https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 14:07:07 +0000 https://vulnerability.circl.lu/sighting/bf0a8142-85ee-4d23-8c5f-ab1aa6192a3f/export {"uuid": "bf0a8142-85ee-4d23-8c5f-ab1aa6192a3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25625", "type": "seen", "source": "https://t.me/cvedetector/20218", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-25625 - FS Inc S3150 8T2F Switch Stored Cross-Site Scripting (XSS) Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-25625 \nPublished : March 13, 2025, 3:15 p.m. | 41\u00a0minutes ago \nDescription : FS Inc S3150 8T2F Switch s3150-8t2f-switch-fsos-220d_118101 has a stored cross-site scripting (XSS) vulnerability in the web management interface. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"13 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-13T17:17:23.000000Z"} {"uuid": "bf0a8142-85ee-4d23-8c5f-ab1aa6192a3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25625", "type": "seen", "source": "https://t.me/cvedetector/20218", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-25625 - FS Inc S3150 8T2F Switch Stored Cross-Site Scripting (XSS) Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-25625 \nPublished : March 13, 2025, 3:15 p.m. | 41\u00a0minutes ago \nDescription : FS Inc S3150 8T2F Switch s3150-8t2f-switch-fsos-220d_118101 has a stored cross-site scripting (XSS) vulnerability in the web management interface. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"13 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-13T17:17:23.000000Z"} https://vulnerability.circl.lu/sighting/bf0a8142-85ee-4d23-8c5f-ab1aa6192a3f/export Thu, 13 Mar 2025 17:17:23 +0000 https://vulnerability.circl.lu/sighting/61defe13-8b10-409c-a124-092669a6a141/export {"uuid": "61defe13-8b10-409c-a124-092669a6a141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25625", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7946", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25625\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A stored cross-site scripting vulnerability exists in FS model S3150-8T2F switches running firmware s3150-8t2f-switch-fsos-220d_118101 and web firmware v2.2.2, which allows an authenticated web interface user to bypass input filtering on user names, and stores un-sanitized HTML and Javascript on the device. Pages which then present the user name without encoding special characters will then cause the injected code to be parsed by the browsers of other users accessing the web interface.\n\ud83d\udccf Published: 2025-03-13T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T16:48:28.206Z\n\ud83d\udd17 References:\n1. https://github.com/whitewhale-dmb/Vulnerability-Research/tree/main/CVE-2025-25625", "creation_timestamp": "2025-03-18T17:48:43.000000Z"} {"uuid": "61defe13-8b10-409c-a124-092669a6a141", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25625", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7946", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25625\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A stored cross-site scripting vulnerability exists in FS model S3150-8T2F switches running firmware s3150-8t2f-switch-fsos-220d_118101 and web firmware v2.2.2, which allows an authenticated web interface user to bypass input filtering on user names, and stores un-sanitized HTML and Javascript on the device. Pages which then present the user name without encoding special characters will then cause the injected code to be parsed by the browsers of other users accessing the web interface.\n\ud83d\udccf Published: 2025-03-13T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T16:48:28.206Z\n\ud83d\udd17 References:\n1. https://github.com/whitewhale-dmb/Vulnerability-Research/tree/main/CVE-2025-25625", "creation_timestamp": "2025-03-18T17:48:43.000000Z"} https://vulnerability.circl.lu/sighting/61defe13-8b10-409c-a124-092669a6a141/export Tue, 18 Mar 2025 17:48:43 +0000