https://vulnerability.circl.lu/sightings/feed 2026-06-16T23:22:19.890690+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/7b086650-829c-47ba-bf69-714fe4829f76/export 2026-06-16T23:22:20.241219+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7b086650-829c-47ba-bf69-714fe4829f76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43574", "type": "seen", "source": "https://t.me/cibsecurity/52540", "content": "\u203c CVE-2022-43574 \u203c\n\n\"IBM Robotic Process Automation 21.0.1, 21.0.2, 21.0.3, 21.0.4, and 21.0.5 is vulnerable to incorrect permission assignment which could allow access to application configurations. IBM X-Force ID: 238679.\"\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-03T23:26:05.000000Z"} 2022-11-03T23:26:05+00:00 https://vulnerability.circl.lu/sighting/bb22b30e-7a6d-41b4-95e5-6fabb5dea3c0/export 2026-06-16T23:22:20.241097+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "bb22b30e-7a6d-41b4-95e5-6fabb5dea3c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4357", "type": "seen", "source": "https://t.me/cibsecurity/55776", "content": "\u203c CVE-2022-4357 \u203c\n\nThe LetsRecover WordPress plugin through 1.1.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-03T00:29:51.000000Z"} 2023-01-03T00:29:51+00:00 https://vulnerability.circl.lu/sighting/36c3b96a-e148-4268-89b3-466cb84baf98/export 2026-06-16T23:22:20.240941+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "36c3b96a-e148-4268-89b3-466cb84baf98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43571", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2222", "content": "Cyber Security News - \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06 #Pentesting \n\nMeddler-in-the-Middle Phishing Attacks Explained\n\nhttps://unit42.paloaltonetworks.com/meddler-phishing-attacks\n\n\u200aOWASSRF \u2013 New Exploit Let Attacker Execute Remote Code on Microsoft Exchange Server\n\nhttps://gbhackers.com/owassrf/\n\n\u200b\u200bWindows Drivers Reverse Engineering Methodology\n\nThis blog post details a methodology for reverse engineering and finding vulnerable code paths in Windows drivers.\nIncluding a guide for setting up a lab for (the pesky) kernel debugging.\n\nhttps://voidsec.com/windows-drivers-reverse-engineering-methodology/\n\n\u200aGuide: Reporting Telnyx LLC spam\n\nhttps://latesthackingnews.com/2022/12/22/guide-reporting-telnyx-llc-spam/\n\n\u200aNetLlix - A Project Created With An Aim To Emulate And Test Exfiltration Of Data Over Different Network Protocols\n\nhttp://www.kitploit.com/2022/12/netllix-project-created-with-aim-to.html\n\n\u200aZoom Whiteboard patches XSS bug\n\nhttps://portswigger.net/daily-swig/zoom-whiteboard-patches-xss-bug\n\n\u200aBug bounty and AI: How machine learning is changing the game for cybersecurity\n\nhttps://blog.intigriti.com/2022/12/22/bug-bounty-and-ai-how-machine-learning-is-changing-the-game-for-cybersecurity/\n\n\u200aBlack Hat Europe 2022 NOC: The SOC Inside the NOC\n\nhttps://blogs.cisco.com/security/black-hat-europe-2022-noc-the-soc-inside-the-noc\n\nCVE-2020-9854: \"Unauthd\" - three logic bugs ftw\n\nhttps://objective-see.org/blog/blog_0x4D.html\n\nCritical Remote Code Execution Vulnerability in Linux Kernel\n\nhttps://securityonline.info/critical-remote-code-execution-vulnerability-in-linux-kernel/\n\n\u200aLean, green coding machine: How sustainable computing drive can reduce attack surfaces\n\nhttps://portswigger.net/daily-swig/lean-green-coding-machine-how-sustainable-computing-drive-can-reduce-attack-surfaces\n\n\u200aBrave launches FrodoPIR, a privacy-focused database query system\n\nhttps://www.bleepingcomputer.com/news/security/brave-launches-frodopir-a-privacy-focused-database-query-system/\n\n\u200aHTTP Header Injection\n\nhttps://infosecwriteups.com/http-header-injection-4ba857fb9a16?source=rss----7b722bfd1b8d---4\n\n\u200aVice Society ransomware gang switches to new custom encryptor\n\nhttps://www.bleepingcomputer.com/news/security/vice-society-ransomware-gang-switches-to-new-custom-encryptor/\n\n\u200aComcast Xfinity accounts hacked in widespread 2FA bypass attacks\n\nhttps://www.bleepingcomputer.com/news/security/comcast-xfinity-accounts-hacked-in-widespread-2fa-bypass-attacks/\n\n\u200aInsiders worry CISA is too distracted from critical cyber mission\n\nhttps://www.cyberscoop.com/cisa-dhs-easterly-cyber-mission/\n\n\u200aDuckDuckGo now blocks Google sign-in pop-ups on all sites\n\nhttps://www.bleepingcomputer.com/news/security/duckduckgo-now-blocks-google-sign-in-pop-ups-on-all-sites/\n\n\u200aSoftware bills of material face long road to adoption\n\nhttps://www.cyberscoop.com/dhs-sbom-adoption/\n\n\u200aLastpass: Hackers stole customer vault data in cloud storage breach\n\nhttps://www.bleepingcomputer.com/news/security/lastpass-hackers-stole-customer-vault-data-in-cloud-storage-breach/\n\n\u200aLeading sports betting firm BetMGM discloses data breach\n\nhttps://www.bleepingcomputer.com/news/security/leading-sports-betting-firm-betmgm-discloses-data-breach/\n\n\u200aCritical Remote Code Execution Vulnerability in Linux Kernel\n\nhttps://securityonline.info/critical-remote-code-execution-vulnerability-in-linux-kernel/\n\n\u200aPoC Code Published for Triggering RCE (CVE-2022-43571) in Splunk Enterprise\n\nhttps://securityonline.info/poc-code-published-for-triggering-rce-cve-2022-43571-in-splunk-enterprise/\n\n\u200aRaspberry Robin Malware Attacks Against Telecom and Government Sectors\n\nhttps://cybersecuritynews.com/raspberry-robin-malware/\n\n\u200aNew Zerobot Malware Exploiting Apache Vulnerabilities to Launch DDoS Attack\n\nhttps://cybersecuritynews.com/zerobot-malware/\n\n\u200aKmsdBot Botnet Leverages SSH to Compromise Systems and to Launch DDoS Attacks\n\nhttps://gbhackers.com/kmsdbot-ddos-botnet/\n\n\n\ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-01-03T20:18:12.000000Z"} 2023-01-03T20:18:12+00:00 https://vulnerability.circl.lu/sighting/3c7a0869-f776-4e3e-b03a-a34388837512/export 2026-06-16T23:22:20.240778+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "3c7a0869-f776-4e3e-b03a-a34388837512", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43571", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/339", "content": "Cyber Security News - \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06 #Pentesting \n\nMeddler-in-the-Middle Phishing Attacks Explained\n\nhttps://unit42.paloaltonetworks.com/meddler-phishing-attacks\n\n\u200aOWASSRF \u2013 New Exploit Let Attacker Execute Remote Code on Microsoft Exchange Server\n\nhttps://gbhackers.com/owassrf/\n\n\u200b\u200bWindows Drivers Reverse Engineering Methodology\n\nThis blog post details a methodology for reverse engineering and finding vulnerable code paths in Windows drivers.\nIncluding a guide for setting up a lab for (the pesky) kernel debugging.\n\nhttps://voidsec.com/windows-drivers-reverse-engineering-methodology/\n\n\u200aGuide: Reporting Telnyx LLC spam\n\nhttps://latesthackingnews.com/2022/12/22/guide-reporting-telnyx-llc-spam/\n\n\u200aNetLlix - A Project Created With An Aim To Emulate And Test Exfiltration Of Data Over Different Network Protocols\n\nhttp://www.kitploit.com/2022/12/netllix-project-created-with-aim-to.html\n\n\u200aZoom Whiteboard patches XSS bug\n\nhttps://portswigger.net/daily-swig/zoom-whiteboard-patches-xss-bug\n\n\u200aBug bounty and AI: How machine learning is changing the game for cybersecurity\n\nhttps://blog.intigriti.com/2022/12/22/bug-bounty-and-ai-how-machine-learning-is-changing-the-game-for-cybersecurity/\n\n\u200aBlack Hat Europe 2022 NOC: The SOC Inside the NOC\n\nhttps://blogs.cisco.com/security/black-hat-europe-2022-noc-the-soc-inside-the-noc\n\nCVE-2020-9854: \"Unauthd\" - three logic bugs ftw\n\nhttps://objective-see.org/blog/blog_0x4D.html\n\nCritical Remote Code Execution Vulnerability in Linux Kernel\n\nhttps://securityonline.info/critical-remote-code-execution-vulnerability-in-linux-kernel/\n\n\u200aLean, green coding machine: How sustainable computing drive can reduce attack surfaces\n\nhttps://portswigger.net/daily-swig/lean-green-coding-machine-how-sustainable-computing-drive-can-reduce-attack-surfaces\n\n\u200aBrave launches FrodoPIR, a privacy-focused database query system\n\nhttps://www.bleepingcomputer.com/news/security/brave-launches-frodopir-a-privacy-focused-database-query-system/\n\n\u200aHTTP Header Injection\n\nhttps://infosecwriteups.com/http-header-injection-4ba857fb9a16?source=rss----7b722bfd1b8d---4\n\n\u200aVice Society ransomware gang switches to new custom encryptor\n\nhttps://www.bleepingcomputer.com/news/security/vice-society-ransomware-gang-switches-to-new-custom-encryptor/\n\n\u200aComcast Xfinity accounts hacked in widespread 2FA bypass attacks\n\nhttps://www.bleepingcomputer.com/news/security/comcast-xfinity-accounts-hacked-in-widespread-2fa-bypass-attacks/\n\n\u200aInsiders worry CISA is too distracted from critical cyber mission\n\nhttps://www.cyberscoop.com/cisa-dhs-easterly-cyber-mission/\n\n\u200aDuckDuckGo now blocks Google sign-in pop-ups on all sites\n\nhttps://www.bleepingcomputer.com/news/security/duckduckgo-now-blocks-google-sign-in-pop-ups-on-all-sites/\n\n\u200aSoftware bills of material face long road to adoption\n\nhttps://www.cyberscoop.com/dhs-sbom-adoption/\n\n\u200aLastpass: Hackers stole customer vault data in cloud storage breach\n\nhttps://www.bleepingcomputer.com/news/security/lastpass-hackers-stole-customer-vault-data-in-cloud-storage-breach/\n\n\u200aLeading sports betting firm BetMGM discloses data breach\n\nhttps://www.bleepingcomputer.com/news/security/leading-sports-betting-firm-betmgm-discloses-data-breach/\n\n\u200aCritical Remote Code Execution Vulnerability in Linux Kernel\n\nhttps://securityonline.info/critical-remote-code-execution-vulnerability-in-linux-kernel/\n\n\u200aPoC Code Published for Triggering RCE (CVE-2022-43571) in Splunk Enterprise\n\nhttps://securityonline.info/poc-code-published-for-triggering-rce-cve-2022-43571-in-splunk-enterprise/\n\n\u200aRaspberry Robin Malware Attacks Against Telecom and Government Sectors\n\nhttps://cybersecuritynews.com/raspberry-robin-malware/\n\n\u200aNew Zerobot Malware Exploiting Apache Vulnerabilities to Launch DDoS Attack\n\nhttps://cybersecuritynews.com/zerobot-malware/\n\n\u200aKmsdBot Botnet Leverages SSH to Compromise Systems and to Launch DDoS Attacks\n\nhttps://gbhackers.com/kmsdbot-ddos-botnet/\n\n\n\ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-01-03T20:18:12.000000Z"} 2023-01-03T20:18:12+00:00 https://vulnerability.circl.lu/sighting/2e51201d-5443-4ccc-a21f-60dab81956c7/export 2026-06-16T23:22:20.240653+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "2e51201d-5443-4ccc-a21f-60dab81956c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43573", "type": "seen", "source": "https://t.me/cibsecurity/55986", "content": "\u203c CVE-2022-43573 \u203c\n\nIBM Robotic Process Automation 20.12 through 21.0.6 is vulnerable to exposure of the name and email for the creator/modifier of platform level objects. IBM X-Force ID: 238678.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-05T20:19:08.000000Z"} 2023-01-05T20:19:08+00:00 https://vulnerability.circl.lu/sighting/20f828cf-15a1-4525-8240-83cda617e57a/export 2026-06-16T23:22:20.240516+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "20f828cf-15a1-4525-8240-83cda617e57a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43578", "type": "seen", "source": "https://t.me/cibsecurity/58700", "content": "\u203c CVE-2022-43578 \u203c\n\nIBM Sterling B2B Integrator Standard Edition 6.0.0.0 through 6.0.3.7 and 6.1.0.0 through 6.1.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 238683.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-22T20:23:08.000000Z"} 2023-02-22T20:23:08+00:00 https://vulnerability.circl.lu/sighting/98002497-cb80-4c07-9dd6-fea88dc56f7b/export 2026-06-16T23:22:20.240385+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "98002497-cb80-4c07-9dd6-fea88dc56f7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43572", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14385", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43572\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: In Splunk Enterprise versions below 8.2.9, 8.1.12, and 9.0.2, sending a malformed file through the Splunk-to-Splunk (S2S) or HTTP Event Collector (HEC) protocols to an indexer results in a blockage or denial-of-service preventing further indexing.\n\n\ud83d\udccf Published: 2022-11-04T22:23:39.383Z\n\ud83d\udccf Modified: 2025-05-01T19:57:01.357Z\n\ud83d\udd17 References:\n1. https://www.splunk.com/en_us/product-security/announcements/svd-2022-1111.html", "creation_timestamp": "2025-05-01T20:15:43.000000Z"} 2025-05-01T20:15:43+00:00 https://vulnerability.circl.lu/sighting/77e96524-d2a6-416d-8e8e-d89f0c551ba0/export 2026-06-16T23:22:20.240236+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "77e96524-d2a6-416d-8e8e-d89f0c551ba0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43570", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15000", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43570\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: In Splunk Enterprise versions below 8.1.12, 8.2.9, and 9.0.2, an authenticated user can perform an extensible markup language (XML) external entity (XXE) injection via a custom View. The XXE injection causes Splunk Web to embed incorrect documents into an error.\n\n\ud83d\udccf Published: 2022-11-04T22:22:50.526Z\n\ud83d\udccf Modified: 2025-05-05T20:30:12.036Z\n\ud83d\udd17 References:\n1. https://www.splunk.com/en_us/product-security/announcements/svd-2022-1110.html", "creation_timestamp": "2025-05-05T21:20:17.000000Z"} 2025-05-05T21:20:17+00:00 https://vulnerability.circl.lu/sighting/cab0b652-f034-4620-86e9-b9f5d3d14d3d/export 2026-06-16T23:22:20.240071+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "cab0b652-f034-4620-86e9-b9f5d3d14d3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43571", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/splunk_auth_rce_cve_2022_43571.rb", "content": "", "creation_timestamp": "2026-01-20T20:45:59.000000Z"} 2026-01-20T20:45:59+00:00 https://vulnerability.circl.lu/sighting/8d926821-9319-4dd2-a8c1-4d27e0ce0245/export 2026-06-16T23:22:20.238024+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "8d926821-9319-4dd2-a8c1-4d27e0ce0245", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43571", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mcxkzuoni62j", "content": "", "creation_timestamp": "2026-01-21T21:03:01.392201Z"} 2026-01-21T21:03:01.392201+00:00