<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Fri, 03 Jul 2026 11:44:28 +0000</lastBuildDate>
    <item>
      <title>44433991-b4af-4632-81c3-14f2a5f0f1fa</title>
      <link>https://vulnerability.circl.lu/sighting/44433991-b4af-4632-81c3-14f2a5f0f1fa/export</link>
      <description>{"uuid": "44433991-b4af-4632-81c3-14f2a5f0f1fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11015", "type": "seen", "source": "https://t.me/cvedetector/12705", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11015 - Google Sign In for WordPress Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-11015 \nPublished : Dec. 12, 2024, 4:15 a.m. | 36\u00a0minutes ago \nDescription : The Sign In With Google plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.8.0. This is due to the 'authenticate_user' user function not implementing sufficient null value checks when setting the access token and user information. This makes it possible for unauthenticated attackers to log in as the first user who has signed in using Google OAuth, which could be the site administrator. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-12T06:17:44.000000Z"}</description>
      <content:encoded>{"uuid": "44433991-b4af-4632-81c3-14f2a5f0f1fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11015", "type": "seen", "source": "https://t.me/cvedetector/12705", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11015 - Google Sign In for WordPress Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-11015 \nPublished : Dec. 12, 2024, 4:15 a.m. | 36\u00a0minutes ago \nDescription : The Sign In With Google plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 1.8.0. This is due to the 'authenticate_user' user function not implementing sufficient null value checks when setting the access token and user information. This makes it possible for unauthenticated attackers to log in as the first user who has signed in using Google OAuth, which could be the site administrator. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-12T06:17:44.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/44433991-b4af-4632-81c3-14f2a5f0f1fa/export</guid>
      <pubDate>Thu, 12 Dec 2024 06:17:44 +0000</pubDate>
    </item>
    <item>
      <title>29e76d74-3143-4959-b937-64d169b5ad99</title>
      <link>https://vulnerability.circl.lu/sighting/29e76d74-3143-4959-b937-64d169b5ad99/export</link>
      <description>{"uuid": "29e76d74-3143-4959-b937-64d169b5ad99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11015", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113637748490132426", "content": "", "creation_timestamp": "2024-12-12T03:33:54.412483Z"}</description>
      <content:encoded>{"uuid": "29e76d74-3143-4959-b937-64d169b5ad99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11015", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113637748490132426", "content": "", "creation_timestamp": "2024-12-12T03:33:54.412483Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/29e76d74-3143-4959-b937-64d169b5ad99/export</guid>
      <pubDate>Thu, 12 Dec 2024 03:33:54 +0000</pubDate>
    </item>
  </channel>
</rss>
