<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 08 Jul 2026 16:35:21 +0000</lastBuildDate>
    <item>
      <title>9f55a138-34f2-477b-a274-65e561351054</title>
      <link>https://vulnerability.circl.lu/sighting/9f55a138-34f2-477b-a274-65e561351054/export</link>
      <description>{"uuid": "9f55a138-34f2-477b-a274-65e561351054", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-VHW4-MJFV-P3GG", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/3342", "content": "#ExploitObserverAlert\n\nGHSA-vhw4-mjfv-p3gg\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-vhw4-mjfv-p3gg. Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated attacker to execute arbitrary code by uploading a specially crafted SVG file.", "creation_timestamp": "2024-01-29T10:22:47.000000Z"}</description>
      <content:encoded>{"uuid": "9f55a138-34f2-477b-a274-65e561351054", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-VHW4-MJFV-P3GG", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/3342", "content": "#ExploitObserverAlert\n\nGHSA-vhw4-mjfv-p3gg\n\nDESCRIPTION: Exploit Observer has 3 entries in 2 file formats related to GHSA-vhw4-mjfv-p3gg. Improper input validation vulnerability in a-blog cms Ver.3.1.x series versions prior to Ver.3.1.7, Ver.3.0.x series versions prior to Ver.3.0.29, Ver.2.11.x series versions prior to Ver.2.11.58, Ver.2.10.x series versions prior to Ver.2.10.50, and Ver.2.9.0 and earlier allows a remote authenticated attacker to execute arbitrary code by uploading a specially crafted SVG file.", "creation_timestamp": "2024-01-29T10:22:47.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9f55a138-34f2-477b-a274-65e561351054/export</guid>
      <pubDate>Mon, 29 Jan 2024 10:22:47 +0000</pubDate>
    </item>
  </channel>
</rss>
