Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-04T18:29:05.200000+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/61fcf4cb-08aa-44d5-bd45-ddf8d9ac86e9/export 61fcf4cb-08aa-44d5-bd45-ddf8d9ac86e9 2026-05-04T18:29:05.543827+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "61fcf4cb-08aa-44d5-bd45-ddf8d9ac86e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-37267", "type": "seen", "source": "https://t.me/cibsecurity/29595", "content": "\u203c CVE-2021-37267 \u203c\n\nCross Site Scripting (XSS) vulnerability exists in all versions of KindEditor, which can be exploited by an attacker to obtain user cookie information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-28T22:36:08.000000Z"} 2021-09-28T22:36:08+00:00 https://vulnerability.circl.lu/sighting/f2ab8f0a-ce22-4d7f-9e37-988bc5a5ce7a/export f2ab8f0a-ce22-4d7f-9e37-988bc5a5ce7a 2026-05-04T18:29:05.543663+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "f2ab8f0a-ce22-4d7f-9e37-988bc5a5ce7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3726", "type": "published-proof-of-concept", "source": "https://t.me/cibsecurity/33079", "content": "\u203c CVE-2021-3726 \u203c\n\n# Vulnerability in `title` function **Description**: the `title` function defined in `lib/termsupport.zsh` uses `print` to set the terminal title to a user-supplied string. In Oh My Zsh, this function is always used securely, but custom user code could use the `title` function in a way that is unsafe. **Fixed in**: [a263cdac](https://github.com/ohmyzsh/ohmyzsh/commit/a263cdac). **Impacted areas**: - `title` function in `lib/termsupport.zsh`. - Custom user code using the `title` function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-30T12:34:12.000000Z"} 2021-11-30T12:34:12+00:00 https://vulnerability.circl.lu/sighting/e67ac46f-f4ef-4c2a-bc3a-debe4f0ea715/export e67ac46f-f4ef-4c2a-bc3a-debe4f0ea715 2026-05-04T18:29:05.541414+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "e67ac46f-f4ef-4c2a-bc3a-debe4f0ea715", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-37262", "type": "seen", "source": "https://t.me/cibsecurity/34156", "content": "\u203c CVE-2021-37262 \u203c\n\nJFinal_cms 5.1.0 is vulnerable to regex injection that may lead to Denial of Service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-16T22:35:57.000000Z"} 2021-12-16T22:35:57+00:00