https://vulnerability.circl.lu/sightings/feed 2026-05-06T09:02:17.747345+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/b7cc88a9-b2be-4550-9e47-fab92aae45d6/export 2026-05-06T09:02:18.077746+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "b7cc88a9-b2be-4550-9e47-fab92aae45d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34923", "type": "seen", "source": "https://t.me/cibsecurity/65432", "content": "\u203c CVE-2023-34923 \u203c\n\nXML Signature Wrapping (XSW) in SAML-based Single Sign-on feature in TOPdesk v12.10.12 allows bad actors with credentials to authenticate with the Identity Provider (IP) to impersonate any TOPdesk user via SAML Response manipulation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-22T22:32:15.000000Z"} 2023-06-22T22:32:15+00:00 https://vulnerability.circl.lu/sighting/61865409-05d5-44be-9fb5-5f6601139c57/export 2026-05-06T09:02:18.077623+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "61865409-05d5-44be-9fb5-5f6601139c57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34928", "type": "seen", "source": "https://t.me/cibsecurity/65609", "content": "\u203c CVE-2023-34928 \u203c\n\nA stack overflow in the Edit_BasicSSID function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-28T18:12:59.000000Z"} 2023-06-28T18:12:59+00:00 https://vulnerability.circl.lu/sighting/1eb65bad-6f26-4fa5-93cf-4b73526bec02/export 2026-05-06T09:02:18.077451+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "1eb65bad-6f26-4fa5-93cf-4b73526bec02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34929", "type": "seen", "source": "https://t.me/cibsecurity/65619", "content": "\u203c CVE-2023-34929 \u203c\n\nA stack overflow in the AddMacList function of H3C Magic B1STV100R012 allows attackers to cause a Denial of Service (DoS) via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-28T18:13:14.000000Z"} 2023-06-28T18:13:14+00:00 https://vulnerability.circl.lu/sighting/87ad12c3-698a-4988-a51c-6bc2f53c49ef/export 2026-05-06T09:02:18.074523+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "87ad12c3-698a-4988-a51c-6bc2f53c49ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3492", "type": "seen", "source": "https://t.me/cibsecurity/67875", "content": "\u203c CVE-2023-3492 \u203c\n\nThe WP Shopping Pages WordPress plugin through 1.14 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-07T18:13:46.000000Z"} 2023-08-07T18:13:46+00:00