Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 22:50:07 +0000 828648cf-6709-42f6-adc7-7a6cc30e6366 https://vulnerability.circl.lu/sighting/828648cf-6709-42f6-adc7-7a6cc30e6366/export {"uuid": "828648cf-6709-42f6-adc7-7a6cc30e6366", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10079", "type": "seen", "source": "https://t.me/cvedetector/8297", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10079 - WordPress Easy Post Types PHP Object Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-10079 \nPublished : Oct. 18, 2024, 8:15 a.m. | 39\u00a0minutes ago \nDescription : The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.4.4 via deserialization of untrusted input from the 'text' parameter in the 'ajax_import_content' function. This allows authenticated attackers, with subscriber-level permissions and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"18 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-18T11:03:45.000000Z"} {"uuid": "828648cf-6709-42f6-adc7-7a6cc30e6366", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10079", "type": "seen", "source": "https://t.me/cvedetector/8297", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-10079 - WordPress Easy Post Types PHP Object Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-10079 \nPublished : Oct. 18, 2024, 8:15 a.m. | 39\u00a0minutes ago \nDescription : The WP Easy Post Types plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.4.4 via deserialization of untrusted input from the 'text' parameter in the 'ajax_import_content' function. This allows authenticated attackers, with subscriber-level permissions and above, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"18 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-18T11:03:45.000000Z"} https://vulnerability.circl.lu/sighting/828648cf-6709-42f6-adc7-7a6cc30e6366/export Fri, 18 Oct 2024 11:03:45 +0000