Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-07T20:00:45.820442+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/8887ca8e-1c11-47b3-8017-3f983530ab78/export 8887ca8e-1c11-47b3-8017-3f983530ab78 2026-05-07T20:00:46.194261+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "8887ca8e-1c11-47b3-8017-3f983530ab78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11847", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8809", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11847\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to conduct Stored XSS attacks.\n\ud83d\udccf Published: 2025-03-26T06:00:02.270Z\n\ud83d\udccf Modified: 2025-03-26T06:00:02.270Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/f57ecff2-0cff-40c7-b6e4-5b162b847d65/", "creation_timestamp": "2025-03-26T06:25:18.000000Z"} 2025-03-26T06:25:18+00:00 https://vulnerability.circl.lu/sighting/4934a8d4-9a0c-43b2-aeb4-edb5a6e98b3d/export 4934a8d4-9a0c-43b2-aeb4-edb5a6e98b3d 2026-05-07T20:00:46.192503+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "4934a8d4-9a0c-43b2-aeb4-edb5a6e98b3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11847", "type": "seen", "source": "https://t.me/cvedetector/21150", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-11847 - WordPress SVG Upload Stored XSS Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-11847 \nPublished : March 26, 2025, 6:15 a.m. | 2\u00a0hours, 17\u00a0minutes ago \nDescription : The wp-svg-upload WordPress plugin through 1.0.0 does not sanitize SVG file contents, which enables users with at least the author role to SVG with malicious JavaScript to conduct Stored XSS attacks. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-26T09:42:18.000000Z"} 2025-03-26T09:42:18+00:00