<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-01T22:03:19.806697+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/67b72bea-79bc-4091-9ba3-03a30d70cfb2/export</id>
    <title>67b72bea-79bc-4091-9ba3-03a30d70cfb2</title>
    <updated>2026-07-01T22:03:19.819055+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "67b72bea-79bc-4091-9ba3-03a30d70cfb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-3733-6V6M-39MH", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/158", "content": "Tools - Hackers Factory\n\nIt creates a livedump of the machine through NtDebugSystemControl to extract the COM secret and context, to then inject inside this process.\n\nhttps://github.com/Slowerzs/PPLSystem\n\nAgentic LLM Vulnerability Scanner \n\nhttps://github.com/msoedov/agentic_security\n\nA Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements. \n\nhttps://github.com/msoedov/agentic_security\n\nPowerful+Fast Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump \n\nhttps://github.com/Esonhugh/k8spider\n\nHTTP 403 bypass tool \n\nhttps://github.com/trap-bytes/403jump\n\n\nMOBEXLER - A Mobile Application Penetration Testing Platform\n\nhttps://github.com/enciphers-team/Mobexler/blob/master/docs/index.md\n\nA library for detecting known secrets across many web frameworks \n\nhttps://github.com/blacklanternsecurity/badsecrets\n\nThe Yoast SEO plugin for WordPress is vulnerable to... \n\nhttps://github.com/advisories/GHSA-3733-6v6m-39mh\n\nServer-Side Request Forgery in Server Actions \n\nhttps://github.com/vercel/next.js/security/advisories/GHSA-fr5h-rqp8-mj6g\n\nFuzz 401/403/404 pages for bypasses \n\nhttps://github.com/intrudir/BypassFuzzer\n\nAn interactive shell to spoof some LOLBins command line \n\nhttps://github.com/itaymigdal/LOLSpoof\n\nFully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike. \n\nhttps://github.com/Syslifters/sysreptor\n\n#HackersFactory", "creation_timestamp": "2024-06-17T14:07:45.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/67b72bea-79bc-4091-9ba3-03a30d70cfb2/export"/>
    <published>2024-06-17T14:07:45+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ac5c4df7-4e1c-4e56-b6a8-e6bdc4b5b895/export</id>
    <title>ac5c4df7-4e1c-4e56-b6a8-e6bdc4b5b895</title>
    <updated>2026-07-01T22:03:19.822058+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ac5c4df7-4e1c-4e56-b6a8-e6bdc4b5b895", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-3733-6V6M-39MH", "type": "published-proof-of-concept", "source": "https://t.me/GhostsForum/21710", "content": "Tools - Hackers Factory\n\nIt creates a livedump of the machine through NtDebugSystemControl to extract the COM secret and context, to then inject inside this process.\n\nhttps://github.com/Slowerzs/PPLSystem\n\nAgentic LLM Vulnerability Scanner \n\nhttps://github.com/msoedov/agentic_security\n\nA Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements. \n\nhttps://github.com/msoedov/agentic_security\n\nPowerful+Fast Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump \n\nhttps://github.com/Esonhugh/k8spider\n\nHTTP 403 bypass tool \n\nhttps://github.com/trap-bytes/403jump\n\n\nMOBEXLER - A Mobile Application Penetration Testing Platform\n\nhttps://github.com/enciphers-team/Mobexler/blob/master/docs/index.md\n\nA library for detecting known secrets across many web frameworks \n\nhttps://github.com/blacklanternsecurity/badsecrets\n\nThe Yoast SEO plugin for WordPress is vulnerable to... \n\nhttps://github.com/advisories/GHSA-3733-6v6m-39mh\n\nServer-Side Request Forgery in Server Actions \n\nhttps://github.com/vercel/next.js/security/advisories/GHSA-fr5h-rqp8-mj6g\n\nFuzz 401/403/404 pages for bypasses \n\nhttps://github.com/intrudir/BypassFuzzer\n\nAn interactive shell to spoof some LOLBins command line \n\nhttps://github.com/itaymigdal/LOLSpoof\n\nFully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike. \n\nhttps://github.com/Syslifters/sysreptor\n\n#HackersFactory", "creation_timestamp": "2024-05-30T10:10:01.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ac5c4df7-4e1c-4e56-b6a8-e6bdc4b5b895/export"/>
    <published>2024-05-30T10:10:01+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/680380d9-57fe-4aa2-a200-b398f79700a0/export</id>
    <title>680380d9-57fe-4aa2-a200-b398f79700a0</title>
    <updated>2026-07-01T22:03:19.822230+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "680380d9-57fe-4aa2-a200-b398f79700a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-3733-6V6M-39MH", "type": "published-proof-of-concept", "source": "https://t.me/GhostClanOfficial/929", "content": "Tools - Hackers Factory\n\nIt creates a livedump of the machine through NtDebugSystemControl to extract the COM secret and context, to then inject inside this process.\n\nhttps://github.com/Slowerzs/PPLSystem\n\nAgentic LLM Vulnerability Scanner \n\nhttps://github.com/msoedov/agentic_security\n\nA Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements. \n\nhttps://github.com/msoedov/agentic_security\n\nPowerful+Fast Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump \n\nhttps://github.com/Esonhugh/k8spider\n\nHTTP 403 bypass tool \n\nhttps://github.com/trap-bytes/403jump\n\n\nMOBEXLER - A Mobile Application Penetration Testing Platform\n\nhttps://github.com/enciphers-team/Mobexler/blob/master/docs/index.md\n\nA library for detecting known secrets across many web frameworks \n\nhttps://github.com/blacklanternsecurity/badsecrets\n\nThe Yoast SEO plugin for WordPress is vulnerable to... \n\nhttps://github.com/advisories/GHSA-3733-6v6m-39mh\n\nServer-Side Request Forgery in Server Actions \n\nhttps://github.com/vercel/next.js/security/advisories/GHSA-fr5h-rqp8-mj6g\n\nFuzz 401/403/404 pages for bypasses \n\nhttps://github.com/intrudir/BypassFuzzer\n\nAn interactive shell to spoof some LOLBins command line \n\nhttps://github.com/itaymigdal/LOLSpoof\n\nFully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike. \n\nhttps://github.com/Syslifters/sysreptor\n\n#HackersFactory", "creation_timestamp": "2024-05-30T10:09:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/680380d9-57fe-4aa2-a200-b398f79700a0/export"/>
    <published>2024-05-30T10:09:06+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ca73c2c3-11e6-43f1-995f-437bc55d3369/export</id>
    <title>ca73c2c3-11e6-43f1-995f-437bc55d3369</title>
    <updated>2026-07-01T22:03:19.822387+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ca73c2c3-11e6-43f1-995f-437bc55d3369", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-3733-6V6M-39MH", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3256", "content": "Tools - Hackers Factory\n\nIt creates a livedump of the machine through NtDebugSystemControl to extract the COM secret and context, to then inject inside this process.\n\nhttps://github.com/Slowerzs/PPLSystem\n\nAgentic LLM Vulnerability Scanner \n\nhttps://github.com/msoedov/agentic_security\n\nA Chrome/Firefox browser extension to show alerts for reflected query params, show Wayback archive links for the current path, show hidden elements and enable disabled elements. \n\nhttps://github.com/msoedov/agentic_security\n\nPowerful+Fast Kubernetes service discovery tools via kubernetes DNS service. Currently supported service ip-port BruteForcing / AXFR Domain Transfer Dump / Coredns WildCard Dump \n\nhttps://github.com/Esonhugh/k8spider\n\nHTTP 403 bypass tool \n\nhttps://github.com/trap-bytes/403jump\n\n\nMOBEXLER - A Mobile Application Penetration Testing Platform\n\nhttps://github.com/enciphers-team/Mobexler/blob/master/docs/index.md\n\nA library for detecting known secrets across many web frameworks \n\nhttps://github.com/blacklanternsecurity/badsecrets\n\nThe Yoast SEO plugin for WordPress is vulnerable to... \n\nhttps://github.com/advisories/GHSA-3733-6v6m-39mh\n\nServer-Side Request Forgery in Server Actions \n\nhttps://github.com/vercel/next.js/security/advisories/GHSA-fr5h-rqp8-mj6g\n\nFuzz 401/403/404 pages for bypasses \n\nhttps://github.com/intrudir/BypassFuzzer\n\nAn interactive shell to spoof some LOLBins command line \n\nhttps://github.com/itaymigdal/LOLSpoof\n\nFully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike. \n\nhttps://github.com/Syslifters/sysreptor\n\n#HackersFactory", "creation_timestamp": "2024-05-30T10:08:39.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ca73c2c3-11e6-43f1-995f-437bc55d3369/export"/>
    <published>2024-05-30T10:08:39+00:00</published>
  </entry>
</feed>
