https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 21 Jun 2026 22:20:51 +0000 https://vulnerability.circl.lu/sighting/f83dddd0-f26d-4913-bb28-645b00d36050/export {"uuid": "f83dddd0-f26d-4913-bb28-645b00d36050", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/jqsHB6FIdeMNMlYJLaE-SWbBIQ7X4SKPFQvaPULFC7d8_bM", "content": "", "creation_timestamp": "2026-04-14T15:00:07.000000Z"} {"uuid": "f83dddd0-f26d-4913-bb28-645b00d36050", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/jqsHB6FIdeMNMlYJLaE-SWbBIQ7X4SKPFQvaPULFC7d8_bM", "content": "", "creation_timestamp": "2026-04-14T15:00:07.000000Z"} https://vulnerability.circl.lu/sighting/f83dddd0-f26d-4913-bb28-645b00d36050/export Tue, 14 Apr 2026 15:00:07 +0000 https://vulnerability.circl.lu/sighting/fcdffa47-8964-45d0-8d85-b48cba140cc6/export {"uuid": "fcdffa47-8964-45d0-8d85-b48cba140cc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/pCo_ULdqtYm5JNcUwpHa2UncR4FyWF1uQHW0ymYDC6k2-2Y", "content": "", "creation_timestamp": "2026-04-15T09:00:05.000000Z"} {"uuid": "fcdffa47-8964-45d0-8d85-b48cba140cc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/pCo_ULdqtYm5JNcUwpHa2UncR4FyWF1uQHW0ymYDC6k2-2Y", "content": "", "creation_timestamp": "2026-04-15T09:00:05.000000Z"} https://vulnerability.circl.lu/sighting/fcdffa47-8964-45d0-8d85-b48cba140cc6/export Wed, 15 Apr 2026 09:00:05 +0000 https://vulnerability.circl.lu/sighting/e1727eca-fcd9-4427-bca9-be900d57b42a/export {"uuid": "e1727eca-fcd9-4427-bca9-be900d57b42a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-59528", "type": "seen", "source": "https://bsky.app/profile/ai-nerd.bsky.social/post/3mjn2wvwvuy2w", "content": "", "creation_timestamp": "2026-04-16T18:44:50.082124Z"} {"uuid": "e1727eca-fcd9-4427-bca9-be900d57b42a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-59528", "type": "seen", "source": "https://bsky.app/profile/ai-nerd.bsky.social/post/3mjn2wvwvuy2w", "content": "", "creation_timestamp": "2026-04-16T18:44:50.082124Z"} https://vulnerability.circl.lu/sighting/e1727eca-fcd9-4427-bca9-be900d57b42a/export Thu, 16 Apr 2026 18:44:50 +0000 https://vulnerability.circl.lu/sighting/4ec3efb9-6878-479a-a24d-a06be54331e0/export {"uuid": "4ec3efb9-6878-479a-a24d-a06be54331e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://gist.github.com/mrbrownstone07/2caf598e6f4230d711c7fbf7954c24bf", "content": "", "creation_timestamp": "2026-04-17T15:49:26.000000Z"} {"uuid": "4ec3efb9-6878-479a-a24d-a06be54331e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://gist.github.com/mrbrownstone07/2caf598e6f4230d711c7fbf7954c24bf", "content": "", "creation_timestamp": "2026-04-17T15:49:26.000000Z"} https://vulnerability.circl.lu/sighting/4ec3efb9-6878-479a-a24d-a06be54331e0/export Fri, 17 Apr 2026 15:49:26 +0000 https://vulnerability.circl.lu/sighting/d44b0521-d3bc-4d0d-afe5-400eb2fc8902/export {"uuid": "d44b0521-d3bc-4d0d-afe5-400eb2fc8902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3ml2ly6ysgp25", "content": "Already on our IOC corpus before launch:\n\n@iflow-mcp/watercrawl-watercrawl-mcp v1.3.0-1.3.4 = GlassWorm (Aikido)\n20+ MCP-named repos serving SmartLoader (URLhaus)\nCVE-2025-59528: mcpServerConfig exploit\n\nThe ecosystem's been targeted, just not counted.", "creation_timestamp": "2026-05-04T21:19:28.502731Z"} {"uuid": "d44b0521-d3bc-4d0d-afe5-400eb2fc8902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://bsky.app/profile/hakksaww.bsky.social/post/3ml2ly6ysgp25", "content": "Already on our IOC corpus before launch:\n\n@iflow-mcp/watercrawl-watercrawl-mcp v1.3.0-1.3.4 = GlassWorm (Aikido)\n20+ MCP-named repos serving SmartLoader (URLhaus)\nCVE-2025-59528: mcpServerConfig exploit\n\nThe ecosystem's been targeted, just not counted.", "creation_timestamp": "2026-05-04T21:19:28.502731Z"} https://vulnerability.circl.lu/sighting/d44b0521-d3bc-4d0d-afe5-400eb2fc8902/export Mon, 04 May 2026 21:19:28 +0000 https://vulnerability.circl.lu/sighting/ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd/export {"uuid": "ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/M2s3PphtTCD9brru-X6QMyPesFMqQlhfbVnnLWpusEfiV5g", "content": "", "creation_timestamp": "2026-05-16T21:00:04.000000Z"} {"uuid": "ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/M2s3PphtTCD9brru-X6QMyPesFMqQlhfbVnnLWpusEfiV5g", "content": "", "creation_timestamp": "2026-05-16T21:00:04.000000Z"} https://vulnerability.circl.lu/sighting/ff9246ea-1ae9-4f95-bd5f-d9e3eaaec9fd/export Sat, 16 May 2026 21:00:04 +0000 https://vulnerability.circl.lu/sighting/65cd396b-18a1-40c1-b615-2f2aae8e4cdd/export {"uuid": "65cd396b-18a1-40c1-b615-2f2aae8e4cdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "Telegram/FMuj_IRa9WJxg8stLSMyK9s8hezzOoxBzO2QROQaixpXJv8", "content": "", "creation_timestamp": "2026-05-17T21:00:04.000000Z"} {"uuid": "65cd396b-18a1-40c1-b615-2f2aae8e4cdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "Telegram/FMuj_IRa9WJxg8stLSMyK9s8hezzOoxBzO2QROQaixpXJv8", "content": "", "creation_timestamp": "2026-05-17T21:00:04.000000Z"} https://vulnerability.circl.lu/sighting/65cd396b-18a1-40c1-b615-2f2aae8e4cdd/export Sun, 17 May 2026 21:00:04 +0000 https://vulnerability.circl.lu/sighting/5dce8822-efb7-4819-aea8-ac32aefef0b9/export {"uuid": "5dce8822-efb7-4819-aea8-ac32aefef0b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://t.me/GithubRedTeam/86822", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a HackTheBox-Silentium\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a SuriyaBoon\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 11:10:37\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFull walkthrough of HackTheBox \"Silentium\" (Medium/Linux). Chains three CVEs: CVE-2025-58434 leaks a Flowise password reset token unauthenticated, enabling account takeover; CVE-2025-59528 achieves RCE via unsanitized CustomMCP node; env vars expose SSH credentials for lateral movement. CVE-2025-8110 exploits Gogs symlink write as root to escalate.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T12:08:23.000000Z"} {"uuid": "5dce8822-efb7-4819-aea8-ac32aefef0b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "seen", "source": "https://t.me/GithubRedTeam/86822", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a HackTheBox-Silentium\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a SuriyaBoon\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0 | \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 11:10:37\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFull walkthrough of HackTheBox \"Silentium\" (Medium/Linux). Chains three CVEs: CVE-2025-58434 leaks a Flowise password reset token unauthenticated, enabling account takeover; CVE-2025-59528 achieves RCE via unsanitized CustomMCP node; env vars expose SSH credentials for lateral movement. CVE-2025-8110 exploits Gogs symlink write as root to escalate.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T12:08:23.000000Z"} https://vulnerability.circl.lu/sighting/5dce8822-efb7-4819-aea8-ac32aefef0b9/export Mon, 01 Jun 2026 12:08:23 +0000 https://vulnerability.circl.lu/sighting/e1687baf-1c01-453c-838c-802c3427000f/export {"uuid": "e1687baf-1c01-453c-838c-802c3427000f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/pEOUYF8cGjnWnRNsVcTP1hWT8v0mLe1mBAfuN7qHOw-Q7YU", "content": "", "creation_timestamp": "2026-06-09T03:00:05.000000Z"} {"uuid": "e1687baf-1c01-453c-838c-802c3427000f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "published-proof-of-concept", "source": "Telegram/pEOUYF8cGjnWnRNsVcTP1hWT8v0mLe1mBAfuN7qHOw-Q7YU", "content": "", "creation_timestamp": "2026-06-09T03:00:05.000000Z"} https://vulnerability.circl.lu/sighting/e1687baf-1c01-453c-838c-802c3427000f/export Tue, 09 Jun 2026 03:00:05 +0000 https://vulnerability.circl.lu/sighting/99d672d9-056a-4996-8946-3c5a8a59f496/export {"uuid": "99d672d9-056a-4996-8946-3c5a8a59f496", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6fec5af1-bdae-4e72-b62f-ad6bd4e72f1c", "content": "", "creation_timestamp": "2026-06-19T12:45:35.684105Z"} {"uuid": "99d672d9-056a-4996-8946-3c5a8a59f496", "vulnerability_lookup_origin": "caeb2787-0d58-4236-9039-7c86c3e566f3", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59528", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/6fec5af1-bdae-4e72-b62f-ad6bd4e72f1c", "content": "", "creation_timestamp": "2026-06-19T12:45:35.684105Z"} https://vulnerability.circl.lu/sighting/99d672d9-056a-4996-8946-3c5a8a59f496/export Fri, 19 Jun 2026 12:45:35 +0000