https://vulnerability.circl.lu/sightings/feed 2026-06-12T08:00:57.767611+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/29c37876-f1ff-4473-9afa-7b2c3a4b7fc7/export 2026-06-12T08:00:57.993870+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "29c37876-f1ff-4473-9afa-7b2c3a4b7fc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23836", "type": "seen", "source": "https://t.me/cvedetector/16189", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-23836 - SuryaBhan Custom Coming Soon Cross-Site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2025-23836 \nPublished : Jan. 23, 2025, 4:15 p.m. | 41\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in SuryaBhan Custom Coming Soon allows Reflected XSS. This issue affects Custom Coming Soon: from n/a through 2.2. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"23 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-23T18:18:42.000000Z"} 2025-01-23T18:18:42+00:00 https://vulnerability.circl.lu/sighting/ecde53d4-b93e-4f30-a0eb-b9eb3d6cbd34/export 2026-06-12T08:00:57.993794+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ecde53d4-b93e-4f30-a0eb-b9eb3d6cbd34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23835", "type": "seen", "source": "https://t.me/cvedetector/16188", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-23835 - \"NotFound Legal+ Cross-Site Scripting Vulnerability\"\", \n \"Content\": \"CVE ID : CVE-2025-23835 \nPublished : Jan. 23, 2025, 4:15 p.m. | 41\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Legal + allows Reflected XSS. This issue affects Legal +: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"23 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-23T18:18:42.000000Z"} 2025-01-23T18:18:42+00:00 https://vulnerability.circl.lu/sighting/47789fec-18a3-433d-96e6-fc6f4335e31a/export 2026-06-12T08:00:57.993730+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "47789fec-18a3-433d-96e6-fc6f4335e31a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23837", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113883082998286517", "content": "", "creation_timestamp": "2025-01-24T11:25:41.799146Z"} 2025-01-24T11:25:41.799146+00:00 https://vulnerability.circl.lu/sighting/622c1ba6-de0c-4693-9fb3-fbec49b26d11/export 2026-06-12T08:00:57.993658+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "622c1ba6-de0c-4693-9fb3-fbec49b26d11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23838", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113883083032948801", "content": "", "creation_timestamp": "2025-01-24T11:25:43.116233Z"} 2025-01-24T11:25:43.116233+00:00 https://vulnerability.circl.lu/sighting/e7b90095-6f51-4bb6-9b41-cacccb9db898/export 2026-06-12T08:00:57.993578+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "e7b90095-6f51-4bb6-9b41-cacccb9db898", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23839", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113883083047427156", "content": "", "creation_timestamp": "2025-01-24T11:25:43.216635Z"} 2025-01-24T11:25:43.216635+00:00 https://vulnerability.circl.lu/sighting/f24001a1-0caa-43db-8e7a-6517909d20c5/export 2026-06-12T08:00:57.993493+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f24001a1-0caa-43db-8e7a-6517909d20c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23837", "type": "seen", "source": "https://t.me/cvedetector/16257", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-23837 - \"NotFound One Backend Language Cross-site Scripting\"\", \n \"Content\": \"CVE ID : CVE-2025-23837 \nPublished : Jan. 24, 2025, 11:15 a.m. | 28\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound One Backend Language allows Reflected XSS. This issue affects One Backend Language: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T12:43:46.000000Z"} 2025-01-24T12:43:46+00:00 https://vulnerability.circl.lu/sighting/a8d111d1-7d77-4e57-a14c-144d8b216d56/export 2026-06-12T08:00:57.993411+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a8d111d1-7d77-4e57-a14c-144d8b216d56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23838", "type": "seen", "source": "https://t.me/cvedetector/16259", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-23838 - Bauernregeln Cross-Site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2025-23838 \nPublished : Jan. 24, 2025, 11:15 a.m. | 28\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Bauernregeln allows Reflected XSS. This issue affects Bauernregeln: from n/a through 1.0.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T12:43:48.000000Z"} 2025-01-24T12:43:48+00:00 https://vulnerability.circl.lu/sighting/96cf5494-3a96-4189-a9af-97c10ccd6841/export 2026-06-12T08:00:57.993330+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "96cf5494-3a96-4189-a9af-97c10ccd6841", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23839", "type": "seen", "source": "https://t.me/cvedetector/16260", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-23839 - Webgoeth Sticky Button Cross-Site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-23839 \nPublished : Jan. 24, 2025, 11:15 a.m. | 28\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Sticky Button allows Stored XSS. This issue affects Sticky Button: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Jan 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T12:43:49.000000Z"} 2025-01-24T12:43:49+00:00 https://vulnerability.circl.lu/sighting/a888447b-1e73-40c9-93ac-c27a47df15b9/export 2026-06-12T08:00:57.993215+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "a888447b-1e73-40c9-93ac-c27a47df15b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2383", "type": "seen", "source": "https://t.me/cvedetector/20498", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2383 - PHPGurukul Doctor Appointment Management System SQL Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2383 \nPublished : March 17, 2025, 4:15 p.m. | 1\u00a0hour, 41\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in PHPGurukul Doctor Appointment Management System 1.0. Affected by this issue is some unknown functionality of the file /doctor/search.php. The manipulation of the argument searchdata leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"17 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-17T19:08:52.000000Z"} 2025-03-17T19:08:52+00:00 https://vulnerability.circl.lu/sighting/f30f769c-8303-46b0-937c-715d396d4161/export 2026-06-12T08:00:57.991790+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "f30f769c-8303-46b0-937c-715d396d4161", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2383", "type": "seen", "source": "Telegram/tqhjnqyG63AMavUfr_Yijdv7hHvwgO0fWOo-eg8WU7ZDp2c", "content": "", "creation_timestamp": "2025-03-17T19:32:26.000000Z"} 2025-03-17T19:32:26+00:00