https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 04 Jun 2026 00:51:54 +0000 https://vulnerability.circl.lu/sighting/43c31114-2e16-4405-b560-bdc2192a9e6e/export {"uuid": "43c31114-2e16-4405-b560-bdc2192a9e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13568", "type": "seen", "source": "https://t.me/cvedetector/19215", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-13568 - WordPress Fluent Support Sensitive Information Exposure\", \n \"Content\": \"CVE ID : CVE-2024-13568 \nPublished : March 1, 2025, 5:15 a.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : The Fluent Support \u2013 Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.5 via the 'fluent-support' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/fluent-support directory which can contain file attachments included in support tickets. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"01 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T08:05:12.000000Z"} {"uuid": "43c31114-2e16-4405-b560-bdc2192a9e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13568", "type": "seen", "source": "https://t.me/cvedetector/19215", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-13568 - WordPress Fluent Support Sensitive Information Exposure\", \n \"Content\": \"CVE ID : CVE-2024-13568 \nPublished : March 1, 2025, 5:15 a.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : The Fluent Support \u2013 Helpdesk & Customer Support Ticket System plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.8.5 via the 'fluent-support' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/fluent-support directory which can contain file attachments included in support tickets. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"01 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T08:05:12.000000Z"} https://vulnerability.circl.lu/sighting/43c31114-2e16-4405-b560-bdc2192a9e6e/export Sat, 01 Mar 2025 08:05:12 +0000 https://vulnerability.circl.lu/sighting/772fa234-ae31-41ee-833a-a358d938d4f4/export {"uuid": "772fa234-ae31-41ee-833a-a358d938d4f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13568", "type": "seen", "source": "Telegram/GPxAlcgS0v1xCkgD1fvNY5W0FxLo1wpRnKDcT_ymwBNcPpJ7", "content": "", "creation_timestamp": "2025-03-02T11:46:31.000000Z"} {"uuid": "772fa234-ae31-41ee-833a-a358d938d4f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13568", "type": "seen", "source": "Telegram/GPxAlcgS0v1xCkgD1fvNY5W0FxLo1wpRnKDcT_ymwBNcPpJ7", "content": "", "creation_timestamp": "2025-03-02T11:46:31.000000Z"} https://vulnerability.circl.lu/sighting/772fa234-ae31-41ee-833a-a358d938d4f4/export Sun, 02 Mar 2025 11:46:31 +0000 https://vulnerability.circl.lu/sighting/c1dc881a-9f04-478d-ba79-b5fcfb412d8f/export {"uuid": "c1dc881a-9f04-478d-ba79-b5fcfb412d8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13567", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9839", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13567\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: The Awesome Support \u2013 WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.3.1 via the 'awesome-support' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/awesome-support directory which can contain file attachments included in support tickets. The vulnerability was partially patched in version 6.3.1.\n\ud83d\udccf Published: 2025-04-01T05:22:45.718Z\n\ud83d\udccf Modified: 2025-04-01T05:22:45.718Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/24c54ef5-ad02-4767-bca6-f74c539d3068?source=cve\n2. https://plugins.trac.wordpress.org/browser/awesome-support/trunk/includes/file-uploader/class-file-uploader.php\n3. https://plugins.trac.wordpress.org/changeset/3250497/\n4. https://plugins.trac.wordpress.org/changeset/3262629/", "creation_timestamp": "2025-04-01T05:31:50.000000Z"} {"uuid": "c1dc881a-9f04-478d-ba79-b5fcfb412d8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13567", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9839", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13567\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: The Awesome Support \u2013 WordPress HelpDesk & Support Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.3.1 via the 'awesome-support' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads/awesome-support directory which can contain file attachments included in support tickets. The vulnerability was partially patched in version 6.3.1.\n\ud83d\udccf Published: 2025-04-01T05:22:45.718Z\n\ud83d\udccf Modified: 2025-04-01T05:22:45.718Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/24c54ef5-ad02-4767-bca6-f74c539d3068?source=cve\n2. https://plugins.trac.wordpress.org/browser/awesome-support/trunk/includes/file-uploader/class-file-uploader.php\n3. https://plugins.trac.wordpress.org/changeset/3250497/\n4. https://plugins.trac.wordpress.org/changeset/3262629/", "creation_timestamp": "2025-04-01T05:31:50.000000Z"} https://vulnerability.circl.lu/sighting/c1dc881a-9f04-478d-ba79-b5fcfb412d8f/export Tue, 01 Apr 2025 05:31:50 +0000 https://vulnerability.circl.lu/sighting/23c7b915-1107-490d-b10b-0daf33302d89/export {"uuid": "23c7b915-1107-490d-b10b-0daf33302d89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12809", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13569\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Front End Users WordPress plugin through 3.2.32 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.\n\ud83d\udccf Published: 2025-04-22T06:00:02.142Z\n\ud83d\udccf Modified: 2025-04-22T06:00:02.142Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/b9742440-0e36-4900-b58e-41c9854a62b2/", "creation_timestamp": "2025-04-22T07:03:23.000000Z"} {"uuid": "23c7b915-1107-490d-b10b-0daf33302d89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12809", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13569\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Front End Users WordPress plugin through 3.2.32 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.\n\ud83d\udccf Published: 2025-04-22T06:00:02.142Z\n\ud83d\udccf Modified: 2025-04-22T06:00:02.142Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/b9742440-0e36-4900-b58e-41c9854a62b2/", "creation_timestamp": "2025-04-22T07:03:23.000000Z"} https://vulnerability.circl.lu/sighting/23c7b915-1107-490d-b10b-0daf33302d89/export Tue, 22 Apr 2025 07:03:23 +0000 https://vulnerability.circl.lu/sighting/650ee723-4117-43df-8667-e2f539bce851/export {"uuid": "650ee723-4117-43df-8667-e2f539bce851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnf4gmpr7s2a", "content": "", "creation_timestamp": "2025-04-22T07:04:44.563555Z"} {"uuid": "650ee723-4117-43df-8667-e2f539bce851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnf4gmpr7s2a", "content": "", "creation_timestamp": "2025-04-22T07:04:44.563555Z"} https://vulnerability.circl.lu/sighting/650ee723-4117-43df-8667-e2f539bce851/export Tue, 22 Apr 2025 07:04:44 +0000 https://vulnerability.circl.lu/sighting/3e7e06db-837b-454d-a642-54041bd14a27/export {"uuid": "3e7e06db-837b-454d-a642-54041bd14a27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "https://t.me/cvedetector/23486", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-13569 - WordPress Front End Users Reflected Cross-Site Scripting\", \n \"Content\": \"CVE ID : CVE-2024-13569 \nPublished : April 22, 2025, 6:15 a.m. | 1\u00a0hour, 39\u00a0minutes ago \nDescription : The Front End Users WordPress plugin through 3.2.32 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"22 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T10:02:36.000000Z"} {"uuid": "3e7e06db-837b-454d-a642-54041bd14a27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "https://t.me/cvedetector/23486", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-13569 - WordPress Front End Users Reflected Cross-Site Scripting\", \n \"Content\": \"CVE ID : CVE-2024-13569 \nPublished : April 22, 2025, 6:15 a.m. | 1\u00a0hour, 39\u00a0minutes ago \nDescription : The Front End Users WordPress plugin through 3.2.32 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"22 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T10:02:36.000000Z"} https://vulnerability.circl.lu/sighting/3e7e06db-837b-454d-a642-54041bd14a27/export Tue, 22 Apr 2025 10:02:36 +0000 https://vulnerability.circl.lu/sighting/b09abc20-7e91-4c29-8d60-8b2b33221b69/export {"uuid": "b09abc20-7e91-4c29-8d60-8b2b33221b69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:56.000000Z"} {"uuid": "b09abc20-7e91-4c29-8d60-8b2b33221b69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-09T13:26:56.000000Z"} https://vulnerability.circl.lu/sighting/b09abc20-7e91-4c29-8d60-8b2b33221b69/export Sat, 09 Aug 2025 13:26:56 +0000 https://vulnerability.circl.lu/sighting/09a513ff-d76c-4aa6-9294-aeae6914941d/export {"uuid": "09a513ff-d76c-4aa6-9294-aeae6914941d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:36.000000Z"} {"uuid": "09a513ff-d76c-4aa6-9294-aeae6914941d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "MISP/abd2a650-703d-4a2f-9f73-3051c1672e27", "content": "", "creation_timestamp": "2025-08-11T18:47:36.000000Z"} https://vulnerability.circl.lu/sighting/09a513ff-d76c-4aa6-9294-aeae6914941d/export Mon, 11 Aug 2025 18:47:36 +0000 https://vulnerability.circl.lu/sighting/51e9a8f6-781b-4487-8833-2f09631a43dd/export {"uuid": "51e9a8f6-781b-4487-8833-2f09631a43dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-13569.yaml", "content": "", "creation_timestamp": "2026-02-11T16:59:54.000000Z"} {"uuid": "51e9a8f6-781b-4487-8833-2f09631a43dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-13569.yaml", "content": "", "creation_timestamp": "2026-02-11T16:59:54.000000Z"} https://vulnerability.circl.lu/sighting/51e9a8f6-781b-4487-8833-2f09631a43dd/export Wed, 11 Feb 2026 16:59:54 +0000 https://vulnerability.circl.lu/sighting/a9ee92b9-cdf4-49ae-b891-9f142488a89c/export {"uuid": "a9ee92b9-cdf4-49ae-b891-9f142488a89c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3meovcdvnna2k", "content": "", "creation_timestamp": "2026-02-12T21:03:22.209858Z"} {"uuid": "a9ee92b9-cdf4-49ae-b891-9f142488a89c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13569", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3meovcdvnna2k", "content": "", "creation_timestamp": "2026-02-12T21:03:22.209858Z"} https://vulnerability.circl.lu/sighting/a9ee92b9-cdf4-49ae-b891-9f142488a89c/export Thu, 12 Feb 2026 21:03:22 +0000