Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 07:26:21 +0000 3732f8e9-2743-4f9d-99af-1444356ef628 https://vulnerability.circl.lu/sighting/3732f8e9-2743-4f9d-99af-1444356ef628/export {"uuid": "3732f8e9-2743-4f9d-99af-1444356ef628", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32972", "type": "seen", "source": "https://t.me/cvedetector/24114", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-32972 - XWiki LESS Compiler Script Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-32972 \nPublished : April 30, 2025, 3:16 p.m. | 28\u00a0minutes ago \nDescription : XWiki is a generic wiki platform. In versions starting from 6.1-milestone-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, the script API of the LESS compiler in XWiki is incorrectly checking for rights when calling the cache cleaning API, making it possible to clean the cache without having programming right. The only impact of this is a slowdown in XWiki execution as the caches are re-filled. As this vulnerability requires script right to exploit, and script right already allows unlimited execution of scripts, the additional impact due to this vulnerability is low. This issue has been patched in versions 15.10.12, 16.4.3, and 16.8.0-rc-1. \nSeverity: 2.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"30 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-30T17:55:15.000000Z"} {"uuid": "3732f8e9-2743-4f9d-99af-1444356ef628", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-32972", "type": "seen", "source": "https://t.me/cvedetector/24114", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-32972 - XWiki LESS Compiler Script Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-32972 \nPublished : April 30, 2025, 3:16 p.m. | 28\u00a0minutes ago \nDescription : XWiki is a generic wiki platform. In versions starting from 6.1-milestone-1 to before 15.10.12, from 16.0.0-rc-1 to before 16.4.3, and from 16.5.0-rc-1 to before 16.8.0-rc-1, the script API of the LESS compiler in XWiki is incorrectly checking for rights when calling the cache cleaning API, making it possible to clean the cache without having programming right. The only impact of this is a slowdown in XWiki execution as the caches are re-filled. As this vulnerability requires script right to exploit, and script right already allows unlimited execution of scripts, the additional impact due to this vulnerability is low. This issue has been patched in versions 15.10.12, 16.4.3, and 16.8.0-rc-1. \nSeverity: 2.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"30 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-30T17:55:15.000000Z"} https://vulnerability.circl.lu/sighting/3732f8e9-2743-4f9d-99af-1444356ef628/export Wed, 30 Apr 2025 17:55:15 +0000