<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Mon, 06 Jul 2026 16:49:51 +0000</lastBuildDate>
    <item>
      <title>69f45929-bfa8-4d90-bbf6-324998fc37f7</title>
      <link>https://vulnerability.circl.lu/sighting/69f45929-bfa8-4d90-bbf6-324998fc37f7/export</link>
      <description>{"uuid": "69f45929-bfa8-4d90-bbf6-324998fc37f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4376", "type": "seen", "source": "https://t.me/cibsecurity/70753", "content": "\u203c CVE-2023-4376 \u203c\n\nThe Serial Codes Generator and Validator with WooCommerce Support WordPress plugin before 2.4.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-20T07:11:11.000000Z"}</description>
      <content:encoded>{"uuid": "69f45929-bfa8-4d90-bbf6-324998fc37f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4376", "type": "seen", "source": "https://t.me/cibsecurity/70753", "content": "\u203c CVE-2023-4376 \u203c\n\nThe Serial Codes Generator and Validator with WooCommerce Support WordPress plugin before 2.4.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-20T07:11:11.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/69f45929-bfa8-4d90-bbf6-324998fc37f7/export</guid>
      <pubDate>Wed, 20 Sep 2023 07:11:11 +0000</pubDate>
    </item>
  </channel>
</rss>
