Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 18 Jun 2026 22:36:03 +0000 28c09d04-c43e-4603-a585-8c684c0c8090 https://vulnerability.circl.lu/sighting/28c09d04-c43e-4603-a585-8c684c0c8090/export {"uuid": "28c09d04-c43e-4603-a585-8c684c0c8090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45316", "type": "seen", "source": "https://t.me/ctinow/161639", "content": "https://ift.tt/NkHYq7B\nCVE-2023-45316 | Mattermost up to 7.8.14/8.1.5/9.0.3/9.1.2/9.2.1 Telemetry Run ID path traversal", "creation_timestamp": "2024-01-02T10:07:00.000000Z"} {"uuid": "28c09d04-c43e-4603-a585-8c684c0c8090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45316", "type": "seen", "source": "https://t.me/ctinow/161639", "content": "https://ift.tt/NkHYq7B\nCVE-2023-45316 | Mattermost up to 7.8.14/8.1.5/9.0.3/9.1.2/9.2.1 Telemetry Run ID path traversal", "creation_timestamp": "2024-01-02T10:07:00.000000Z"} https://vulnerability.circl.lu/sighting/28c09d04-c43e-4603-a585-8c684c0c8090/export Tue, 02 Jan 2024 10:07:00 +0000 39ecbc88-d6ed-48d2-b2ca-a9dad5c7d1ee https://vulnerability.circl.lu/sighting/39ecbc88-d6ed-48d2-b2ca-a9dad5c7d1ee/export {"uuid": "39ecbc88-d6ed-48d2-b2ca-a9dad5c7d1ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/ctinow/188674", "content": "https://ift.tt/pmzsTky\nCVE-2023-45318", "creation_timestamp": "2024-02-20T16:37:05.000000Z"} {"uuid": "39ecbc88-d6ed-48d2-b2ca-a9dad5c7d1ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/ctinow/188674", "content": "https://ift.tt/pmzsTky\nCVE-2023-45318", "creation_timestamp": "2024-02-20T16:37:05.000000Z"} https://vulnerability.circl.lu/sighting/39ecbc88-d6ed-48d2-b2ca-a9dad5c7d1ee/export Tue, 20 Feb 2024 16:37:05 +0000 6152b937-97af-4aae-99da-e3dc7f76c918 https://vulnerability.circl.lu/sighting/6152b937-97af-4aae-99da-e3dc7f76c918/export {"uuid": "6152b937-97af-4aae-99da-e3dc7f76c918", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/ctinow/188683", "content": "https://ift.tt/pmzsTky\nCVE-2023-45318", "creation_timestamp": "2024-02-20T16:37:17.000000Z"} {"uuid": "6152b937-97af-4aae-99da-e3dc7f76c918", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/ctinow/188683", "content": "https://ift.tt/pmzsTky\nCVE-2023-45318", "creation_timestamp": "2024-02-20T16:37:17.000000Z"} https://vulnerability.circl.lu/sighting/6152b937-97af-4aae-99da-e3dc7f76c918/export Tue, 20 Feb 2024 16:37:17 +0000 d43b4445-3532-4ab5-bcc3-f8b5d867f9bf https://vulnerability.circl.lu/sighting/d43b4445-3532-4ab5-bcc3-f8b5d867f9bf/export {"uuid": "d43b4445-3532-4ab5-bcc3-f8b5d867f9bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/arpsyndicate/3854", "content": "#ExploitObserverAlert\n\nCVE-2023-45318\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-45318. A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network packet can lead to arbitrary code execution. An attacker can send a malicious packet to trigger this vulnerability.\n\nNVD-IS: 6.0\nNVD-ES: 3.9", "creation_timestamp": "2024-02-21T15:40:06.000000Z"} {"uuid": "d43b4445-3532-4ab5-bcc3-f8b5d867f9bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/arpsyndicate/3854", "content": "#ExploitObserverAlert\n\nCVE-2023-45318\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-45318. A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network packet can lead to arbitrary code execution. An attacker can send a malicious packet to trigger this vulnerability.\n\nNVD-IS: 6.0\nNVD-ES: 3.9", "creation_timestamp": "2024-02-21T15:40:06.000000Z"} https://vulnerability.circl.lu/sighting/d43b4445-3532-4ab5-bcc3-f8b5d867f9bf/export Wed, 21 Feb 2024 15:40:06 +0000 7ac0c0b3-6a13-4153-b06a-db77393565e2 https://vulnerability.circl.lu/sighting/7ac0c0b3-6a13-4153-b06a-db77393565e2/export {"uuid": "7ac0c0b3-6a13-4153-b06a-db77393565e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/ctinow/203379", "content": "https://ift.tt/1aFVAUM\nCVE-2023-45318 | Weston Embedded uC-HTTP 80d4004 heap-based overflow (TALOS-2023-1843)", "creation_timestamp": "2024-03-08T15:22:09.000000Z"} {"uuid": "7ac0c0b3-6a13-4153-b06a-db77393565e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/ctinow/203379", "content": "https://ift.tt/1aFVAUM\nCVE-2023-45318 | Weston Embedded uC-HTTP 80d4004 heap-based overflow (TALOS-2023-1843)", "creation_timestamp": "2024-03-08T15:22:09.000000Z"} https://vulnerability.circl.lu/sighting/7ac0c0b3-6a13-4153-b06a-db77393565e2/export Fri, 08 Mar 2024 15:22:09 +0000 eff0fc45-f9c8-4fb2-94d2-8b9a7fd7116d https://vulnerability.circl.lu/sighting/eff0fc45-f9c8-4fb2-94d2-8b9a7fd7116d/export {"uuid": "eff0fc45-f9c8-4fb2-94d2-8b9a7fd7116d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6764", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aExploit CVE-2023-45318-POC Weston Embedded uC-HTTP git commit 80d4004 ---> RCE\nURL\uff1ahttps://github.com/greandfather/CVE-2023-45318-POC-RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-03-08T21:03:59.000000Z"} {"uuid": "eff0fc45-f9c8-4fb2-94d2-8b9a7fd7116d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6764", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aExploit CVE-2023-45318-POC Weston Embedded uC-HTTP git commit 80d4004 ---> RCE\nURL\uff1ahttps://github.com/greandfather/CVE-2023-45318-POC-RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-03-08T21:03:59.000000Z"} https://vulnerability.circl.lu/sighting/eff0fc45-f9c8-4fb2-94d2-8b9a7fd7116d/export Fri, 08 Mar 2024 21:03:59 +0000 026605d1-9cab-4b5a-9f76-f6dd4db8b3cd https://vulnerability.circl.lu/sighting/026605d1-9cab-4b5a-9f76-f6dd4db8b3cd/export {"uuid": "026605d1-9cab-4b5a-9f76-f6dd4db8b3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6765", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aExploit CVE-2023-45318-POC Weston Embedded uC-HTTP git commit 80d4004 ---> RCE\nURL\uff1ahttps://github.com/greandfather/CVE-2023-50358-POC-RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-03-08T21:25:01.000000Z"} {"uuid": "026605d1-9cab-4b5a-9f76-f6dd4db8b3cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6765", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aExploit CVE-2023-45318-POC Weston Embedded uC-HTTP git commit 80d4004 ---> RCE\nURL\uff1ahttps://github.com/greandfather/CVE-2023-50358-POC-RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-03-08T21:25:01.000000Z"} https://vulnerability.circl.lu/sighting/026605d1-9cab-4b5a-9f76-f6dd4db8b3cd/export Fri, 08 Mar 2024 21:25:01 +0000 ac0059e2-2598-4348-9f85-8dce7003bbc1 https://vulnerability.circl.lu/sighting/ac0059e2-2598-4348-9f85-8dce7003bbc1/export {"uuid": "ac0059e2-2598-4348-9f85-8dce7003bbc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4124", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-45318\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-02-20T15:15:08.727\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://talosintelligence.com/vulnerability_reports/TALOS-2023-1843\n2. https://talosintelligence.com/vulnerability_reports/TALOS-2023-1843", "creation_timestamp": "2025-02-12T19:08:34.000000Z"} {"uuid": "ac0059e2-2598-4348-9f85-8dce7003bbc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45318", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4124", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-45318\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-02-20T15:15:08.727\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://talosintelligence.com/vulnerability_reports/TALOS-2023-1843\n2. https://talosintelligence.com/vulnerability_reports/TALOS-2023-1843", "creation_timestamp": "2025-02-12T19:08:34.000000Z"} https://vulnerability.circl.lu/sighting/ac0059e2-2598-4348-9f85-8dce7003bbc1/export Wed, 12 Feb 2025 19:08:34 +0000 64efa7e0-8797-47d1-aac4-a5664e406006 https://vulnerability.circl.lu/sighting/64efa7e0-8797-47d1-aac4-a5664e406006/export {"uuid": "64efa7e0-8797-47d1-aac4-a5664e406006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45316", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17483", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-45316\n\ud83d\udd25 CVSS Score: 7.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: Mattermost fails to validate if a relative path is passed in /plugins/playbooks/api/v0/telemetry/run/ as a telemetry run ID, allowing an attacker to use a path traversal payload that points to a different endpoint leading to a\u00a0CSRF attack.\n\n\n\ud83d\udccf Published: 2023-12-12T08:23:17.299Z\n\ud83d\udccf Modified: 2025-05-24T10:26:51.058Z\n\ud83d\udd17 References:\n1. https://mattermost.com/security-updates", "creation_timestamp": "2025-05-24T10:44:59.000000Z"} {"uuid": "64efa7e0-8797-47d1-aac4-a5664e406006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45316", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17483", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-45316\n\ud83d\udd25 CVSS Score: 7.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: Mattermost fails to validate if a relative path is passed in /plugins/playbooks/api/v0/telemetry/run/ as a telemetry run ID, allowing an attacker to use a path traversal payload that points to a different endpoint leading to a\u00a0CSRF attack.\n\n\n\ud83d\udccf Published: 2023-12-12T08:23:17.299Z\n\ud83d\udccf Modified: 2025-05-24T10:26:51.058Z\n\ud83d\udd17 References:\n1. https://mattermost.com/security-updates", "creation_timestamp": "2025-05-24T10:44:59.000000Z"} https://vulnerability.circl.lu/sighting/64efa7e0-8797-47d1-aac4-a5664e406006/export Sat, 24 May 2025 10:44:59 +0000 65b187eb-df99-4ca3-9564-37cf762a4d13 https://vulnerability.circl.lu/sighting/65b187eb-df99-4ca3-9564-37cf762a4d13/export {"uuid": "65b187eb-df99-4ca3-9564-37cf762a4d13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45311", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m6ztowndtr2l", "content": "", "creation_timestamp": "2025-12-02T21:02:30.441901Z"} {"uuid": "65b187eb-df99-4ca3-9564-37cf762a4d13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45311", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m6ztowndtr2l", "content": "", "creation_timestamp": "2025-12-02T21:02:30.441901Z"} https://vulnerability.circl.lu/sighting/65b187eb-df99-4ca3-9564-37cf762a4d13/export Tue, 02 Dec 2025 21:02:30 +0000