<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T01:01:49.040852+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/031b530e-4179-4949-bb7e-450843772374/export</id>
    <title>031b530e-4179-4949-bb7e-450843772374</title>
    <updated>2026-07-06T01:01:49.058813+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "031b530e-4179-4949-bb7e-450843772374", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2495", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lko2rjse7a2w", "content": "", "creation_timestamp": "2025-03-18T16:13:22.323415Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/031b530e-4179-4949-bb7e-450843772374/export"/>
    <published>2025-03-18T16:13:22.323415+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d6d86052-cd6c-4d54-a3d0-a71f29296a1f/export</id>
    <title>d6d86052-cd6c-4d54-a3d0-a71f29296a1f</title>
    <updated>2026-07-06T01:01:49.061453+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d6d86052-cd6c-4d54-a3d0-a71f29296a1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2495", "type": "seen", "source": "https://t.me/cvedetector/20566", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2495 - Sytel Ltd. Softdial Contact Center Stored Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-2495 \nPublished : March 18, 2025, 12:15 p.m. | 2\u00a0hours, 7\u00a0minutes ago \nDescription : Stored Cross-Site Scripting (XSS) in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to upload XML files to the server with JavaScript code injected via the \u2018/softdial/scheduler/save.php\u2019 resource. The injected code will execute when the uploaded file is loaded via the \u2018/softdial/scheduler/load.php\u2019 resource and can redirect the victim to malicious sites or steal their login information to spoof their identity. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-18T16:03:51.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d6d86052-cd6c-4d54-a3d0-a71f29296a1f/export"/>
    <published>2025-03-18T16:03:51+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ff54a955-0336-4e99-b163-3b2ba8f04838/export</id>
    <title>ff54a955-0336-4e99-b163-3b2ba8f04838</title>
    <updated>2026-07-06T01:01:49.061788+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ff54a955-0336-4e99-b163-3b2ba8f04838", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2495", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7900", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2495\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N)\n\ud83d\udd39 Description: Stored Cross-Site Scripting (XSS) in Softdial Contact Center of Sytel Ltd. This vulnerability allows an attacker to upload XML files to the server with JavaScript code injected via the \u2018/softdial/scheduler/save.php\u2019 resource. The injected code will execute when the uploaded file is loaded via the \u2018/softdial/scheduler/load.php\u2019 resource and can redirect the victim to malicious sites or steal their login information to spoof their identity.\n\ud83d\udccf Published: 2025-03-18T11:28:28.483Z\n\ud83d\udccf Modified: 2025-03-18T11:28:28.483Z\n\ud83d\udd17 References:\n1. https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-softdial-contact-center", "creation_timestamp": "2025-03-18T11:55:37.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ff54a955-0336-4e99-b163-3b2ba8f04838/export"/>
    <published>2025-03-18T11:55:37+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/77a4939c-5be8-4c18-99a7-6ddeaa808582/export</id>
    <title>77a4939c-5be8-4c18-99a7-6ddeaa808582</title>
    <updated>2026-07-06T01:01:49.062051+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "77a4939c-5be8-4c18-99a7-6ddeaa808582", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24957", "type": "seen", "source": "Telegram/6-sSiFDwTi34I-cW9m-11sD_6PL-4KBy6iQJHmAYbm9vaNeu", "content": "", "creation_timestamp": "2025-02-14T10:09:22.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/77a4939c-5be8-4c18-99a7-6ddeaa808582/export"/>
    <published>2025-02-14T10:09:22+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/699a2188-1dbe-42b2-b089-7ff3dcf5efa1/export</id>
    <title>699a2188-1dbe-42b2-b089-7ff3dcf5efa1</title>
    <updated>2026-07-06T01:01:49.062286+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "699a2188-1dbe-42b2-b089-7ff3dcf5efa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24958", "type": "seen", "source": "Telegram/Ch0gDlvH3sgrx2bzlq5gpy62Qj4PLxmfwtWdhlgpFvdubYrV", "content": "", "creation_timestamp": "2025-02-14T10:09:22.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/699a2188-1dbe-42b2-b089-7ff3dcf5efa1/export"/>
    <published>2025-02-14T10:09:22+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/543f95f2-2df9-4a6a-94f6-235420f99816/export</id>
    <title>543f95f2-2df9-4a6a-94f6-235420f99816</title>
    <updated>2026-07-06T01:01:49.062511+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "543f95f2-2df9-4a6a-94f6-235420f99816", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24958", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4294", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24958\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-03T22:15:29.210\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-2mhx-5998-46hx", "creation_timestamp": "2025-02-13T19:09:42.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/543f95f2-2df9-4a6a-94f6-235420f99816/export"/>
    <published>2025-02-13T19:09:42+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c4e25cb1-11c3-44b8-a5ab-348705fa79b0/export</id>
    <title>c4e25cb1-11c3-44b8-a5ab-348705fa79b0</title>
    <updated>2026-07-06T01:01:49.062737+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c4e25cb1-11c3-44b8-a5ab-348705fa79b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24957", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4293", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-24957\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-03T22:15:29.087\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/LabRedesCefetRJ/WeGIA/security/advisories/GHSA-x28g-6228-99p9", "creation_timestamp": "2025-02-13T19:09:34.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c4e25cb1-11c3-44b8-a5ab-348705fa79b0/export"/>
    <published>2025-02-13T19:09:34+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/a90c68aa-c224-44c1-a4af-67ec829c79db/export</id>
    <title>a90c68aa-c224-44c1-a4af-67ec829c79db</title>
    <updated>2026-07-06T01:01:49.062949+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "a90c68aa-c224-44c1-a4af-67ec829c79db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24956", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-044-08", "content": "", "creation_timestamp": "2025-02-13T11:00:00.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/a90c68aa-c224-44c1-a4af-67ec829c79db/export"/>
    <published>2025-02-13T11:00:00+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d63282bc-169c-4f79-9132-453e2309b82c/export</id>
    <title>d63282bc-169c-4f79-9132-453e2309b82c</title>
    <updated>2026-07-06T01:01:49.063093+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d63282bc-169c-4f79-9132-453e2309b82c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24956", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhvu4ptdko2n", "content": "", "creation_timestamp": "2025-02-11T14:20:08.445482Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d63282bc-169c-4f79-9132-453e2309b82c/export"/>
    <published>2025-02-11T14:20:08.445482+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/44140d2a-280f-4f22-917c-836386df7398/export</id>
    <title>44140d2a-280f-4f22-917c-836386df7398</title>
    <updated>2026-07-06T01:01:49.063166+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "44140d2a-280f-4f22-917c-836386df7398", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-24956", "type": "seen", "source": "https://t.me/cvedetector/17688", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-24956 - OpenV2G X509 Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2025-24956 \nPublished : Feb. 11, 2025, 11:15 a.m. | 52\u00a0minutes ago \nDescription : A vulnerability has been identified in OpenV2G (All versions &amp;lt; V0.9.6). The OpenV2G EXI parsing feature is missing a length check when parsing X509 serial numbers. Thus, an attacker could introduce a buffer overflow that leads to memory corruption. \nSeverity: 6.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T13:10:15.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/44140d2a-280f-4f22-917c-836386df7398/export"/>
    <published>2025-02-11T13:10:15+00:00</published>
  </entry>
</feed>
