<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-04T20:32:10.154449+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/06552c09-64ef-4308-bdea-d5bb0610a3fa/export</id>
    <title>06552c09-64ef-4308-bdea-d5bb0610a3fa</title>
    <updated>2026-07-04T20:32:10.178358+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "06552c09-64ef-4308-bdea-d5bb0610a3fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26916", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lz6ton3tty2c", "content": "", "creation_timestamp": "2025-09-19T12:14:27.065522Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/06552c09-64ef-4308-bdea-d5bb0610a3fa/export"/>
    <published>2025-09-19T12:14:27.065522+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/886c95ff-8be5-4915-bd54-c7d3378ee4a1/export</id>
    <title>886c95ff-8be5-4915-bd54-c7d3378ee4a1</title>
    <updated>2026-07-04T20:32:10.180554+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "886c95ff-8be5-4915-bd54-c7d3378ee4a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26919", "type": "seen", "source": "Telegram/gDhlamIG1DAz95YsRD2aqMu4I4tG2eU551imKnz0eufSxB2H", "content": "", "creation_timestamp": "2025-02-14T10:03:11.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/886c95ff-8be5-4915-bd54-c7d3378ee4a1/export"/>
    <published>2025-02-14T10:03:11+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e4cd316b-b5b9-4370-a9b3-d9f019077799/export</id>
    <title>e4cd316b-b5b9-4370-a9b3-d9f019077799</title>
    <updated>2026-07-04T20:32:10.180651+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e4cd316b-b5b9-4370-a9b3-d9f019077799", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26917", "type": "seen", "source": "Telegram/28GnozRAbJrxjy5dYCwx-gN-OQA2jL2IQJ03Vs63MZDq7ZHh", "content": "", "creation_timestamp": "2025-02-14T10:03:10.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e4cd316b-b5b9-4370-a9b3-d9f019077799/export"/>
    <published>2025-02-14T10:03:10+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/67f018f8-e91a-48b2-9ac8-f430e3d629a7/export</id>
    <title>67f018f8-e91a-48b2-9ac8-f430e3d629a7</title>
    <updated>2026-07-04T20:32:10.180721+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "67f018f8-e91a-48b2-9ac8-f430e3d629a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2691", "type": "seen", "source": "https://t.me/cibsecurity/64071", "content": "\u203c CVE-2023-2691 \u203c\n\nA vulnerability, which was classified as problematic, was found in SourceCodester Personnel Property Equipment System 1.0. Affected is an unknown function of the file admin/add_item.php of the component POST Parameter Handler. The manipulation of the argument item_name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-228972.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-14T12:28:36.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/67f018f8-e91a-48b2-9ac8-f430e3d629a7/export"/>
    <published>2023-05-14T12:28:36+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/83f2b667-64fd-4501-a1a5-a789aa1276f8/export</id>
    <title>83f2b667-64fd-4501-a1a5-a789aa1276f8</title>
    <updated>2026-07-04T20:32:10.180800+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "83f2b667-64fd-4501-a1a5-a789aa1276f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26918", "type": "seen", "source": "https://t.me/cibsecurity/62107", "content": "\u203c CVE-2023-26918 \u203c\n\nDiasoft File Replication Pro 7.5.0 allows attackers to escalate privileges by replacing a legitimate file with a Trojan horse that will be executed as LocalSystem. This occurs because %ProgramFiles%\\FileReplicationPro allows Everyone:(F) access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-14T07:30:39.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/83f2b667-64fd-4501-a1a5-a789aa1276f8/export"/>
    <published>2023-04-14T07:30:39+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2dc9df29-304a-4eb9-9a63-27a93d8684f0/export</id>
    <title>2dc9df29-304a-4eb9-9a63-27a93d8684f0</title>
    <updated>2026-07-04T20:32:10.180874+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2dc9df29-304a-4eb9-9a63-27a93d8684f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26917", "type": "seen", "source": "https://t.me/cibsecurity/61855", "content": "\u203c CVE-2023-26917 \u203c\n\nlibyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lysp_stmt_validate_value at lys_parse_mem.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-11T16:23:14.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2dc9df29-304a-4eb9-9a63-27a93d8684f0/export"/>
    <published>2023-04-11T16:23:14+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c39049e0-254a-4bd9-93bf-91f4801ea476/export</id>
    <title>c39049e0-254a-4bd9-93bf-91f4801ea476</title>
    <updated>2026-07-04T20:32:10.180941+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c39049e0-254a-4bd9-93bf-91f4801ea476", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26919", "type": "seen", "source": "https://t.me/cibsecurity/61781", "content": "\u203c CVE-2023-26919 \u203c\n\ndelight-nashorn-sandbox 0.2.4 and 0.2.5 is vulnerable to sandbox escape. When allowExitFunctions is set to false, the loadWithNewGlobal function can be used to invoke the exit and quit methods to exit the Java process.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-10T20:27:44.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c39049e0-254a-4bd9-93bf-91f4801ea476/export"/>
    <published>2023-04-10T20:27:44+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/851ada61-96eb-48af-ba77-a84ec07b7eed/export</id>
    <title>851ada61-96eb-48af-ba77-a84ec07b7eed</title>
    <updated>2026-07-04T20:32:10.181009+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "851ada61-96eb-48af-ba77-a84ec07b7eed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26916", "type": "seen", "source": "https://t.me/cibsecurity/61367", "content": "\u203c CVE-2023-26916 \u203c\n\nlibyang from v2.0.164 to v2.1.30 was discovered to contain a NULL pointer dereference via the function lys_parse_mem at lys_parse_mem.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-04T02:25:12.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/851ada61-96eb-48af-ba77-a84ec07b7eed/export"/>
    <published>2023-04-04T02:25:12+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/58b9be49-5568-491d-a90b-180b7df31d83/export</id>
    <title>58b9be49-5568-491d-a90b-180b7df31d83</title>
    <updated>2026-07-04T20:32:10.181077+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "58b9be49-5568-491d-a90b-180b7df31d83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26913", "type": "seen", "source": "https://t.me/cibsecurity/60482", "content": "\u203c CVE-2023-26913 \u203c\n\n** UNSUPPORTED WHEN ASSIGNED ** EVOLUCARE ECSIMAGING (aka ECS Imaging) &amp;lt; 6.21.5 is vulnerable to Cross Site Scripting (XSS) via new_movie. php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-22T17:42:11.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/58b9be49-5568-491d-a90b-180b7df31d83/export"/>
    <published>2023-03-22T17:42:11+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/07ec6838-7a36-4a29-8906-6b7c6ecb1f92/export</id>
    <title>07ec6838-7a36-4a29-8906-6b7c6ecb1f92</title>
    <updated>2026-07-04T20:32:10.181146+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "07ec6838-7a36-4a29-8906-6b7c6ecb1f92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26912", "type": "seen", "source": "https://t.me/cibsecurity/60099", "content": "\u203c CVE-2023-26912 \u203c\n\nCross site scripting (XSS) vulnerability in xenv S-mall-ssm thru commit 3d9e77f7d80289a30f67aaba1ae73e375d33ef71 on Feb 17, 2020, allows local attackers to execute arbitrary code via the evaluate button.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-15T23:30:23.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/07ec6838-7a36-4a29-8906-6b7c6ecb1f92/export"/>
    <published>2023-03-15T23:30:23+00:00</published>
  </entry>
</feed>
