be23-000c4b187ea0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2537", "type": "seen", "source": "https://t.me/cibsecurity/48996", "content": "\u203c CVE-2022-2537 \u203c\n\nThe WooCommerce PDF Invoices &amp;amp; Packing Slips WordPress plugin before 3.0.1 does not sanitise and escape some parameters before outputting them back in an attributes of an admin page, leading to Reflected Cross-Site Scripting.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-29T22:34:19.000000Z"}</description>
      <content:encoded>{"uuid": "20a72f33-7a79-494c-be23-000c4b187ea0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2537", "type": "seen", "source": "https://t.me/cibsecurity/48996", "content": "\u203c CVE-2022-2537 \u203c\n\nThe WooCommerce PDF Invoices &amp;amp; Packing Slips WordPress plugin before 3.0.1 does not sanitise and escape some parameters before outputting them back in an attributes of an admin page, leading to Reflected Cross-Site Scripting.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-29T22:34:19.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/20a72f33-7a79-494c-be23-000c4b187ea0/export</guid>
      <pubDate>Mon, 29 Aug 2022 22:34:19 +0000</pubDate>
    </item>
    <item>
      <title>11bcb9ea-4152-4374-bf9d-e24d8c3eb921</title>
      <link>https://vulnerability.circl.lu/sighting/11bcb9ea-4152-4374-bf9d-e24d8c3eb921/export</link>
      <description>{"uuid": "11bcb9ea-4152-4374-bf9d-e24d8c3eb921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25372", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5759", "content": "#exploit\nCVE-2022-25372:\nLocal Privilege Escalation in Pritunl VPN Client\nhttps://rhinosecuritylabs.com/penetration-testing/cve-2022-25372-local-privilege-escalation-in-pritunl-vpn-client", "creation_timestamp": "2022-04-07T11:03:01.000000Z"}</description>
      <content:encoded>{"uuid": "11bcb9ea-4152-4374-bf9d-e24d8c3eb921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25372", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5759", "content": "#exploit\nCVE-2022-25372:\nLocal Privilege Escalation in Pritunl VPN Client\nhttps://rhinosecuritylabs.com/penetration-testing/cve-2022-25372-local-privilege-escalation-in-pritunl-vpn-client", "creation_timestamp": "2022-04-07T11:03:01.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/11bcb9ea-4152-4374-bf9d-e24d8c3eb921/export</guid>
      <pubDate>Thu, 07 Apr 2022 11:03:01 +0000</pubDate>
    </item>
    <item>
      <title>0fa9cc3c-db78-4de7-901b-3012a3d5d5e0</title>
      <link>https://vulnerability.circl.lu/sighting/0fa9cc3c-db78-4de7-901b-3012a3d5d5e0/export</link>
      <description>{"uuid": "0fa9cc3c-db78-4de7-901b-3012a3d5d5e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25372", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1905", "content": "#exploit\nCVE-2022-25372:\nLocal Privilege Escalation in Pritunl VPN Client\nhttps://rhinosecuritylabs.com/penetration-testing/cve-2022-25372-local-privilege-escalation-in-pritunl-vpn-client\n\n@BlueRedTeam", "creation_timestamp": "2022-04-07T10:36:55.000000Z"}</description>
      <content:encoded>{"uuid": "0fa9cc3c-db78-4de7-901b-3012a3d5d5e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25372", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1905", "content": "#exploit\nCVE-2022-25372:\nLocal Privilege Escalation in Pritunl VPN Client\nhttps://rhinosecuritylabs.com/penetration-testing/cve-2022-25372-local-privilege-escalation-in-pritunl-vpn-client\n\n@BlueRedTeam", "creation_timestamp": "2022-04-07T10:36:55.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0fa9cc3c-db78-4de7-901b-3012a3d5d5e0/export</guid>
      <pubDate>Thu, 07 Apr 2022 10:36:55 +0000</pubDate>
    </item>
    <item>
      <title>410ae0f9-8699-4b11-9bc5-1be8ec57dc92</title>
      <link>https://vulnerability.circl.lu/sighting/410ae0f9-8699-4b11-9bc5-1be8ec57dc92/export</link>
      <description>{"uuid": "410ae0f9-8699-4b11-9bc5-1be8ec57dc92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25373", "type": "seen", "source": "https://t.me/cibsecurity/40196", "content": "\u203c CVE-2022-25373 \u203c\n\nZoho ManageEngine SupportCenter Plus before 11020 allows Stored XSS in the request history.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-05T22:29:08.000000Z"}</description>
      <content:encoded>{"uuid": "410ae0f9-8699-4b11-9bc5-1be8ec57dc92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25373", "type": "seen", "source": "https://t.me/cibsecurity/40196", "content": "\u203c CVE-2022-25373 \u203c\n\nZoho ManageEngine SupportCenter Plus before 11020 allows Stored XSS in the request history.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-05T22:29:08.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/410ae0f9-8699-4b11-9bc5-1be8ec57dc92/export</guid>
      <pubDate>Tue, 05 Apr 2022 22:29:08 +0000</pubDate>
    </item>
    <item>
      <title>473dbc48-5fb0-4e71-b885-cc7086308e6b</title>
      <link>https://vulnerability.circl.lu/sighting/473dbc48-5fb0-4e71-b885-cc7086308e6b/export</link>
      <description>{"uuid": "473dbc48-5fb0-4e71-b885-cc7086308e6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25375", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5476", "content": "#exploit\n1. CVE-2022-25375:\nDemo exploit of RNDIS USB Gadget\nhttps://github.com/szymonh/rndis-co\n\n2. Cross-site information leak - Leaking cross-origin redirect destination URI due to CORS (iOS)\nhttps://bugs.chromium.org/p/chromium/issues/detail?id=1230444", "creation_timestamp": "2022-03-21T08:42:48.000000Z"}</description>
      <content:encoded>{"uuid": "473dbc48-5fb0-4e71-b885-cc7086308e6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25375", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5476", "content": "#exploit\n1. CVE-2022-25375:\nDemo exploit of RNDIS USB Gadget\nhttps://github.com/szymonh/rndis-co\n\n2. Cross-site information leak - Leaking cross-origin redirect destination URI due to CORS (iOS)\nhttps://bugs.chromium.org/p/chromium/issues/detail?id=1230444", "creation_timestamp": "2022-03-21T08:42:48.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/473dbc48-5fb0-4e71-b885-cc7086308e6b/export</guid>
      <pubDate>Mon, 21 Mar 2022 08:42:48 +0000</pubDate>
    </item>
    <item>
      <title>2d75c513-369d-4650-b2a9-80ae8e1f9c3f</title>
      <link>https://vulnerability.circl.lu/sighting/2d75c513-369d-4650-b2a9-80ae8e1f9c3f/export</link>
      <description>{"uuid": "2d75c513-369d-4650-b2a9-80ae8e1f9c3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25374", "type": "seen", "source": "https://t.me/cibsecurity/38087", "content": "\u203c CVE-2022-25374 \u203c\n\nHashiCorp Terraform Enterprise before 202202-1 inserts Sensitive Information into a Log File.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-25T16:20:30.000000Z"}</description>
      <content:encoded>{"uuid": "2d75c513-369d-4650-b2a9-80ae8e1f9c3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25374", "type": "seen", "source": "https://t.me/cibsecurity/38087", "content": "\u203c CVE-2022-25374 \u203c\n\nHashiCorp Terraform Enterprise before 202202-1 inserts Sensitive Information into a Log File.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-25T16:20:30.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/2d75c513-369d-4650-b2a9-80ae8e1f9c3f/export</guid>
      <pubDate>Fri, 25 Feb 2022 16:20:30 +0000</pubDate>
    </item>
    <item>
      <title>60caef5b-a293-4202-8804-97e11b993ab0</title>
      <link>https://vulnerability.circl.lu/sighting/60caef5b-a293-4202-8804-97e11b993ab0/export</link>
      <description>{"uuid": "60caef5b-a293-4202-8804-97e11b993ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25375", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1750", "content": "#exploit\n1. CVE-2022-25375:\nDemo exploit of RNDIS USB Gadget\nhttps://github.com/szymonh/rndis-co\n\n2. CVE-2022-24112:\nApache APISIX apisix/batch-requests RCE\nhttps://github.com/Mr-xn/CVE-2022-24112\n]-&amp;gt; https://github.com/shakeman8/CVE-2022-24112\n\n@BlueRedTeam", "creation_timestamp": "2022-02-23T05:20:26.000000Z"}</description>
      <content:encoded>{"uuid": "60caef5b-a293-4202-8804-97e11b993ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25375", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1750", "content": "#exploit\n1. CVE-2022-25375:\nDemo exploit of RNDIS USB Gadget\nhttps://github.com/szymonh/rndis-co\n\n2. CVE-2022-24112:\nApache APISIX apisix/batch-requests RCE\nhttps://github.com/Mr-xn/CVE-2022-24112\n]-&amp;gt; https://github.com/shakeman8/CVE-2022-24112\n\n@BlueRedTeam", "creation_timestamp": "2022-02-23T05:20:26.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/60caef5b-a293-4202-8804-97e11b993ab0/export</guid>
      <pubDate>Wed, 23 Feb 2022 05:20:26 +0000</pubDate>
    </item>
    <item>
      <title>749e640c-12e5-44e9-952b-b9f77ab99ad1</title>
      <link>https://vulnerability.circl.lu/sighting/749e640c-12e5-44e9-952b-b9f77ab99ad1/export</link>
      <description>{"uuid": "749e640c-12e5-44e9-952b-b9f77ab99ad1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25375", "type": "seen", "source": "https://t.me/cibsecurity/37852", "content": "\u203c CVE-2022-25375 \u203c\n\nAn issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-20T22:40:40.000000Z"}</description>
      <content:encoded>{"uuid": "749e640c-12e5-44e9-952b-b9f77ab99ad1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25375", "type": "seen", "source": "https://t.me/cibsecurity/37852", "content": "\u203c CVE-2022-25375 \u203c\n\nAn issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-20T22:40:40.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/749e640c-12e5-44e9-952b-b9f77ab99ad1/export</guid>
      <pubDate>Sun, 20 Feb 2022 22:40:40 +0000</pubDate>
    </item>
  </channel>
</rss>
