Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 11:26:52 +0000 1c12cab3-23c6-4f3b-890f-1fc2fa28b647 https://vulnerability.circl.lu/sighting/1c12cab3-23c6-4f3b-890f-1fc2fa28b647/export {"uuid": "1c12cab3-23c6-4f3b-890f-1fc2fa28b647", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38295", "type": "seen", "source": "https://t.me/cibsecurity/49604", "content": "\u203c CVE-2022-38295 \u203c\n\nCuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /table_manager/view/cu_user_groups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:24:43.000000Z"} {"uuid": "1c12cab3-23c6-4f3b-890f-1fc2fa28b647", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38295", "type": "seen", "source": "https://t.me/cibsecurity/49604", "content": "\u203c CVE-2022-38295 \u203c\n\nCuppa CMS v1.0 was discovered to contain a cross-site scripting vulnerability at /table_manager/view/cu_user_groups. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Add New Group function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:24:43.000000Z"} https://vulnerability.circl.lu/sighting/1c12cab3-23c6-4f3b-890f-1fc2fa28b647/export Tue, 13 Sep 2022 00:24:43 +0000 a3d12cc4-2355-419a-bf51-fc9d394d52c0 https://vulnerability.circl.lu/sighting/a3d12cc4-2355-419a-bf51-fc9d394d52c0/export {"uuid": "a3d12cc4-2355-419a-bf51-fc9d394d52c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38291", "type": "seen", "source": "https://t.me/cibsecurity/49616", "content": "\u203c CVE-2022-38291 \u203c\n\nSLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:24:59.000000Z"} {"uuid": "a3d12cc4-2355-419a-bf51-fc9d394d52c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38291", "type": "seen", "source": "https://t.me/cibsecurity/49616", "content": "\u203c CVE-2022-38291 \u203c\n\nSLiMS Senayan Library Management System v9.4.2 was discovered to contain a cross-site scripting (XSS) vulnerability via the Search function. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search bar.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:24:59.000000Z"} https://vulnerability.circl.lu/sighting/a3d12cc4-2355-419a-bf51-fc9d394d52c0/export Tue, 13 Sep 2022 00:24:59 +0000 87c3e963-ff14-44d8-b750-fdd00af0ea6d https://vulnerability.circl.lu/sighting/87c3e963-ff14-44d8-b750-fdd00af0ea6d/export {"uuid": "87c3e963-ff14-44d8-b750-fdd00af0ea6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38292", "type": "seen", "source": "https://t.me/cibsecurity/49617", "content": "\u203c CVE-2022-38292 \u203c\n\nSLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:25:00.000000Z"} {"uuid": "87c3e963-ff14-44d8-b750-fdd00af0ea6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38292", "type": "seen", "source": "https://t.me/cibsecurity/49617", "content": "\u203c CVE-2022-38292 \u203c\n\nSLiMS Senayan Library Management System v9.4.2 was discovered to contain multiple Server-Side Request Forgeries via the components /bibliography/marcsru.php and /bibliography/z3950sru.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:25:00.000000Z"} https://vulnerability.circl.lu/sighting/87c3e963-ff14-44d8-b750-fdd00af0ea6d/export Tue, 13 Sep 2022 00:25:00 +0000 a784dcc5-8739-4d70-8775-f50b8881dfd5 https://vulnerability.circl.lu/sighting/a784dcc5-8739-4d70-8775-f50b8881dfd5/export {"uuid": "a784dcc5-8739-4d70-8775-f50b8881dfd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38296", "type": "seen", "source": "https://t.me/cibsecurity/49618", "content": "\u203c CVE-2022-38296 \u203c\n\nCuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:25:01.000000Z"} {"uuid": "a784dcc5-8739-4d70-8775-f50b8881dfd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38296", "type": "seen", "source": "https://t.me/cibsecurity/49618", "content": "\u203c CVE-2022-38296 \u203c\n\nCuppa CMS v1.0 was discovered to contain an arbitrary file upload vulnerability via the File Manager.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T00:25:01.000000Z"} https://vulnerability.circl.lu/sighting/a784dcc5-8739-4d70-8775-f50b8881dfd5/export Tue, 13 Sep 2022 00:25:01 +0000 c6e07807-26b6-4726-a535-28ee6f995636 https://vulnerability.circl.lu/sighting/c6e07807-26b6-4726-a535-28ee6f995636/export {"uuid": "c6e07807-26b6-4726-a535-28ee6f995636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38299", "type": "seen", "source": "https://t.me/cibsecurity/49620", "content": "\u203c CVE-2022-38299 \u203c\n\nAn issue in the Elasticsearch plugin of Appsmith v1.7.11 allows attackers to connect disallowed hosts to the AWS/GCP internal metadata endpoint.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:39.000000Z"} {"uuid": "c6e07807-26b6-4726-a535-28ee6f995636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38299", "type": "seen", "source": "https://t.me/cibsecurity/49620", "content": "\u203c CVE-2022-38299 \u203c\n\nAn issue in the Elasticsearch plugin of Appsmith v1.7.11 allows attackers to connect disallowed hosts to the AWS/GCP internal metadata endpoint.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:39.000000Z"} https://vulnerability.circl.lu/sighting/c6e07807-26b6-4726-a535-28ee6f995636/export Tue, 13 Sep 2022 02:24:39 +0000 93922fbb-edfc-4b4e-b760-ea53d0b8022d https://vulnerability.circl.lu/sighting/93922fbb-edfc-4b4e-b760-ea53d0b8022d/export {"uuid": "93922fbb-edfc-4b4e-b760-ea53d0b8022d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38297", "type": "seen", "source": "https://t.me/cibsecurity/49619", "content": "\u203c CVE-2022-38297 \u203c\n\nUCMS v1.6.0 contains an authentication bypass vulnerability which is exploited via cookie poisoning.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:39.000000Z"} {"uuid": "93922fbb-edfc-4b4e-b760-ea53d0b8022d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38297", "type": "seen", "source": "https://t.me/cibsecurity/49619", "content": "\u203c CVE-2022-38297 \u203c\n\nUCMS v1.6.0 contains an authentication bypass vulnerability which is exploited via cookie poisoning.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:39.000000Z"} https://vulnerability.circl.lu/sighting/93922fbb-edfc-4b4e-b760-ea53d0b8022d/export Tue, 13 Sep 2022 02:24:39 +0000 6881a03a-29d1-40a8-8fb6-320ba06645ca https://vulnerability.circl.lu/sighting/6881a03a-29d1-40a8-8fb6-320ba06645ca/export {"uuid": "6881a03a-29d1-40a8-8fb6-320ba06645ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38298", "type": "seen", "source": "https://t.me/cibsecurity/49625", "content": "\u203c CVE-2022-38298 \u203c\n\nAppsmith v1.7.11 was discovered to allow attackers to execute an authenticated Server-Side Request Forgery (SSRF) via redirecting incoming requests to the AWS internal metadata endpoint.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:47.000000Z"} {"uuid": "6881a03a-29d1-40a8-8fb6-320ba06645ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38298", "type": "seen", "source": "https://t.me/cibsecurity/49625", "content": "\u203c CVE-2022-38298 \u203c\n\nAppsmith v1.7.11 was discovered to allow attackers to execute an authenticated Server-Side Request Forgery (SSRF) via redirecting incoming requests to the AWS internal metadata endpoint.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T02:24:47.000000Z"} https://vulnerability.circl.lu/sighting/6881a03a-29d1-40a8-8fb6-320ba06645ca/export Tue, 13 Sep 2022 02:24:47 +0000 738f3317-e976-43cf-a5f9-9104a6bb9b3a https://vulnerability.circl.lu/sighting/738f3317-e976-43cf-a5f9-9104a6bb9b3a/export {"uuid": "738f3317-e976-43cf-a5f9-9104a6bb9b3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3829", "type": "seen", "source": "https://t.me/ctinow/172131", "content": "https://ift.tt/sLn9zJv\nCVE-2022-3829 Exploit", "creation_timestamp": "2024-01-23T17:16:49.000000Z"} {"uuid": "738f3317-e976-43cf-a5f9-9104a6bb9b3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3829", "type": "seen", "source": "https://t.me/ctinow/172131", "content": "https://ift.tt/sLn9zJv\nCVE-2022-3829 Exploit", "creation_timestamp": "2024-01-23T17:16:49.000000Z"} https://vulnerability.circl.lu/sighting/738f3317-e976-43cf-a5f9-9104a6bb9b3a/export Tue, 23 Jan 2024 17:16:49 +0000 0a557edc-5249-42dc-914d-233a2e5300ba https://vulnerability.circl.lu/sighting/0a557edc-5249-42dc-914d-233a2e5300ba/export {"uuid": "0a557edc-5249-42dc-914d-233a2e5300ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3829", "type": "seen", "source": "https://t.me/ctinow/179873", "content": "https://ift.tt/VvDPF1O\nCVE-2022-3829 | Font Awesome 4 Menus Plugin up to 4.7.0 on WordPress Setting cross site scripting", "creation_timestamp": "2024-02-06T10:11:20.000000Z"} {"uuid": "0a557edc-5249-42dc-914d-233a2e5300ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3829", "type": "seen", "source": "https://t.me/ctinow/179873", "content": "https://ift.tt/VvDPF1O\nCVE-2022-3829 | Font Awesome 4 Menus Plugin up to 4.7.0 on WordPress Setting cross site scripting", "creation_timestamp": "2024-02-06T10:11:20.000000Z"} https://vulnerability.circl.lu/sighting/0a557edc-5249-42dc-914d-233a2e5300ba/export Tue, 06 Feb 2024 10:11:20 +0000