https://vulnerability.circl.lu/sightings/feed 2026-06-25T14:19:57.867396+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/4c23d675-ef61-4d43-81a6-ce6167d59167/export 2026-06-25T14:19:57.888401+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4c23d675-ef61-4d43-81a6-ce6167d59167", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24071", "type": "seen", "source": "https://t.me/cibsecurity/36447", "content": "\u203c CVE-2022-24071 \u203c\n\nA Built-in extension in Whale browser before 3.12.129.46 allows attackers to compromise the rendering process which could lead to controlling browser internal APIs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-28T14:23:25.000000Z"} 2022-01-28T14:23:25+00:00 https://vulnerability.circl.lu/sighting/26fad25f-a9cb-47ca-9104-ee7e3909510e/export 2026-06-25T14:19:57.888217+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "26fad25f-a9cb-47ca-9104-ee7e3909510e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24075", "type": "seen", "source": "https://t.me/cibsecurity/39113", "content": "\u203c CVE-2022-24075 \u203c\n\nWhale browser before 3.12.129.18 allowed extensions to replace JavaScript files of the HWP viewer website which could access to local HWP files. When the HWP files were opened, the replaced script could read the files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-17T11:21:17.000000Z"} 2022-03-17T11:21:17+00:00 https://vulnerability.circl.lu/sighting/0e10537d-ed3d-4108-bdf7-b4e76d37b75f/export 2026-06-25T14:19:57.888047+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0e10537d-ed3d-4108-bdf7-b4e76d37b75f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24074", "type": "seen", "source": "https://t.me/cibsecurity/39114", "content": "\u203c CVE-2022-24074 \u203c\n\nWhale Bridge, a default extension in Whale browser before 3.12.129.18, allowed to receive any SendMessage request from the content script itself that could lead to controlling Whale Bridge if the rendering process compromises.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-17T11:21:18.000000Z"} 2022-03-17T11:21:18+00:00 https://vulnerability.circl.lu/sighting/97d5b7a4-3dac-4680-a091-f2df426f1f4f/export 2026-06-25T14:19:57.887843+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "97d5b7a4-3dac-4680-a091-f2df426f1f4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24072", "type": "seen", "source": "https://t.me/cibsecurity/39116", "content": "\u203c CVE-2022-24072 \u203c\n\nThe devtools API in Whale browser before 3.12.129.18 allowed extension developers to inject arbitrary JavaScript into the extension store web page via devtools.inspectedWindow, leading to extensions downloading and uploading when users open the developer tool.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-17T11:21:20.000000Z"} 2022-03-17T11:21:20+00:00 https://vulnerability.circl.lu/sighting/4c62697e-c1b9-47ea-bc43-a965c7c37be5/export 2026-06-25T14:19:57.887653+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "4c62697e-c1b9-47ea-bc43-a965c7c37be5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24073", "type": "seen", "source": "https://t.me/cibsecurity/39115", "content": "\u203c CVE-2022-24073 \u203c\n\nThe Web Request API in Whale browser before 3.12.129.18 allowed to deny access to the extension store or redirect to any URL when users access the store.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-01T19:11:29.000000Z"} 2022-04-01T19:11:29+00:00 https://vulnerability.circl.lu/sighting/0cd8893b-c204-4821-8487-2233986a6602/export 2026-06-25T14:19:57.887415+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "0cd8893b-c204-4821-8487-2233986a6602", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24070", "type": "seen", "source": "https://t.me/cibsecurity/40665", "content": "\u203c CVE-2022-24070 \u203c\n\nSubversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not use mod_dav_svn are not affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T22:17:05.000000Z"} 2022-04-12T22:17:05+00:00 https://vulnerability.circl.lu/sighting/9e80222d-7edd-47d1-bf7d-12f0a59e9d92/export 2026-06-25T14:19:57.885179+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "9e80222d-7edd-47d1-bf7d-12f0a59e9d92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24077", "type": "seen", "source": "https://t.me/cibsecurity/44307", "content": "\u203c CVE-2022-24077 \u203c\n\nNaver Cloud Explorer Beta allows the attacker to execute arbitrary code as System privilege via malicious DLL injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-13T18:18:13.000000Z"} 2022-06-13T18:18:13+00:00