Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-05T02:38:22.429619+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/2de6a545-ea2f-44cb-8dd8-bcc771c0283f/export 2de6a545-ea2f-44cb-8dd8-bcc771c0283f 2026-05-05T02:38:22.684203+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "2de6a545-ea2f-44cb-8dd8-bcc771c0283f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13540", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ligiyo7lv52h", "content": "", "creation_timestamp": "2025-02-18T05:16:12.921669Z"} 2025-02-18T05:16:12.921669+00:00 https://vulnerability.circl.lu/sighting/7228295a-4485-4bfe-a79b-4eebbb85d2e3/export 7228295a-4485-4bfe-a79b-4eebbb85d2e3 2026-05-05T02:38:22.684118+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "7228295a-4485-4bfe-a79b-4eebbb85d2e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13540", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4749", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13540\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: The WooODT Lite \u2013 Delivery & pickup date time location for WooCommerce plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.5.1. This is due the /inc/bycwooodt_get_all_orders.php file being publicly accessible and generating a publicly visible error message. This makes it possible for unauthenticated attackers to retrieve the full path of the web application, which can be used to aid other attacks. The information displayed is not useful on its own, and requires another vulnerability to be present for damage to an affected website.\n\ud83d\udccf Published: 2025-02-18T04:21:14.616Z\n\ud83d\udccf Modified: 2025-02-18T04:21:14.616Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/4158f6ff-8e0f-4531-8c94-f59220d6fea6?source=cve\n2. https://plugins.trac.wordpress.org/browser/byconsole-woo-order-delivery-time/trunk/inc/bycwooodt_get_all_orders.php", "creation_timestamp": "2025-02-18T07:57:02.000000Z"} 2025-02-18T07:57:02+00:00 https://vulnerability.circl.lu/sighting/9b088aa4-cff5-4400-b782-9b78d3d5bca7/export 9b088aa4-cff5-4400-b782-9b78d3d5bca7 2026-05-05T02:38:22.684041+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "9b088aa4-cff5-4400-b782-9b78d3d5bca7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13540", "type": "seen", "source": "Telegram/OF0ceqNR5eVV44rXfW8xnOoJN9EDHEVy479_R56Fc7d6aZTD", "content": "", "creation_timestamp": "2025-02-18T11:39:00.000000Z"} 2025-02-18T11:39:00+00:00 https://vulnerability.circl.lu/sighting/70bdfcc8-4e49-416a-a82d-37dc317d675b/export 70bdfcc8-4e49-416a-a82d-37dc317d675b 2026-05-05T02:38:22.683962+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "70bdfcc8-4e49-416a-a82d-37dc317d675b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13543", "type": "seen", "source": "Telegram/3rhUczMVjglw8l-CbftoJHaRJDTOOaonWDgBZmxSaFChIVsw", "content": "", "creation_timestamp": "2025-02-20T23:26:55.000000Z"} 2025-02-20T23:26:55+00:00 https://vulnerability.circl.lu/sighting/7d59501d-87db-4214-aaf4-a2b9a044213c/export 7d59501d-87db-4214-aaf4-a2b9a044213c 2026-05-05T02:38:22.683880+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "7d59501d-87db-4214-aaf4-a2b9a044213c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13544", "type": "seen", "source": "Telegram/kXfQS2SjChZB0Q3iH2QOhPBUhUSBwcKVZK2Ns9Zyr_ZykmQZ", "content": "", "creation_timestamp": "2025-02-20T23:26:55.000000Z"} 2025-02-20T23:26:55+00:00 https://vulnerability.circl.lu/sighting/02aabc31-d52e-46bc-9eaf-587b4970ce81/export 02aabc31-d52e-46bc-9eaf-587b4970ce81 2026-05-05T02:38:22.683785+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "02aabc31-d52e-46bc-9eaf-587b4970ce81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13546", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6065", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13546\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.9.1 via the 'get_image_description' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including the content of private, draft, and scheduled posts and pages.\n\ud83d\udccf Published: 2025-03-01T09:22:53.483Z\n\ud83d\udccf Modified: 2025-03-01T09:22:53.483Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/4f6f2a8c-ecd9-482c-a32e-0c3d7a7e4ec4?source=cve\n2. https://plugins.trac.wordpress.org/browser/generateblocks/trunk/includes/class-dynamic-content.php#L1047\n3. https://plugins.trac.wordpress.org/browser/generateblocks/trunk/includes/class-dynamic-content.php#L1054\n4. https://plugins.trac.wordpress.org/changeset/3239461/", "creation_timestamp": "2025-03-01T09:30:17.000000Z"} 2025-03-01T09:30:17+00:00 https://vulnerability.circl.lu/sighting/98f561cc-f8e5-425a-a878-8d4df1898807/export 98f561cc-f8e5-425a-a878-8d4df1898807 2026-05-05T02:38:22.683697+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "98f561cc-f8e5-425a-a878-8d4df1898807", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13546", "type": "seen", "source": "https://t.me/cvedetector/19229", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-13546 - GenerateBlocks WordPress Sensitive Information Exposure\", \n \"Content\": \"CVE ID : CVE-2024-13546 \nPublished : March 1, 2025, 10:15 a.m. | 36\u00a0minutes ago \nDescription : The GenerateBlocks plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.9.1 via the 'get_image_description' function. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract sensitive data including the content of private, draft, and scheduled posts and pages. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"01 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T12:16:04.000000Z"} 2025-03-01T12:16:04+00:00 https://vulnerability.circl.lu/sighting/06da237e-fcb6-4000-aa52-cb0404323159/export 06da237e-fcb6-4000-aa52-cb0404323159 2026-05-05T02:38:22.683610+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "06da237e-fcb6-4000-aa52-cb0404323159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13546", "type": "seen", "source": "Telegram/jytQXdHmFjcmkhuhfbAe3PkV1HS7vhQ4ktCAVUb2pbh24Eac", "content": "", "creation_timestamp": "2025-03-02T11:46:58.000000Z"} 2025-03-02T11:46:58+00:00 https://vulnerability.circl.lu/sighting/80f0a892-875d-41d6-94b0-198514b7e73e/export 80f0a892-875d-41d6-94b0-198514b7e73e 2026-05-05T02:38:22.683491+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "80f0a892-875d-41d6-94b0-198514b7e73e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13543", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-13543.yaml", "content": "", "creation_timestamp": "2026-02-05T05:52:19.000000Z"} 2026-02-05T05:52:19+00:00 https://vulnerability.circl.lu/sighting/f0bb58ed-9730-4f6e-bb30-b2aa2e5b3ef4/export f0bb58ed-9730-4f6e-bb30-b2aa2e5b3ef4 2026-05-05T02:38:22.681288+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "f0bb58ed-9730-4f6e-bb30-b2aa2e5b3ef4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13543", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3meccxhjyui2s", "content": "", "creation_timestamp": "2026-02-07T21:02:57.893665Z"} 2026-02-07T21:02:57.893665+00:00