<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-18T04:36:46.467213+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/31abd344-4220-4ef2-b3ad-27cfdf7061fb/export</id>
    <title>31abd344-4220-4ef2-b3ad-27cfdf7061fb</title>
    <updated>2026-07-18T04:36:46.486956+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "31abd344-4220-4ef2-b3ad-27cfdf7061fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2334", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16742", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-2334\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The edd-google-sheet-connector-pro WordPress plugin before 1.4, Easy Digital Downloads Google Sheet Connector WordPress plugin before 1.6.6 does not have CSRF check when updating its Access Code, which could allow attackers to make logged in admin change the access code to an arbitrary one via a CSRF attack\n\ud83d\udccf Published: 2025-05-15T20:08:56.575Z\n\ud83d\udccf Modified: 2025-05-16T18:35:06.742Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/95562684-2bb1-46f0-838c-8501db6b43ed/", "creation_timestamp": "2025-05-16T19:34:43.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/31abd344-4220-4ef2-b3ad-27cfdf7061fb/export"/>
    <published>2025-05-16T19:34:43+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/f4d05061-ea02-4414-9f9a-83d610ab2329/export</id>
    <title>f4d05061-ea02-4414-9f9a-83d610ab2329</title>
    <updated>2026-07-18T04:36:46.489706+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "f4d05061-ea02-4414-9f9a-83d610ab2329", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23347", "type": "seen", "source": "https://t.me/cibsecurity/68143", "content": "\u203c CVE-2023-23347 \u203c\n\nHCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:12.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/f4d05061-ea02-4414-9f9a-83d610ab2329/export"/>
    <published>2023-08-10T00:15:12+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/23f3ac99-ae3a-476d-99b4-6403b99d17c0/export</id>
    <title>23f3ac99-ae3a-476d-99b4-6403b99d17c0</title>
    <updated>2026-07-18T04:36:46.490011+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "23f3ac99-ae3a-476d-99b4-6403b99d17c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23348", "type": "seen", "source": "https://t.me/cibsecurity/66295", "content": "\u203c CVE-2023-23348 \u203c\n\nHCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-10T22:24:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/23f3ac99-ae3a-476d-99b4-6403b99d17c0/export"/>
    <published>2023-07-10T22:24:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3555c102-180e-42ca-bba4-c8da796cd45a/export</id>
    <title>3555c102-180e-42ca-bba4-c8da796cd45a</title>
    <updated>2026-07-18T04:36:46.490262+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3555c102-180e-42ca-bba4-c8da796cd45a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23344", "type": "seen", "source": "https://t.me/cibsecurity/65443", "content": "\u203c CVE-2023-23344 \u203c\n\nA permission issue in BigFix WebUI Insights site version 14 allows an authenticated, unprivileged operator to access an administrator page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-23T12:33:18.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3555c102-180e-42ca-bba4-c8da796cd45a/export"/>
    <published>2023-06-23T12:33:18+00:00</published>
  </entry>
</feed>
