<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-06T16:51:02.411931+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7b4b86dd-9a07-47e8-9b01-e2fe76e24a80/export</id>
    <title>7b4b86dd-9a07-47e8-9b01-e2fe76e24a80</title>
    <updated>2026-07-06T16:51:02.447471+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7b4b86dd-9a07-47e8-9b01-e2fe76e24a80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27891", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6687", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27891\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: rami.io pretix before 4.17.1 allows OAuth application authorization from a logged-out session. The fixed versions are 4.15.1, 4.16.1, and 4.17.1.\n\ud83d\udccf Published: 2023-03-06T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-06T15:17:33.590Z\n\ud83d\udd17 References:\n1. https://pretix.eu/about/en/blog/20230306-release-4171/", "creation_timestamp": "2025-03-06T16:07:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7b4b86dd-9a07-47e8-9b01-e2fe76e24a80/export"/>
    <published>2025-03-06T16:07:06+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/80c70b81-ed7c-4191-aa85-e0e87fe10af2/export</id>
    <title>80c70b81-ed7c-4191-aa85-e0e87fe10af2</title>
    <updated>2026-07-06T16:51:02.450750+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "80c70b81-ed7c-4191-aa85-e0e87fe10af2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27898", "type": "seen", "source": "Telegram/aJLashonnJzjd9qHbhAQzxown5igxH6OgiLOZc4t6edTbHLJ", "content": "", "creation_timestamp": "2025-03-02T11:45:39.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/80c70b81-ed7c-4191-aa85-e0e87fe10af2/export"/>
    <published>2025-03-02T11:45:39+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0732dc4f-7a02-4e24-ba0c-771e3033a4eb/export</id>
    <title>0732dc4f-7a02-4e24-ba0c-771e3033a4eb</title>
    <updated>2026-07-06T16:51:02.450837+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0732dc4f-7a02-4e24-ba0c-771e3033a4eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27899", "type": "seen", "source": "Telegram/KGT8gUaSIIoiIPNE4U8Ou3mFk7N1ekXTEXf7ZAnV76e0hK9g", "content": "", "creation_timestamp": "2025-03-02T11:45:39.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0732dc4f-7a02-4e24-ba0c-771e3033a4eb/export"/>
    <published>2025-03-02T11:45:39+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5f357be9-3d90-41ff-8c87-2df2e3f311f9/export</id>
    <title>5f357be9-3d90-41ff-8c87-2df2e3f311f9</title>
    <updated>2026-07-06T16:51:02.450899+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5f357be9-3d90-41ff-8c87-2df2e3f311f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27898", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5966", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27898\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.\n\ud83d\udccf Published: 2023-03-08T17:14:48.437Z\n\ud83d\udccf Modified: 2025-02-28T18:34:50.742Z\n\ud83d\udd17 References:\n1. https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-3037", "creation_timestamp": "2025-02-28T19:27:14.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5f357be9-3d90-41ff-8c87-2df2e3f311f9/export"/>
    <published>2025-02-28T19:27:14+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/27f2dc82-ec22-42a6-ac38-37845198235d/export</id>
    <title>27f2dc82-ec22-42a6-ac38-37845198235d</title>
    <updated>2026-07-06T16:51:02.450964+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "27f2dc82-ec22-42a6-ac38-37845198235d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27899", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5965", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27899\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Jenkins 2.393 and earlier, LTS 2.375.3 and earlier creates a temporary file in the default temporary directory with the default permissions for newly created files when uploading a plugin for installation, potentially allowing attackers with access to the Jenkins controller file system to read and write the file before it is used, potentially resulting in arbitrary code execution.\n\ud83d\udccf Published: 2023-03-08T17:14:49.111Z\n\ud83d\udccf Modified: 2025-02-28T18:36:45.296Z\n\ud83d\udd17 References:\n1. https://www.jenkins.io/security/advisory/2023-03-08/#SECURITY-2823", "creation_timestamp": "2025-02-28T19:27:12.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/27f2dc82-ec22-42a6-ac38-37845198235d/export"/>
    <published>2025-02-28T19:27:12+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c53abfe8-da8d-4490-a9d8-b7d5e4c7fd29/export</id>
    <title>c53abfe8-da8d-4490-a9d8-b7d5e4c7fd29</title>
    <updated>2026-07-06T16:51:02.451030+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c53abfe8-da8d-4490-a9d8-b7d5e4c7fd29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27894", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5742", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27894\n\ud83d\udd25 CVSS Score: 5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:N/A:N)\n\ud83d\udd39 Description: SAP BusinessObjects Business Intelligence Platform (Web Services) - versions 420, 430, allows an attacker to inject arbitrary values as CMS parameters to perform lookups on the internal network which is otherwise not accessible externally. On successful exploitation, attacker can scan internal network to determine internal infrastructure for further attacks like remote file inclusion, retrieve server files, bypass firewall and force the vulnerable server to execute malicious requests, resulting in sensitive information disclosure. This causes limited impact on confidentiality of data.\n\n\n\ud83d\udccf Published: 2023-03-14T05:03:25.121Z\n\ud83d\udccf Modified: 2025-02-27T18:03:47.806Z\n\ud83d\udd17 References:\n1. https://launchpad.support.sap.com/#/notes/3287120\n2. https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "creation_timestamp": "2025-02-27T18:27:03.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c53abfe8-da8d-4490-a9d8-b7d5e4c7fd29/export"/>
    <published>2025-02-27T18:27:03+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8aa27ab9-ee63-4903-a2b5-205e03a43fd0/export</id>
    <title>8aa27ab9-ee63-4903-a2b5-205e03a43fd0</title>
    <updated>2026-07-06T16:51:02.451098+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8aa27ab9-ee63-4903-a2b5-205e03a43fd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27896", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5741", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-27896\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: In SAP BusinessObjects Business Intelligence Platform - version 420, 430, an attacker can control a malicious BOE server, forcing the application server to connect to its own CMS, leading to a high impact on availability.\n\n\n\ud83d\udccf Published: 2023-03-14T05:02:29.225Z\n\ud83d\udccf Modified: 2025-02-27T18:04:36.525Z\n\ud83d\udd17 References:\n1. https://launchpad.support.sap.com/#/notes/3287120\n2. https://www.sap.com/documents/2022/02/fa865ea4-167e-0010-bca6-c68f7e60039b.html", "creation_timestamp": "2025-02-27T18:27:02.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8aa27ab9-ee63-4903-a2b5-205e03a43fd0/export"/>
    <published>2025-02-27T18:27:02+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c174b229-3952-47ce-a076-0da02f85c672/export</id>
    <title>c174b229-3952-47ce-a076-0da02f85c672</title>
    <updated>2026-07-06T16:51:02.451170+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c174b229-3952-47ce-a076-0da02f85c672", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27898", "type": "seen", "source": "https://t.me/arpsyndicate/1727", "content": "#ExploitObserverAlert\n\nCVE-2023-27898\n\nDESCRIPTION: Exploit Observer has 6 entries related to CVE-2023-27898. Jenkins 2.270 through 2.393 (both inclusive), LTS 2.277.1 through 2.375.3 (both inclusive) does not escape the Jenkins version a plugin depends on when rendering the error message stating its incompatibility with the current version of Jenkins, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers able to provide plugins to the configured update sites and have this message shown by Jenkins instances.\n\nFIRST-EPSS: 0.000910000\nNVD-IS: 6.0\nNVD-ES: 2.8", "creation_timestamp": "2023-12-11T12:03:28.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c174b229-3952-47ce-a076-0da02f85c672/export"/>
    <published>2023-12-11T12:03:28+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/14bb9af1-d691-4b00-a2e8-2644438f4f10/export</id>
    <title>14bb9af1-d691-4b00-a2e8-2644438f4f10</title>
    <updated>2026-07-06T16:51:02.451233+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "14bb9af1-d691-4b00-a2e8-2644438f4f10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2789", "type": "seen", "source": "https://t.me/cibsecurity/64401", "content": "\u203c CVE-2023-2789 \u203c\n\nA vulnerability was found in GNU cflow 1.7. It has been rated as problematic. This issue affects the function func_body/parse_variable_declaration of the file parser.c. The manipulation leads to denial of service. The exploit has been disclosed to the public and may be used. The identifier VDB-229373 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-18T16:32:07.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/14bb9af1-d691-4b00-a2e8-2644438f4f10/export"/>
    <published>2023-05-18T16:32:07+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/84063aab-10e4-4562-91f5-50582e88c965/export</id>
    <title>84063aab-10e4-4562-91f5-50582e88c965</title>
    <updated>2026-07-06T16:51:02.451296+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "84063aab-10e4-4562-91f5-50582e88c965", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27890", "type": "seen", "source": "https://t.me/cibsecurity/62100", "content": "\u203c CVE-2023-27890 \u203c\n\n** UNSUPPORTED WHEN ASSIGNED ** The Export User plugin through 2.0 for MyBB allows XSS during the process of an admin generating DSGVO data for a user, via the Custom User Title, Location, or Bio field. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-14T07:30:32.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/84063aab-10e4-4562-91f5-50582e88c965/export"/>
    <published>2023-04-14T07:30:32+00:00</published>
  </entry>
</feed>
