https://vulnerability.circl.lu/sightings/feed 2026-06-27T00:37:40.979499+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/f9b94cf2-9d0e-4c9d-aa64-3dca91ce5499/export 2026-06-27T00:37:41.004841+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f9b94cf2-9d0e-4c9d-aa64-3dca91ce5499", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21808", "type": "seen", "source": "https://t.me/cibsecurity/58191", "content": "\u203c CVE-2023-21808 \u203c\n\n.NET and Visual Studio Remote Code Execution Vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-15T00:35:55.000000Z"} 2023-02-15T00:35:55+00:00 https://vulnerability.circl.lu/sighting/47b76bbf-c134-48e8-803f-a95cba4baddf/export 2026-06-27T00:37:41.003850+00:00 Joseph Lee https://vulnerability.circl.lu/user/syspect {"uuid": "47b76bbf-c134-48e8-803f-a95cba4baddf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-21803", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=970", "content": "", "creation_timestamp": "2023-02-15T04:00:00.000000Z"} 2023-02-15T04:00:00+00:00 https://vulnerability.circl.lu/sighting/c22464b4-b4f7-4aa8-b11c-c4c41868ba46/export 2026-06-27T00:37:41.003784+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "c22464b4-b4f7-4aa8-b11c-c4c41868ba46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21800", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7977", "content": "#exploit\n1. CVE-2023-28115:\nSnappy PHP Vulnerability: PHAR deserialization allowing RCE\nhttps://github.com/KnpLabs/snappy/security/advisories/GHSA-gq6w-q6wh-jggc\n\n2. CVE-2022-37337, CVE-2022-38452, CVE-2022-36429: \nNetgear Orbi Satellite router vulnerable to arbitrary command execution\nhttps://blog.talosintelligence.com/vulnerability-spotlight-netgear-orbi-router-vulnerable-to-arbitrary-command-execution\n\n3. CVE-2023-21800:\nWindows Installer EoP\nhttps://blog.doyensec.com//2023/03/21/windows-installer.html", "creation_timestamp": "2023-03-23T11:05:11.000000Z"} 2023-03-23T11:05:11+00:00 https://vulnerability.circl.lu/sighting/53ced1ab-3d14-4eb8-af25-4493d5fc25df/export 2026-06-27T00:37:41.003721+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "53ced1ab-3d14-4eb8-af25-4493d5fc25df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21800", "type": "published-proof-of-concept", "source": "Telegram/Ho3etU7nV-tmmbRdfdYMQ67MVKjbi2SAANDwH7DHwQo2BZw", "content": "", "creation_timestamp": "2023-03-23T21:36:39.000000Z"} 2023-03-23T21:36:39+00:00 https://vulnerability.circl.lu/sighting/ea629151-ab09-4a93-84b1-52199a79b669/export 2026-06-27T00:37:41.003655+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ea629151-ab09-4a93-84b1-52199a79b669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2180", "type": "seen", "source": "https://t.me/cibsecurity/64130", "content": "\u203c CVE-2023-2180 \u203c\n\nThe KIWIZ Invoices Certification & PDF System WordPress plugin through 2.1.3 does not validate the path of files to be downloaded, which could allow unauthenticated attacker to read/downlaod arbitrary files, as well as perform PHAR unserialization (assuming they can upload a file on the server)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:43:23.000000Z"} 2023-05-15T16:43:23+00:00 https://vulnerability.circl.lu/sighting/39f25a91-f48d-4b9c-b47d-66657d4fd999/export 2026-06-27T00:37:41.003590+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "39f25a91-f48d-4b9c-b47d-66657d4fd999", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21800", "type": "published-proof-of-concept", "source": "https://t.me/professional_c_h/2119", "content": "CVE-2023-21800 : Windows Installer Elevation of Privilege\nBlog : https://blog.doyensec.com//2023/03/21/windows-installer.html\n\n@Professional_c_h\n@Card_crack_hack", "creation_timestamp": "2023-07-28T12:30:53.000000Z"} 2023-07-28T12:30:53+00:00 https://vulnerability.circl.lu/sighting/db2484ef-1e80-4550-9f51-22522806e0f1/export 2026-06-27T00:37:41.003518+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "db2484ef-1e80-4550-9f51-22522806e0f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21809", "type": "seen", "source": "https://t.me/arpsyndicate/2353", "content": "#ExploitObserverAlert\n\nCVE-2023-21809\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-21809. Microsoft Defender for Endpoint Security Feature Bypass Vulnerability\n\nFIRST-EPSS: 0.000530000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2024-01-03T20:21:26.000000Z"} 2024-01-03T20:21:26+00:00 https://vulnerability.circl.lu/sighting/060a82d7-d742-42ed-9035-0b745d4435d2/export 2026-06-27T00:37:41.003438+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "060a82d7-d742-42ed-9035-0b745d4435d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2180", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3027", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-2180\n\ud83d\udd39 Description: The KIWIZ Invoices Certification & PDF System WordPress plugin through 2.1.3 does not validate the path of files to be downloaded, which could allow unauthenticated attacker to read/downlaod arbitrary files, as well as perform PHAR unserialization (assuming they can upload a file on the server)\n\ud83d\udccf Published: 2023-05-15T12:15:35.070Z\n\ud83d\udccf Modified: 2025-01-24T20:44:08.757Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/4d3b90d8-8a6d-4b72-8bc7-21f861259a1b", "creation_timestamp": "2025-01-24T21:05:21.000000Z"} 2025-01-24T21:05:21+00:00 https://vulnerability.circl.lu/sighting/a58dd0b9-419d-443a-9f44-ba580f73720e/export 2026-06-27T00:37:41.003345+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a58dd0b9-419d-443a-9f44-ba580f73720e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21808", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6004", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21808\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)\n\ud83d\udd39 Description: .NET and Visual Studio Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2023-02-14T20:09:27.030Z\n\ud83d\udccf Modified: 2025-02-28T21:13:45.998Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21808", "creation_timestamp": "2025-02-28T21:37:35.000000Z"} 2025-02-28T21:37:35+00:00 https://vulnerability.circl.lu/sighting/455b6b97-14cb-46d4-abe4-c649310f5ed3/export 2026-06-27T00:37:41.001754+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "455b6b97-14cb-46d4-abe4-c649310f5ed3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-21801", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11536", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-21801\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)\n\ud83d\udd39 Description: Microsoft PostScript and PCL6 Class Printer Driver Remote Code Execution Vulnerability\n\ud83d\udccf Published: 2023-02-14T19:33:06.778Z\n\ud83d\udccf Modified: 2025-04-12T03:55:21.711Z\n\ud83d\udd17 References:\n1. https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-21801", "creation_timestamp": "2025-04-12T04:51:12.000000Z"} 2025-04-12T04:51:12+00:00