<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 11 Jul 2026 07:23:07 +0000</lastBuildDate>
    <item>
      <title>4575f6bf-2427-4ee5-b1a4-edd1e9477405</title>
      <link>https://vulnerability.circl.lu/sighting/4575f6bf-2427-4ee5-b1a4-edd1e9477405/export</link>
      <description>{"uuid": "4575f6bf-2427-4ee5-b1a4-edd1e9477405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49633", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/399", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49633\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Designinvento DirectoryPress allows Reflected XSS.This issue affects DirectoryPress: from n/a through 3.6.19.\n\ud83d\udccf Published: 2025-01-07T10:49:33.082Z\n\ud83d\udccf Modified: 2025-01-07T10:49:33.082Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/directorypress/vulnerability/wordpress-directorypress-plugin-3-6-19-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T11:38:04.000000Z"}</description>
      <content:encoded>{"uuid": "4575f6bf-2427-4ee5-b1a4-edd1e9477405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49633", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/399", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49633\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Designinvento DirectoryPress allows Reflected XSS.This issue affects DirectoryPress: from n/a through 3.6.19.\n\ud83d\udccf Published: 2025-01-07T10:49:33.082Z\n\ud83d\udccf Modified: 2025-01-07T10:49:33.082Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/directorypress/vulnerability/wordpress-directorypress-plugin-3-6-19-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T11:38:04.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4575f6bf-2427-4ee5-b1a4-edd1e9477405/export</guid>
      <pubDate>Tue, 07 Jan 2025 11:38:04 +0000</pubDate>
    </item>
    <item>
      <title>c27cc991-ea2e-47da-8cd4-46ef4743c085</title>
      <link>https://vulnerability.circl.lu/sighting/c27cc991-ea2e-47da-8cd4-46ef4743c085/export</link>
      <description>{"uuid": "c27cc991-ea2e-47da-8cd4-46ef4743c085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49633", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jiopszw2c", "content": "", "creation_timestamp": "2025-01-07T11:15:38.181208Z"}</description>
      <content:encoded>{"uuid": "c27cc991-ea2e-47da-8cd4-46ef4743c085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49633", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jiopszw2c", "content": "", "creation_timestamp": "2025-01-07T11:15:38.181208Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c27cc991-ea2e-47da-8cd4-46ef4743c085/export</guid>
      <pubDate>Tue, 07 Jan 2025 11:15:38 +0000</pubDate>
    </item>
    <item>
      <title>87a89ae5-ba93-4701-9c52-89fd20f54480</title>
      <link>https://vulnerability.circl.lu/sighting/87a89ae5-ba93-4701-9c52-89fd20f54480/export</link>
      <description>{"uuid": "87a89ae5-ba93-4701-9c52-89fd20f54480", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49633", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113786762690493381", "content": "", "creation_timestamp": "2025-01-07T11:10:10.512209Z"}</description>
      <content:encoded>{"uuid": "87a89ae5-ba93-4701-9c52-89fd20f54480", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49633", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113786762690493381", "content": "", "creation_timestamp": "2025-01-07T11:10:10.512209Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/87a89ae5-ba93-4701-9c52-89fd20f54480/export</guid>
      <pubDate>Tue, 07 Jan 2025 11:10:10 +0000</pubDate>
    </item>
    <item>
      <title>c40b583f-2e56-4873-a182-5c2387ee1215</title>
      <link>https://vulnerability.circl.lu/sighting/c40b583f-2e56-4873-a182-5c2387ee1215/export</link>
      <description>{"uuid": "c40b583f-2e56-4873-a182-5c2387ee1215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49634", "type": "seen", "source": "https://t.me/cvedetector/9334", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49634 - Rimon Habib BP Member Type Manager Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49634 \nPublished : Oct. 29, 2024, 2:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Rimon Habib BP Member Type Manager allows Reflected XSS.This issue affects BP Member Type Manager: from n/a through 1.01. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T16:27:09.000000Z"}</description>
      <content:encoded>{"uuid": "c40b583f-2e56-4873-a182-5c2387ee1215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49634", "type": "seen", "source": "https://t.me/cvedetector/9334", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49634 - Rimon Habib BP Member Type Manager Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49634 \nPublished : Oct. 29, 2024, 2:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Rimon Habib BP Member Type Manager allows Reflected XSS.This issue affects BP Member Type Manager: from n/a through 1.01. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T16:27:09.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/c40b583f-2e56-4873-a182-5c2387ee1215/export</guid>
      <pubDate>Tue, 29 Oct 2024 16:27:09 +0000</pubDate>
    </item>
    <item>
      <title>fafc2ea8-9a73-4904-aad8-927f60d7626d</title>
      <link>https://vulnerability.circl.lu/sighting/fafc2ea8-9a73-4904-aad8-927f60d7626d/export</link>
      <description>{"uuid": "fafc2ea8-9a73-4904-aad8-927f60d7626d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49632", "type": "seen", "source": "https://t.me/cvedetector/9333", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49632 - Coral Web Design CWD 3D Image Gallery Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49632 \nPublished : Oct. 29, 2024, 2:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Coral Web Design CWD 3D Image Gallery allows Reflected XSS.This issue affects CWD 3D Image Gallery: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T16:27:08.000000Z"}</description>
      <content:encoded>{"uuid": "fafc2ea8-9a73-4904-aad8-927f60d7626d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49632", "type": "seen", "source": "https://t.me/cvedetector/9333", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49632 - Coral Web Design CWD 3D Image Gallery Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49632 \nPublished : Oct. 29, 2024, 2:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Coral Web Design CWD 3D Image Gallery allows Reflected XSS.This issue affects CWD 3D Image Gallery: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T16:27:08.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/fafc2ea8-9a73-4904-aad8-927f60d7626d/export</guid>
      <pubDate>Tue, 29 Oct 2024 16:27:08 +0000</pubDate>
    </item>
    <item>
      <title>1dbf8179-1677-4d7a-8458-9bc3939049ff</title>
      <link>https://vulnerability.circl.lu/sighting/1dbf8179-1677-4d7a-8458-9bc3939049ff/export</link>
      <description>{"uuid": "1dbf8179-1677-4d7a-8458-9bc3939049ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49630", "type": "seen", "source": "https://t.me/cvedetector/8392", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49630 - HT Plugins WP Education Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49630 \nPublished : Oct. 20, 2024, 8:15 a.m. | 20\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HT Plugins WP Education allows Stored XSS.This issue affects WP Education: from n/a through 1.2.8. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T10:44:03.000000Z"}</description>
      <content:encoded>{"uuid": "1dbf8179-1677-4d7a-8458-9bc3939049ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49630", "type": "seen", "source": "https://t.me/cvedetector/8392", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49630 - HT Plugins WP Education Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49630 \nPublished : Oct. 20, 2024, 8:15 a.m. | 20\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HT Plugins WP Education allows Stored XSS.This issue affects WP Education: from n/a through 1.2.8. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T10:44:03.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1dbf8179-1677-4d7a-8458-9bc3939049ff/export</guid>
      <pubDate>Sun, 20 Oct 2024 10:44:03 +0000</pubDate>
    </item>
    <item>
      <title>9e68b9e5-9364-4cb9-b21f-748bf076f0d0</title>
      <link>https://vulnerability.circl.lu/sighting/9e68b9e5-9364-4cb9-b21f-748bf076f0d0/export</link>
      <description>{"uuid": "9e68b9e5-9364-4cb9-b21f-748bf076f0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49631", "type": "seen", "source": "https://t.me/cvedetector/8387", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49631 - Elementor Easy Addons Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49631 \nPublished : Oct. 20, 2024, 8:15 a.m. | 20\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Md Abdul Kader Easy Addons for Elementor allows Stored XSS.This issue affects Easy Addons for Elementor: from n/a through 1.3.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T10:43:57.000000Z"}</description>
      <content:encoded>{"uuid": "9e68b9e5-9364-4cb9-b21f-748bf076f0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49631", "type": "seen", "source": "https://t.me/cvedetector/8387", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49631 - Elementor Easy Addons Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49631 \nPublished : Oct. 20, 2024, 8:15 a.m. | 20\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Md Abdul Kader Easy Addons for Elementor allows Stored XSS.This issue affects Easy Addons for Elementor: from n/a through 1.3.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T10:43:57.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9e68b9e5-9364-4cb9-b21f-748bf076f0d0/export</guid>
      <pubDate>Sun, 20 Oct 2024 10:43:57 +0000</pubDate>
    </item>
  </channel>
</rss>
