<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-13T23:02:01.962313+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d4dbb256-856a-47ab-9ce7-e4b20f578464/export</id>
    <title>d4dbb256-856a-47ab-9ce7-e4b20f578464</title>
    <updated>2026-07-13T23:02:01.985603+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d4dbb256-856a-47ab-9ce7-e4b20f578464", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/596", "content": "\ud83d\udd25Unauthenticated Magento XXE to Privilege Escalation\ud83d\udd25     \n     \n\u26a0\ufe0fCosmicSting enables attackers to gain unauthorized access to sensitive files, including those containing passwords.      \nWhen combined with a recent Linux bug (CVE-2024-2961),the vulnerability can be escalated to remote code execution. \n  \n\u25b6\ufe0fVideo POC: https://youtu.be/j9KiNmGbT9Q \n \n\ud83d\udd34POC: https://github.com/th3gokul/CVE-2024-34102  \n\ud83d\udca5Payload: https://gist.github.com/wtf-yodhha/b4b12a09a4c2d3af0e04b74968daed5d", "creation_timestamp": "2026-07-12T00:00:41.862997Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d4dbb256-856a-47ab-9ce7-e4b20f578464/export"/>
    <published>2026-07-12T00:00:41.862997+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/55a62d36-bb79-4791-8358-767676d25a74/export</id>
    <title>55a62d36-bb79-4791-8358-767676d25a74</title>
    <updated>2026-07-13T23:02:01.987538+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "55a62d36-bb79-4791-8358-767676d25a74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "published-proof-of-concept", "source": "https://t.me/brutsecurity/596", "content": "\ud83d\udd25Unauthenticated Magento XXE to Privilege Escalation\ud83d\udd25     \n     \n\u26a0\ufe0fCosmicSting enables attackers to gain unauthorized access to sensitive files, including those containing passwords.      \nWhen combined with a recent Linux bug (CVE-2024-2961),the vulnerability can be escalated to remote code execution. \n  \n\u25b6\ufe0fVideo POC: https://youtu.be/j9KiNmGbT9Q \n \n\ud83d\udd34POC: https://github.com/th3gokul/CVE-2024-34102  \n\ud83d\udca5Payload: https://gist.github.com/wtf-yodhha/b4b12a09a4c2d3af0e04b74968daed5d", "creation_timestamp": "2026-07-11T18:00:04.584093Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/55a62d36-bb79-4791-8358-767676d25a74/export"/>
    <published>2026-07-11T18:00:04.584093+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1a8639aa-249e-44e8-b864-8d30b9be2995/export</id>
    <title>1a8639aa-249e-44e8-b864-8d30b9be2995</title>
    <updated>2026-07-13T23:02:01.987631+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1a8639aa-249e-44e8-b864-8d30b9be2995", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "https://t.me/brutsecurity/596", "content": "\ud83d\udd25Unauthenticated Magento XXE to Privilege Escalation\ud83d\udd25     \n     \n\u26a0\ufe0fCosmicSting enables attackers to gain unauthorized access to sensitive files, including those containing passwords.      \nWhen combined with a recent Linux bug (CVE-2024-2961),the vulnerability can be escalated to remote code execution. \n  \n\u25b6\ufe0fVideo POC: https://youtu.be/j9KiNmGbT9Q \n \n\ud83d\udd34POC: https://github.com/th3gokul/CVE-2024-34102  \n\ud83d\udca5Payload: https://gist.github.com/wtf-yodhha/b4b12a09a4c2d3af0e04b74968daed5d", "creation_timestamp": "2026-07-10T00:00:37.245418Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1a8639aa-249e-44e8-b864-8d30b9be2995/export"/>
    <published>2026-07-10T00:00:37.245418+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6f6feaf9-e6aa-407b-9617-367b50c256c8/export</id>
    <title>6f6feaf9-e6aa-407b-9617-367b50c256c8</title>
    <updated>2026-07-13T23:02:01.987700+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6f6feaf9-e6aa-407b-9617-367b50c256c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "https://t.me/brutsecurity/596", "content": "\ud83d\udd25Unauthenticated Magento XXE to Privilege Escalation\ud83d\udd25     \n     \n\u26a0\ufe0fCosmicSting enables attackers to gain unauthorized access to sensitive files, including those containing passwords.      \nWhen combined with a recent Linux bug (CVE-2024-2961),the vulnerability can be escalated to remote code execution. \n  \n\u25b6\ufe0fVideo POC: https://youtu.be/j9KiNmGbT9Q \n \n\ud83d\udd34POC: https://github.com/th3gokul/CVE-2024-34102  \n\ud83d\udca5Payload: https://gist.github.com/wtf-yodhha/b4b12a09a4c2d3af0e04b74968daed5d", "creation_timestamp": "2026-07-09T03:00:13.377673Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6f6feaf9-e6aa-407b-9617-367b50c256c8/export"/>
    <published>2026-07-09T03:00:13.377673+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fccc6b54-b047-4fef-98f3-a6328b0912b6/export</id>
    <title>fccc6b54-b047-4fef-98f3-a6328b0912b6</title>
    <updated>2026-07-13T23:02:01.987764+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fccc6b54-b047-4fef-98f3-a6328b0912b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "Telegram/IiZ67zcGoo6QZpKiZ8plCh_8QtxQmsZpB3uf27cpFh2eFp4", "content": "", "creation_timestamp": "2026-05-29T09:00:04.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fccc6b54-b047-4fef-98f3-a6328b0912b6/export"/>
    <published>2026-05-29T09:00:04+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5a44c138-02d6-4db9-b5f4-dfc8ce7156fe/export</id>
    <title>5a44c138-02d6-4db9-b5f4-dfc8ce7156fe</title>
    <updated>2026-07-13T23:02:01.987825+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5a44c138-02d6-4db9-b5f4-dfc8ce7156fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "Telegram/4V1L8rm_ci8R4NTF3AvtHqkyJLl9nOzw6nvw-H3zHaDaYho", "content": "", "creation_timestamp": "2026-05-13T03:00:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5a44c138-02d6-4db9-b5f4-dfc8ce7156fe/export"/>
    <published>2026-05-13T03:00:06+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c6825363-d4d2-4116-a2f3-2f1c574e2d38/export</id>
    <title>c6825363-d4d2-4116-a2f3-2f1c574e2d38</title>
    <updated>2026-07-13T23:02:01.987883+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "c6825363-d4d2-4116-a2f3-2f1c574e2d38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:02.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c6825363-d4d2-4116-a2f3-2f1c574e2d38/export"/>
    <published>2025-10-23T21:13:02+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7f522050-9d62-4603-9715-ecd74db54a72/export</id>
    <title>7f522050-9d62-4603-9715-ecd74db54a72</title>
    <updated>2026-07-13T23:02:01.987945+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7f522050-9d62-4603-9715-ecd74db54a72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:31.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7f522050-9d62-4603-9715-ecd74db54a72/export"/>
    <published>2025-10-08T21:59:31+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0cabce34-b859-4d75-a491-4cced6d4a0f9/export</id>
    <title>0cabce34-b859-4d75-a491-4cced6d4a0f9</title>
    <updated>2026-07-13T23:02:01.988005+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0cabce34-b859-4d75-a491-4cced6d4a0f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:57.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0cabce34-b859-4d75-a491-4cced6d4a0f9/export"/>
    <published>2025-10-01T18:11:57+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d9f412d7-652f-4645-8247-c88dc0fc8256/export</id>
    <title>d9f412d7-652f-4645-8247-c88dc0fc8256</title>
    <updated>2026-07-13T23:02:01.988065+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d9f412d7-652f-4645-8247-c88dc0fc8256", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2961", "type": "published-proof-of-concept", "source": "Telegram/6lKByArH9FS3kGV0eBc5AxMt53ZNy3FxF1pgZuVY2NXgTHI", "content": "", "creation_timestamp": "2025-08-21T15:00:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d9f412d7-652f-4645-8247-c88dc0fc8256/export"/>
    <published>2025-08-21T15:00:06+00:00</published>
  </entry>
</feed>
