https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 07 Jun 2026 07:55:19 +0000 https://vulnerability.circl.lu/sighting/1b930817-d7f6-4a1f-9d9c-71d8acd5c9a9/export {"uuid": "1b930817-d7f6-4a1f-9d9c-71d8acd5c9a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27146", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27146\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4.\n\ud83d\udccf Published: 2025-02-25T20:04:40.400Z\n\ud83d\udccf Modified: 2025-02-25T20:04:40.400Z\n\ud83d\udd17 References:\n1. https://github.com/matrix-org/matrix-appservice-irc/security/advisories/GHSA-5mvm-89c9-9gm5\n2. https://github.com/matrix-org/matrix-appservice-irc/commit/74f02c8e11f16ed1b355700092c1aa9c036a11bd", "creation_timestamp": "2025-02-25T20:22:59.000000Z"} {"uuid": "1b930817-d7f6-4a1f-9d9c-71d8acd5c9a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27146", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-27146\n\ud83d\udd25 CVSS Score: 2.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4.\n\ud83d\udccf Published: 2025-02-25T20:04:40.400Z\n\ud83d\udccf Modified: 2025-02-25T20:04:40.400Z\n\ud83d\udd17 References:\n1. https://github.com/matrix-org/matrix-appservice-irc/security/advisories/GHSA-5mvm-89c9-9gm5\n2. https://github.com/matrix-org/matrix-appservice-irc/commit/74f02c8e11f16ed1b355700092c1aa9c036a11bd", "creation_timestamp": "2025-02-25T20:22:59.000000Z"} https://vulnerability.circl.lu/sighting/1b930817-d7f6-4a1f-9d9c-71d8acd5c9a9/export Tue, 25 Feb 2025 20:22:59 +0000 https://vulnerability.circl.lu/sighting/9b0e760f-945b-4c03-9a09-9e9be0bd701f/export {"uuid": "9b0e760f-945b-4c03-9a09-9e9be0bd701f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27146", "type": "seen", "source": "https://t.me/cvedetector/18922", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-27146 - Matrix Appservice IRC Arbitrary IRC Command Execution Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-27146 \nPublished : Feb. 25, 2025, 8:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4. \nSeverity: 2.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"25 Feb 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T23:14:24.000000Z"} {"uuid": "9b0e760f-945b-4c03-9a09-9e9be0bd701f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-27146", "type": "seen", "source": "https://t.me/cvedetector/18922", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-27146 - Matrix Appservice IRC Arbitrary IRC Command Execution Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-27146 \nPublished : Feb. 25, 2025, 8:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : matrix-appservice-irc is a Node.js IRC bridge for Matrix. The matrix-appservice-irc bridge up to version 3.0.3 contains a vulnerability which can lead to arbitrary IRC command execution as the puppeted user. The attacker can only inject commands executed as their own IRC user. The vulnerability has been patched in matrix-appservice-irc version 3.0.4. \nSeverity: 2.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"25 Feb 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-25T23:14:24.000000Z"} https://vulnerability.circl.lu/sighting/9b0e760f-945b-4c03-9a09-9e9be0bd701f/export Tue, 25 Feb 2025 23:14:24 +0000