<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-02T22:18:34.670878+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2544db86-89af-450d-99d8-335870e69e75/export</id>
    <title>2544db86-89af-450d-99d8-335870e69e75</title>
    <updated>2026-07-02T22:18:34.695147+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2544db86-89af-450d-99d8-335870e69e75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40677", "type": "seen", "source": "https://bsky.app/profile/exploitdb-bot.bsky.social/post/3maijfmdoa52m", "content": "", "creation_timestamp": "2025-12-21T10:33:25.998753Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2544db86-89af-450d-99d8-335870e69e75/export"/>
    <published>2025-12-21T10:33:25.998753+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/328ce706-93b9-485c-9ef6-c13bf0bc4682/export</id>
    <title>328ce706-93b9-485c-9ef6-c13bf0bc4682</title>
    <updated>2026-07-02T22:18:34.696904+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "328ce706-93b9-485c-9ef6-c13bf0bc4682", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40677", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3ma7kpnsmh42r", "content": "", "creation_timestamp": "2025-12-17T21:03:02.586587Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/328ce706-93b9-485c-9ef6-c13bf0bc4682/export"/>
    <published>2025-12-17T21:03:02.586587+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/51de4a76-a46e-4ce0-a17a-0fc3fec2178d/export</id>
    <title>51de4a76-a46e-4ce0-a17a-0fc3fec2178d</title>
    <updated>2026-07-02T22:18:34.697029+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "51de4a76-a46e-4ce0-a17a-0fc3fec2178d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40677", "type": "published-proof-of-concept", "source": "Telegram/5Vt8EpwjyHdujDgjdkJ-lTFzdb-CXmUsrvvwGaWPGRhGGIg", "content": "", "creation_timestamp": "2025-09-22T15:00:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/51de4a76-a46e-4ce0-a17a-0fc3fec2178d/export"/>
    <published>2025-09-22T15:00:06+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c9745d91-16f1-4ab3-885c-bfb6645d5e1a/export</id>
    <title>c9745d91-16f1-4ab3-885c-bfb6645d5e1a</title>
    <updated>2026-07-02T22:18:34.697132+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c9745d91-16f1-4ab3-885c-bfb6645d5e1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40677", "type": "published-proof-of-concept", "source": "Telegram/4KH4fvgPREtz_kMSkNg2r16pvMbYZGydJXtUGpYRnrWI7_8", "content": "", "creation_timestamp": "2025-09-22T11:00:07.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c9745d91-16f1-4ab3-885c-bfb6645d5e1a/export"/>
    <published>2025-09-22T11:00:07+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b39ea026-2b95-4ee3-94cc-c3cfa65eb5dc/export</id>
    <title>b39ea026-2b95-4ee3-94cc-c3cfa65eb5dc</title>
    <updated>2026-07-02T22:18:34.697232+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b39ea026-2b95-4ee3-94cc-c3cfa65eb5dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40677", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/52616", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aSummar Employee Portal Prior to 3.98.0 Authenticated SQL Injection - CVE-2025-40677\nURL\uff1ahttps://github.com/PeterGabaldon/CVE-2025-40677\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-22T08:06:36.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b39ea026-2b95-4ee3-94cc-c3cfa65eb5dc/export"/>
    <published>2025-09-22T08:06:36+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6a38694f-1780-4748-ab8d-f845829f56ac/export</id>
    <title>6a38694f-1780-4748-ab8d-f845829f56ac</title>
    <updated>2026-07-02T22:18:34.697323+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6a38694f-1780-4748-ab8d-f845829f56ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40677", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lz4hcikiby2c", "content": "", "creation_timestamp": "2025-09-18T13:27:35.217042Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6a38694f-1780-4748-ab8d-f845829f56ac/export"/>
    <published>2025-09-18T13:27:35.217042+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6a8ee01a-0008-4a3b-ab06-6b7b5e0e3927/export</id>
    <title>6a8ee01a-0008-4a3b-ab06-6b7b5e0e3927</title>
    <updated>2026-07-02T22:18:34.697405+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6a8ee01a-0008-4a3b-ab06-6b7b5e0e3927", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40674", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18575", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-40674\n\ud83d\udd25 CVSS Score: 5.1 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N)\n\ud83d\udd39 Description: Reflected Cross-Site Scripting (XSS) in osCommerce v4. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending the victim a malicious URL using the name of any parameter in /watch/en/about-us. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user.\n\ud83d\udccf Published: 2025-06-17T08:50:17.363Z\n\ud83d\udccf Modified: 2025-06-17T08:50:17.363Z\n\ud83d\udd17 References:\n1. https://www.incibe.es/en/incibe-cert/notices/aviso/reflected-cross-site-scripting-xss-oscommerce", "creation_timestamp": "2025-06-17T09:41:30.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6a8ee01a-0008-4a3b-ab06-6b7b5e0e3927/export"/>
    <published>2025-06-17T09:41:30+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1ee0af05-adb7-48ef-8f67-afc236627b2e/export</id>
    <title>1ee0af05-adb7-48ef-8f67-afc236627b2e</title>
    <updated>2026-07-02T22:18:34.697491+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1ee0af05-adb7-48ef-8f67-afc236627b2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40670", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lr6pvtlda52k", "content": "", "creation_timestamp": "2025-06-09T15:45:20.801986Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1ee0af05-adb7-48ef-8f67-afc236627b2e/export"/>
    <published>2025-06-09T15:45:20.801986+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6fcca6c2-3f55-40ae-a498-486456e1923c/export</id>
    <title>6fcca6c2-3f55-40ae-a498-486456e1923c</title>
    <updated>2026-07-02T22:18:34.697603+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6fcca6c2-3f55-40ae-a498-486456e1923c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40670", "type": "published-proof-of-concept", "source": "Telegram/AvRPE1FYyApk1Jln3Af0piOZ09oDjaUbhCE1oirCL83hBqc", "content": "", "creation_timestamp": "2025-06-09T13:02:03.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6fcca6c2-3f55-40ae-a498-486456e1923c/export"/>
    <published>2025-06-09T13:02:03+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c4969e9b-c706-4369-9f13-c9be818aaa23/export</id>
    <title>c4969e9b-c706-4369-9f13-c9be818aaa23</title>
    <updated>2026-07-02T22:18:34.697702+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c4969e9b-c706-4369-9f13-c9be818aaa23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-40675", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lr6ap5pvp22e", "content": "", "creation_timestamp": "2025-06-09T11:13:10.433000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c4969e9b-c706-4369-9f13-c9be818aaa23/export"/>
    <published>2025-06-09T11:13:10.433000+00:00</published>
  </entry>
</feed>
