<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T08:52:46.158772+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b4b251f8-5bb8-4805-95b7-7f80f1146519/export</id>
    <title>b4b251f8-5bb8-4805-95b7-7f80f1146519</title>
    <updated>2026-07-06T08:52:46.178514+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b4b251f8-5bb8-4805-95b7-7f80f1146519", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43309", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpxb3vcaiz23", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2022-43309 \u0432 \u0441\u0435\u0440\u0432\u0435\u0440\u043d\u043e\u043c \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u0438 Supermicro: \u0443\u0433\u0440\u043e\u0437\u0430 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/6CE1BF03-50AE-46B7-BDAF-B4D59AA79E89", "creation_timestamp": "2026-07-06T04:32:40.191510Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b4b251f8-5bb8-4805-95b7-7f80f1146519/export"/>
    <published>2026-07-06T04:32:40.191510+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/37ea07cd-2e6f-427b-98b1-c3da897c25a1/export</id>
    <title>37ea07cd-2e6f-427b-98b1-c3da897c25a1</title>
    <updated>2026-07-06T08:52:46.180406+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "37ea07cd-2e6f-427b-98b1-c3da897c25a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43303", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14950", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43303\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0.\n\ud83d\udccf Published: 2022-11-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-05T18:02:17.534Z\n\ud83d\udd17 References:\n1. https://pypi.org/project/d8s-strings/\n2. https://pypi.org/project/democritus-uuids/\n3. https://github.com/dadadadada111/info/issues/8", "creation_timestamp": "2025-05-05T18:19:35.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/37ea07cd-2e6f-427b-98b1-c3da897c25a1/export"/>
    <published>2025-05-05T18:19:35+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c65742e1-1932-4004-b91f-b73e85409765/export</id>
    <title>c65742e1-1932-4004-b91f-b73e85409765</title>
    <updated>2026-07-06T08:52:46.180507+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c65742e1-1932-4004-b91f-b73e85409765", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43305", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14948", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43305\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-algorithms package. The affected version of d8s-htm is 0.1.0.\n\ud83d\udccf Published: 2022-11-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-05T18:05:37.895Z\n\ud83d\udd17 References:\n1. https://pypi.org/project/d8s-python/\n2. https://pypi.org/project/democritus-algorithms/\n3. https://github.com/dadadadada111/info/issues/10", "creation_timestamp": "2025-05-05T18:19:33.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c65742e1-1932-4004-b91f-b73e85409765/export"/>
    <published>2025-05-05T18:19:33+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e4352a67-653d-490f-9a75-b3071b00df10/export</id>
    <title>e4352a67-653d-490f-9a75-b3071b00df10</title>
    <updated>2026-07-06T08:52:46.180591+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e4352a67-653d-490f-9a75-b3071b00df10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43304", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14949", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43304\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0.\n\ud83d\udccf Published: 2022-11-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-05T18:04:30.684Z\n\ud83d\udd17 References:\n1. https://pypi.org/project/democritus-uuids/\n2. https://pypi.org/project/d8s-timer/\n3. https://github.com/dadadadada111/info/issues/9", "creation_timestamp": "2025-05-05T18:19:33.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e4352a67-653d-490f-9a75-b3071b00df10/export"/>
    <published>2025-05-05T18:19:33+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6649d9f8-f4b0-4015-91a3-20a77dd84c18/export</id>
    <title>6649d9f8-f4b0-4015-91a3-20a77dd84c18</title>
    <updated>2026-07-06T08:52:46.180668+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6649d9f8-f4b0-4015-91a3-20a77dd84c18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43306", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14946", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43306\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The d8s-timer for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-dates package. The affected version of d8s-htm is 0.1.0.\n\ud83d\udccf Published: 2022-11-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-05T18:07:14.194Z\n\ud83d\udd17 References:\n1. https://pypi.org/project/d8s-timer/\n2. https://pypi.org/project/democritus-dates/\n3. https://github.com/dadadadada111/info/issues/11", "creation_timestamp": "2025-05-05T18:19:31.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6649d9f8-f4b0-4015-91a3-20a77dd84c18/export"/>
    <published>2025-05-05T18:19:31+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0f4190e6-e686-48c4-aa52-9f103c583ee0/export</id>
    <title>0f4190e6-e686-48c4-aa52-9f103c583ee0</title>
    <updated>2026-07-06T08:52:46.180742+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0f4190e6-e686-48c4-aa52-9f103c583ee0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43308", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14045", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43308\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: INTELBRAS SG 2404 MR 20180928-rel64938 allows authenticated attackers to arbitrarily create Administrator accounts via crafted user cookies.\n\ud83d\udccf Published: 2022-11-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-30T13:55:00.363Z\n\ud83d\udd17 References:\n1. https://github.com/vitorespf/Advisories/blob/master/Intelbras-switch.txt\n2. https://www.intelbras.com/pt-br/switch-gerenciavel-24-portas-poe-gigabit-ethernet-sg-2404-poe", "creation_timestamp": "2025-04-30T14:13:16.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0f4190e6-e686-48c4-aa52-9f103c583ee0/export"/>
    <published>2025-04-30T14:13:16+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fe6712b6-12bf-44a1-8b10-17039da846e9/export</id>
    <title>fe6712b6-12bf-44a1-8b10-17039da846e9</title>
    <updated>2026-07-06T08:52:46.180818+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fe6712b6-12bf-44a1-8b10-17039da846e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43309", "type": "seen", "source": "https://t.me/cibsecurity/61704", "content": "\u203c CVE-2022-43309 \u203c\n\nSupermicro X11SSL-CF HW Rev 1.01, BMC firmware v1.63 was discovered to contain insecure permissions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-08T00:28:13.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fe6712b6-12bf-44a1-8b10-17039da846e9/export"/>
    <published>2023-04-08T00:28:13+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/aa8a93ff-f43d-4b10-9f27-32f220531b63/export</id>
    <title>aa8a93ff-f43d-4b10-9f27-32f220531b63</title>
    <updated>2026-07-06T08:52:46.180889+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "aa8a93ff-f43d-4b10-9f27-32f220531b63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4330", "type": "seen", "source": "https://t.me/cibsecurity/56549", "content": "\u203c CVE-2022-4330 \u203c\n\nThe WP Attachments WordPress plugin through 5.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-16T18:24:25.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/aa8a93ff-f43d-4b10-9f27-32f220531b63/export"/>
    <published>2023-01-16T18:24:25+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7a48c9c3-fb78-45d8-9009-9a80e0ce9f10/export</id>
    <title>7a48c9c3-fb78-45d8-9009-9a80e0ce9f10</title>
    <updated>2026-07-06T08:52:46.180960+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7a48c9c3-fb78-45d8-9009-9a80e0ce9f10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43305", "type": "seen", "source": "https://t.me/cibsecurity/52610", "content": "\u203c CVE-2022-43305 \u203c\n\nThe d8s-python for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-algorithms package. The affected version of d8s-htm is 0.1.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-07T18:34:37.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7a48c9c3-fb78-45d8-9009-9a80e0ce9f10/export"/>
    <published>2022-11-07T18:34:37+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ce914a77-0a1a-412e-9a67-f8fd64539900/export</id>
    <title>ce914a77-0a1a-412e-9a67-f8fd64539900</title>
    <updated>2026-07-06T08:52:46.181027+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ce914a77-0a1a-412e-9a67-f8fd64539900", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43303", "type": "seen", "source": "https://t.me/cibsecurity/52607", "content": "\u203c CVE-2022-43303 \u203c\n\nThe d8s-strings for python, as distributed on PyPI, included a potential code-execution backdoor inserted by a third party. A potential code execution backdoor inserted by third parties is the democritus-uuids package. The affected version of d8s-htm is 0.1.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-07T18:34:34.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ce914a77-0a1a-412e-9a67-f8fd64539900/export"/>
    <published>2022-11-07T18:34:34+00:00</published>
  </entry>
</feed>
