<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 06 Jul 2026 12:07:34 +0000</lastBuildDate>
    <item>
      <title>e7de939e-4c67-4e57-b83f-255618dbe8fc</title>
      <link>https://vulnerability.circl.lu/sighting/e7de939e-4c67-4e57-b83f-255618dbe8fc/export</link>
      <description>{"uuid": "e7de939e-4c67-4e57-b83f-255618dbe8fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36085", "type": "seen", "source": "https://t.me/cibsecurity/72848", "content": "\u203c CVE-2023-36085 \u203c\n\nThe sisqualWFM 7.1.319.103 thru 7.1.319.111 for Android, has a host header injection vulnerability in its \"/sisqualIdentityServer/core/\" endpoint. By modifying the HTTP Host header, an attacker can change webpage links and even redirect users to arbitrary or malicious locations. This can lead to phishing attacks, malware distribution, and unauthorized access to sensitive resources.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-25T22:45:18.000000Z"}</description>
      <content:encoded>{"uuid": "e7de939e-4c67-4e57-b83f-255618dbe8fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36085", "type": "seen", "source": "https://t.me/cibsecurity/72848", "content": "\u203c CVE-2023-36085 \u203c\n\nThe sisqualWFM 7.1.319.103 thru 7.1.319.111 for Android, has a host header injection vulnerability in its \"/sisqualIdentityServer/core/\" endpoint. By modifying the HTTP Host header, an attacker can change webpage links and even redirect users to arbitrary or malicious locations. This can lead to phishing attacks, malware distribution, and unauthorized access to sensitive resources.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-25T22:45:18.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e7de939e-4c67-4e57-b83f-255618dbe8fc/export</guid>
      <pubDate>Wed, 25 Oct 2023 22:45:18 +0000</pubDate>
    </item>
  </channel>
</rss>
