https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 28 May 2026 13:07:45 +0000 https://vulnerability.circl.lu/sighting/b6955f33-c6af-4420-ad68-7ed4865d4b83/export {"uuid": "b6955f33-c6af-4420-ad68-7ed4865d4b83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24856", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7699", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24856\n\ud83d\udd25 CVSS Score: 4.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:F/RL:O/RC:C)\n\ud83d\udd39 Description: An issue was discovered in the oidc (aka OpenID Connect Authentication) extension before 4.0.0 for TYPO3. The account linking logic allows a pre-hijacking attack, leading to Account Takeover. The attack can only be exploited if the following requirements are met: (1) an attacker can anticipate the e-mail address of the user, (2) an attacker can register a public frontend user account using that e-mail address before the user's first OIDC login, and (3) the IDP returns an email field containing the e-mail address of the user,\n\ud83d\udccf Published: 2025-03-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-16T04:05:41.305Z\n\ud83d\udd17 References:\n1. https://typo3.org/security/advisory/typo3-ext-sa-2025-001\n2. https://github.com/xperseguers/t3ext-oidc/commit/877e09f6faf4c87bbb41233112ec7e30d3c902b3", "creation_timestamp": "2025-03-16T04:45:57.000000Z"} {"uuid": "b6955f33-c6af-4420-ad68-7ed4865d4b83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24856", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7699", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24856\n\ud83d\udd25 CVSS Score: 4.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N/E:F/RL:O/RC:C)\n\ud83d\udd39 Description: An issue was discovered in the oidc (aka OpenID Connect Authentication) extension before 4.0.0 for TYPO3. The account linking logic allows a pre-hijacking attack, leading to Account Takeover. The attack can only be exploited if the following requirements are met: (1) an attacker can anticipate the e-mail address of the user, (2) an attacker can register a public frontend user account using that e-mail address before the user's first OIDC login, and (3) the IDP returns an email field containing the e-mail address of the user,\n\ud83d\udccf Published: 2025-03-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-16T04:05:41.305Z\n\ud83d\udd17 References:\n1. https://typo3.org/security/advisory/typo3-ext-sa-2025-001\n2. https://github.com/xperseguers/t3ext-oidc/commit/877e09f6faf4c87bbb41233112ec7e30d3c902b3", "creation_timestamp": "2025-03-16T04:45:57.000000Z"} https://vulnerability.circl.lu/sighting/b6955f33-c6af-4420-ad68-7ed4865d4b83/export Sun, 16 Mar 2025 04:45:57 +0000 https://vulnerability.circl.lu/sighting/b0d67341-3e41-415f-9f18-742c03b317f4/export {"uuid": "b0d67341-3e41-415f-9f18-742c03b317f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24856", "type": "seen", "source": "https://t.me/cvedetector/20394", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-24856 - TYPO3 OpenID Connect Authentication Pre-Hijacking Account Takeover\", \n \"Content\": \"CVE ID : CVE-2025-24856 \nPublished : March 16, 2025, 4:15 a.m. | 21\u00a0minutes ago \nDescription : An issue was discovered in the oidc (aka OpenID Connect Authentication) extension before 4.0.0 for TYPO3. The account linking logic allows a pre-hijacking attack, leading to Account Takeover. The attack can only be exploited if the following requirements are met: (1) an attacker can anticipate the e-mail address of the user, (2) an attacker can register a public frontend user account using that e-mail address before the user's first OIDC login, and (3) the IDP returns an email field containing the e-mail address of the user, \nSeverity: 4.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-16T06:20:26.000000Z"} {"uuid": "b0d67341-3e41-415f-9f18-742c03b317f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24856", "type": "seen", "source": "https://t.me/cvedetector/20394", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-24856 - TYPO3 OpenID Connect Authentication Pre-Hijacking Account Takeover\", \n \"Content\": \"CVE ID : CVE-2025-24856 \nPublished : March 16, 2025, 4:15 a.m. | 21\u00a0minutes ago \nDescription : An issue was discovered in the oidc (aka OpenID Connect Authentication) extension before 4.0.0 for TYPO3. The account linking logic allows a pre-hijacking attack, leading to Account Takeover. The attack can only be exploited if the following requirements are met: (1) an attacker can anticipate the e-mail address of the user, (2) an attacker can register a public frontend user account using that e-mail address before the user's first OIDC login, and (3) the IDP returns an email field containing the e-mail address of the user, \nSeverity: 4.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-16T06:20:26.000000Z"} https://vulnerability.circl.lu/sighting/b0d67341-3e41-415f-9f18-742c03b317f4/export Sun, 16 Mar 2025 06:20:26 +0000