<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Thu, 16 Jul 2026 07:39:17 +0000</lastBuildDate>
    <item>
      <title>e35b0cbd-399b-4549-a34e-5a9e0da3b878</title>
      <link>https://vulnerability.circl.lu/sighting/e35b0cbd-399b-4549-a34e-5a9e0da3b878/export</link>
      <description>{"uuid": "e35b0cbd-399b-4549-a34e-5a9e0da3b878", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28486", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mebc5tsky22a", "content": "", "creation_timestamp": "2026-02-07T11:16:00.943815Z"}</description>
      <content:encoded>{"uuid": "e35b0cbd-399b-4549-a34e-5a9e0da3b878", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28486", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mebc5tsky22a", "content": "", "creation_timestamp": "2026-02-07T11:16:00.943815Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e35b0cbd-399b-4549-a34e-5a9e0da3b878/export</guid>
      <pubDate>Sat, 07 Feb 2026 11:16:00 +0000</pubDate>
    </item>
    <item>
      <title>64151ef3-ea43-472d-bda2-989a4a6d8a1b</title>
      <link>https://vulnerability.circl.lu/sighting/64151ef3-ea43-472d-bda2-989a4a6d8a1b/export</link>
      <description>{"uuid": "64151ef3-ea43-472d-bda2-989a4a6d8a1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28487", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lytkxah4rvu2", "content": "", "creation_timestamp": "2025-09-15T00:39:17.057525Z"}</description>
      <content:encoded>{"uuid": "64151ef3-ea43-472d-bda2-989a4a6d8a1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28487", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lytkxah4rvu2", "content": "", "creation_timestamp": "2025-09-15T00:39:17.057525Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/64151ef3-ea43-472d-bda2-989a4a6d8a1b/export</guid>
      <pubDate>Mon, 15 Sep 2025 00:39:17 +0000</pubDate>
    </item>
    <item>
      <title>191042b9-2a5e-49b2-bdc8-ed7212630703</title>
      <link>https://vulnerability.circl.lu/sighting/191042b9-2a5e-49b2-bdc8-ed7212630703/export</link>
      <description>{"uuid": "191042b9-2a5e-49b2-bdc8-ed7212630703", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28486", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lyswb6kj5fg2", "content": "", "creation_timestamp": "2025-09-14T18:29:21.796397Z"}</description>
      <content:encoded>{"uuid": "191042b9-2a5e-49b2-bdc8-ed7212630703", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28486", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lyswb6kj5fg2", "content": "", "creation_timestamp": "2025-09-14T18:29:21.796397Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/191042b9-2a5e-49b2-bdc8-ed7212630703/export</guid>
      <pubDate>Sun, 14 Sep 2025 18:29:21 +0000</pubDate>
    </item>
    <item>
      <title>9df36922-e52e-4435-9fe2-6f3a761ad6a5</title>
      <link>https://vulnerability.circl.lu/sighting/9df36922-e52e-4435-9fe2-6f3a761ad6a5/export</link>
      <description>{"uuid": "9df36922-e52e-4435-9fe2-6f3a761ad6a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28484", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-09", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}</description>
      <content:encoded>{"uuid": "9df36922-e52e-4435-9fe2-6f3a761ad6a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28484", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-09", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/9df36922-e52e-4435-9fe2-6f3a761ad6a5/export</guid>
      <pubDate>Thu, 13 Feb 2025 11:00:00 +0000</pubDate>
    </item>
    <item>
      <title>30630bb7-ad1b-4a1f-92e2-b51ba74657cc</title>
      <link>https://vulnerability.circl.lu/sighting/30630bb7-ad1b-4a1f-92e2-b51ba74657cc/export</link>
      <description>{"uuid": "30630bb7-ad1b-4a1f-92e2-b51ba74657cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28488", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3867", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-28488\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2023-04-12T16:15:19.353\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/moehw/poc_exploits/tree/master/CVE-2023-28488\n2. https://kernel.googlesource.com/pub/scm/network/connman/connman/+/99e2c16ea1cced34a5dc450d76287a1c3e762138\n3. https://lists.debian.org/debian-lts-announce/2023/04/msg00024.html\n4. https://www.debian.org/security/2023/dsa-5416\n5. https://github.com/moehw/poc_exploits/tree/master/CVE-2023-28488\n6. https://kernel.googlesource.com/pub/scm/network/connman/connman/+/99e2c16ea1cced34a5dc450d76287a1c3e762138\n7. https://lists.debian.org/debian-lts-announce/2023/04/msg00024.html\n8. https://www.debian.org/security/2023/dsa-5416", "creation_timestamp": "2025-02-08T06:03:16.000000Z"}</description>
      <content:encoded>{"uuid": "30630bb7-ad1b-4a1f-92e2-b51ba74657cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28488", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3867", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-28488\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2023-04-12T16:15:19.353\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/moehw/poc_exploits/tree/master/CVE-2023-28488\n2. https://kernel.googlesource.com/pub/scm/network/connman/connman/+/99e2c16ea1cced34a5dc450d76287a1c3e762138\n3. https://lists.debian.org/debian-lts-announce/2023/04/msg00024.html\n4. https://www.debian.org/security/2023/dsa-5416\n5. https://github.com/moehw/poc_exploits/tree/master/CVE-2023-28488\n6. https://kernel.googlesource.com/pub/scm/network/connman/connman/+/99e2c16ea1cced34a5dc450d76287a1c3e762138\n7. https://lists.debian.org/debian-lts-announce/2023/04/msg00024.html\n8. https://www.debian.org/security/2023/dsa-5416", "creation_timestamp": "2025-02-08T06:03:16.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/30630bb7-ad1b-4a1f-92e2-b51ba74657cc/export</guid>
      <pubDate>Sat, 08 Feb 2025 06:03:16 +0000</pubDate>
    </item>
    <item>
      <title>018bd3bc-ecde-42cc-8ab1-e5b24a114eb3</title>
      <link>https://vulnerability.circl.lu/sighting/018bd3bc-ecde-42cc-8ab1-e5b24a114eb3/export</link>
      <description>{"uuid": "018bd3bc-ecde-42cc-8ab1-e5b24a114eb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28484", "type": "seen", "source": "https://t.me/ctinow/182363", "content": "https://ift.tt/YlBzw7g\nCVE-2023-28484 | Oracle MySQL Cluster 8.0.34 and prior/8.1.0 denial of service", "creation_timestamp": "2024-02-10T00:31:41.000000Z"}</description>
      <content:encoded>{"uuid": "018bd3bc-ecde-42cc-8ab1-e5b24a114eb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28484", "type": "seen", "source": "https://t.me/ctinow/182363", "content": "https://ift.tt/YlBzw7g\nCVE-2023-28484 | Oracle MySQL Cluster 8.0.34 and prior/8.1.0 denial of service", "creation_timestamp": "2024-02-10T00:31:41.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/018bd3bc-ecde-42cc-8ab1-e5b24a114eb3/export</guid>
      <pubDate>Sat, 10 Feb 2024 00:31:41 +0000</pubDate>
    </item>
    <item>
      <title>4d89b389-669b-4ba2-82b6-d5a9f29854f5</title>
      <link>https://vulnerability.circl.lu/sighting/4d89b389-669b-4ba2-82b6-d5a9f29854f5/export</link>
      <description>{"uuid": "4d89b389-669b-4ba2-82b6-d5a9f29854f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2848", "type": "seen", "source": "https://t.me/cibsecurity/70445", "content": "\u203c CVE-2023-2848 \u203c\n\nMovim prior to version 0.22 is affected by a Cross-Site WebSocket Hijacking vulnerability. This was the result of a missing header validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-14T16:31:45.000000Z"}</description>
      <content:encoded>{"uuid": "4d89b389-669b-4ba2-82b6-d5a9f29854f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2848", "type": "seen", "source": "https://t.me/cibsecurity/70445", "content": "\u203c CVE-2023-2848 \u203c\n\nMovim prior to version 0.22 is affected by a Cross-Site WebSocket Hijacking vulnerability. This was the result of a missing header validation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-14T16:31:45.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4d89b389-669b-4ba2-82b6-d5a9f29854f5/export</guid>
      <pubDate>Thu, 14 Sep 2023 16:31:45 +0000</pubDate>
    </item>
    <item>
      <title>578d77b2-c054-4fa5-822b-58bfc281ce8c</title>
      <link>https://vulnerability.circl.lu/sighting/578d77b2-c054-4fa5-822b-58bfc281ce8c/export</link>
      <description>{"uuid": "578d77b2-c054-4fa5-822b-58bfc281ce8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28482", "type": "seen", "source": "https://t.me/cibsecurity/68472", "content": "\u203c CVE-2023-28482 \u203c\n\nAn issue was discovered in Tigergraph Enterprise 3.7.0. A single TigerGraph instance can host multiple graphs that are accessed by multiple different users. The TigerGraph platform does not protect the confidentiality of any data uploaded to the remote server. In this scenario, any user that has permissions to upload data can browse data uploaded by any other user (irrespective of their permissions).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:38:16.000000Z"}</description>
      <content:encoded>{"uuid": "578d77b2-c054-4fa5-822b-58bfc281ce8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28482", "type": "seen", "source": "https://t.me/cibsecurity/68472", "content": "\u203c CVE-2023-28482 \u203c\n\nAn issue was discovered in Tigergraph Enterprise 3.7.0. A single TigerGraph instance can host multiple graphs that are accessed by multiple different users. The TigerGraph platform does not protect the confidentiality of any data uploaded to the remote server. In this scenario, any user that has permissions to upload data can browse data uploaded by any other user (irrespective of their permissions).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:38:16.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/578d77b2-c054-4fa5-822b-58bfc281ce8c/export</guid>
      <pubDate>Mon, 14 Aug 2023 22:38:16 +0000</pubDate>
    </item>
    <item>
      <title>301746fa-019c-42a0-9c10-bb7dc770b939</title>
      <link>https://vulnerability.circl.lu/sighting/301746fa-019c-42a0-9c10-bb7dc770b939/export</link>
      <description>{"uuid": "301746fa-019c-42a0-9c10-bb7dc770b939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28480", "type": "seen", "source": "https://t.me/cibsecurity/68474", "content": "\u203c CVE-2023-28480 \u203c\n\nAn issue was discovered in Tigergraph Enterprise 3.7.0. The TigerGraph platform allows users to define new User Defined Functions (UDFs) from C/C++ code. To support this functionality TigerGraph allows users to upload custom C/C++ code which is then compiled and installed into the platform. An attacker who has filesystem access on a remote TigerGraph system can alter the behavior of the database against the will of the database administrator; thus effectively bypassing the built in RBAC controls.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:19:49.000000Z"}</description>
      <content:encoded>{"uuid": "301746fa-019c-42a0-9c10-bb7dc770b939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28480", "type": "seen", "source": "https://t.me/cibsecurity/68474", "content": "\u203c CVE-2023-28480 \u203c\n\nAn issue was discovered in Tigergraph Enterprise 3.7.0. The TigerGraph platform allows users to define new User Defined Functions (UDFs) from C/C++ code. To support this functionality TigerGraph allows users to upload custom C/C++ code which is then compiled and installed into the platform. An attacker who has filesystem access on a remote TigerGraph system can alter the behavior of the database against the will of the database administrator; thus effectively bypassing the built in RBAC controls.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:19:49.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/301746fa-019c-42a0-9c10-bb7dc770b939/export</guid>
      <pubDate>Mon, 14 Aug 2023 22:19:49 +0000</pubDate>
    </item>
    <item>
      <title>e5d980a7-7336-4ee9-82b2-1ff1e797b8e4</title>
      <link>https://vulnerability.circl.lu/sighting/e5d980a7-7336-4ee9-82b2-1ff1e797b8e4/export</link>
      <description>{"uuid": "e5d980a7-7336-4ee9-82b2-1ff1e797b8e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28483", "type": "seen", "source": "https://t.me/cibsecurity/68468", "content": "\u203c CVE-2023-28483 \u203c\n\nAn issue was discovered in Tigergraph Enterprise 3.7.0. The GSQL query language provides users with the ability to write data to files on a remote TigerGraph server. The locations that a query is allowed to write to are configurable via the GSQL.FileOutputPolicy configuration setting. GSQL queries that contain UDFs can bypass this configuration setting and, as a consequence, can write to any file location to which the administrative user has access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:19:41.000000Z"}</description>
      <content:encoded>{"uuid": "e5d980a7-7336-4ee9-82b2-1ff1e797b8e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28483", "type": "seen", "source": "https://t.me/cibsecurity/68468", "content": "\u203c CVE-2023-28483 \u203c\n\nAn issue was discovered in Tigergraph Enterprise 3.7.0. The GSQL query language provides users with the ability to write data to files on a remote TigerGraph server. The locations that a query is allowed to write to are configurable via the GSQL.FileOutputPolicy configuration setting. GSQL queries that contain UDFs can bypass this configuration setting and, as a consequence, can write to any file location to which the administrative user has access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:19:41.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e5d980a7-7336-4ee9-82b2-1ff1e797b8e4/export</guid>
      <pubDate>Mon, 14 Aug 2023 22:19:41 +0000</pubDate>
    </item>
  </channel>
</rss>
