<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-10T17:25:57.937424+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/65bc6ce3-c1be-4ed1-8b6c-e4d127fa3668/export</id>
    <title>65bc6ce3-c1be-4ed1-8b6c-e4d127fa3668</title>
    <updated>2026-07-10T17:25:57.960699+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "65bc6ce3-c1be-4ed1-8b6c-e4d127fa3668", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30251", "type": "seen", "source": "https://gist.github.com/konard/0d69c914be52c3cee3437d4858b1c259", "content": "", "creation_timestamp": "2026-01-19T23:20:05.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/65bc6ce3-c1be-4ed1-8b6c-e4d127fa3668/export"/>
    <published>2026-01-19T23:20:05+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9c81506f-1a03-4ec8-b075-4038bc7a647a/export</id>
    <title>9c81506f-1a03-4ec8-b075-4038bc7a647a</title>
    <updated>2026-07-10T17:25:57.963049+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9c81506f-1a03-4ec8-b075-4038bc7a647a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30251", "type": "seen", "source": "https://gist.github.com/konard/3de926e0381015c1d03f701f6ead1cf4", "content": "", "creation_timestamp": "2026-01-19T23:19:21.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9c81506f-1a03-4ec8-b075-4038bc7a647a/export"/>
    <published>2026-01-19T23:19:21+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/b370d1e0-dcd8-43b7-990b-ff98a6d166b6/export</id>
    <title>b370d1e0-dcd8-43b7-990b-ff98a6d166b6</title>
    <updated>2026-07-10T17:25:57.963165+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "b370d1e0-dcd8-43b7-990b-ff98a6d166b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30251", "type": "seen", "source": "https://gist.github.com/konard/af34f7028e9587a38f0f44025c8a3907", "content": "", "creation_timestamp": "2026-01-19T23:19:13.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/b370d1e0-dcd8-43b7-990b-ff98a6d166b6/export"/>
    <published>2026-01-19T23:19:13+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1245e9e7-4728-46fc-8eba-ac2c109bdf09/export</id>
    <title>1245e9e7-4728-46fc-8eba-ac2c109bdf09</title>
    <updated>2026-07-10T17:25:57.963251+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1245e9e7-4728-46fc-8eba-ac2c109bdf09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30251", "type": "seen", "source": "https://gist.github.com/konard/2ab7f7aec831dac7fe234e8446d13f57", "content": "", "creation_timestamp": "2026-01-19T23:16:44.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1245e9e7-4728-46fc-8eba-ac2c109bdf09/export"/>
    <published>2026-01-19T23:16:44+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/0d069dae-0f56-40a0-b168-0028fe3003e6/export</id>
    <title>0d069dae-0f56-40a0-b168-0028fe3003e6</title>
    <updated>2026-07-10T17:25:57.963333+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "0d069dae-0f56-40a0-b168-0028fe3003e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30251", "type": "seen", "source": "https://gist.github.com/konard/2f071c4633544cee29412109ee72a019", "content": "", "creation_timestamp": "2026-01-19T22:03:49.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/0d069dae-0f56-40a0-b168-0028fe3003e6/export"/>
    <published>2026-01-19T22:03:49+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/2d46c2f3-3f78-4610-811b-0dcb69126300/export</id>
    <title>2d46c2f3-3f78-4610-811b-0dcb69126300</title>
    <updated>2026-07-10T17:25:57.963418+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "2d46c2f3-3f78-4610-811b-0dcb69126300", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30257", "type": "seen", "source": "Telegram/sdT_ItN5n-Gh__cFuKXh9uNHgbZA5UNVm688Yg3fqHRRAMrM", "content": "", "creation_timestamp": "2025-02-14T10:03:10.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/2d46c2f3-3f78-4610-811b-0dcb69126300/export"/>
    <published>2025-02-14T10:03:10+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/9ae47b64-3b98-4d30-a90c-51207d195368/export</id>
    <title>9ae47b64-3b98-4d30-a90c-51207d195368</title>
    <updated>2026-07-10T17:25:57.963497+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "9ae47b64-3b98-4d30-a90c-51207d195368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3025", "type": "seen", "source": "https://t.me/arpsyndicate/4556", "content": "#ExploitObserverAlert\n\nCVE-2024-3025\n\nDESCRIPTION: Exploit Observer has 3 entries in 1 file formats related to CVE-2024-3025. mintplex-labs/anything-llm is vulnerable to path traversal attacks due to insufficient validation of user-supplied input in the logo filename functionality. Attackers can exploit this vulnerability by manipulating the logo filename to reference files outside of the restricted directory. This can lead to unauthorized reading or deletion of files by utilizing the `/api/system/upload-logo` and `/api/system/logo` endpoints. The issue stems from the lack of filtering or validation on the logo filename, allowing attackers to target sensitive files such as the application's database.\n\nFIRST-EPSS: 0.000430000\nARPS-EXPLOITABILITY: 0.5780347", "creation_timestamp": "2024-04-12T07:47:08.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/9ae47b64-3b98-4d30-a90c-51207d195368/export"/>
    <published>2024-04-12T07:47:08+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/d449b75a-7ec3-4a94-94ad-cd8f36ae6bb2/export</id>
    <title>d449b75a-7ec3-4a94-94ad-cd8f36ae6bb2</title>
    <updated>2026-07-10T17:25:57.963588+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "d449b75a-7ec3-4a94-94ad-cd8f36ae6bb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30255", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6995", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-30255 This repository contains a proof-of-concept (PoC) Python script to demonstrate the CPU exhaustion vulnerability in Envoy caused  by a flood of CONTINUATION frames.\nURL\uff1ahttps://github.com/blackmagic2023/Envoy-CPU-Exhaustion-Vulnerability-PoC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-04-09T16:01:36.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/d449b75a-7ec3-4a94-94ad-cd8f36ae6bb2/export"/>
    <published>2024-04-09T16:01:36+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/bc8c67ea-8745-4e61-97d1-d117e6f623b5/export</id>
    <title>bc8c67ea-8745-4e61-97d1-d117e6f623b5</title>
    <updated>2026-07-10T17:25:57.963674+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "bc8c67ea-8745-4e61-97d1-d117e6f623b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30255", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/1998", "content": "CVE-2024-27316 \u0410\u0442\u0430\u043a\u0430 \u043d\u0430 http/2\n*\n\u041f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438\n*\n\u041a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u043e CVE-2024-27316  \u0432\u043b\u0438\u044f\u0435\u0442 \u043d\u0430 \u0434\u0440\u0443\u0433\u0438\u0435 CVE:\nCVE-2024-30255 (untested)\nCVE-2024-31309 (untested)\nCVE-2024-28182 (untested) \nCVE-2024-2653 (untested)\nCVE-2024-27919 (untested)\n*\nUsage:\ngo build\n./cve-2024-27316 -t 127.0.0.1:80 -p http -i 8192\n./cve-2024-27316 -t 127.0.0.1:443 -p https -i 8192\n*\nPOC exploit", "creation_timestamp": "2024-04-09T15:41:27.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/bc8c67ea-8745-4e61-97d1-d117e6f623b5/export"/>
    <published>2024-04-09T15:41:27+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/75ab3feb-517c-42d8-984d-e077db7c8189/export</id>
    <title>75ab3feb-517c-42d8-984d-e077db7c8189</title>
    <updated>2026-07-10T17:25:57.963765+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "75ab3feb-517c-42d8-984d-e077db7c8189", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30255", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6990", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aProof of concept (PoC) for CVE-2024-27316 (tested), CVE-2024-30255 (untested), CVE-2024-31309 (untested), CVE-2024-28182 (untested), CVE-2024-2653 (untested) and CVE-2024-27919 (untested)\nURL\uff1ahttps://github.com/lockness-Ko/CVE-2024-27316\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-04-09T08:14:27.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/75ab3feb-517c-42d8-984d-e077db7c8189/export"/>
    <published>2024-04-09T08:14:27+00:00</published>
  </entry>
</feed>
