<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-11T20:24:43.864163+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/dee09495-f694-4104-93f1-03d12b4835b6/export</id>
    <title>dee09495-f694-4104-93f1-03d12b4835b6</title>
    <updated>2026-07-11T20:24:43.887338+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "dee09495-f694-4104-93f1-03d12b4835b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/ckeArsenal/132", "content": "https://github.com/LauLeysen/CVE-2024-46538\n\nCVE-2024-46538 : PfSense Stored XSS Vulnerability\n#github #exploit #xss", "creation_timestamp": "2024-12-21T15:55:06.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/dee09495-f694-4104-93f1-03d12b4835b6/export"/>
    <published>2024-12-21T15:55:06+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/082ff62f-7043-41a2-bb37-c0dbaec4505e/export</id>
    <title>082ff62f-7043-41a2-bb37-c0dbaec4505e</title>
    <updated>2026-07-11T20:24:43.891272+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "082ff62f-7043-41a2-bb37-c0dbaec4505e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11522", "content": "#exploit\n1. CVE-2024-46538:\nPfSense Stored XSS\nhttps://github.com/LauLeysen/CVE-2024-46538\n\n2. CVE-2024-35286/41713:\nMitel MiCollab SQLI / Path Traversal\nhttps://labs.watchtowr.com/where-theres-smoke-theres-fire-mitel-micollab-cve-2024-35286-cve-2024-41713-and-an-0day\n\n3. CVE-2023-6200:\nLinux Kernel ICMPv6 Race Condtion\nhttps://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html", "creation_timestamp": "2024-12-06T11:00:37.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/082ff62f-7043-41a2-bb37-c0dbaec4505e/export"/>
    <published>2024-12-06T11:00:37+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/28ca37a7-a898-4833-8b12-f76bed78c811/export</id>
    <title>28ca37a7-a898-4833-8b12-f76bed78c811</title>
    <updated>2026-07-11T20:24:43.891440+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "28ca37a7-a898-4833-8b12-f76bed78c811", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/5389", "content": "#exploit\n1. CVE-2024-46538:\nPfSense Stored XSS\nhttps://github.com/LauLeysen/CVE-2024-46538\n\n2. CVE-2024-35286/41713:\nMitel MiCollab SQLI / Path Traversal\nhttps://labs.watchtowr.com/where-theres-smoke-theres-fire-mitel-micollab-cve-2024-35286-cve-2024-41713-and-an-0day\n\n3. CVE-2023-6200:\nLinux Kernel ICMPv6 Race Condtion\nhttps://u1f383.github.io/linux/2024/12/04/linux-kernel-icmpv6-and-cve-2023-6200.html", "creation_timestamp": "2024-12-06T10:12:49.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/28ca37a7-a898-4833-8b12-f76bed78c811/export"/>
    <published>2024-12-06T10:12:49+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/87cf2f88-b9c9-42d8-a04b-b80e8395ab85/export</id>
    <title>87cf2f88-b9c9-42d8-a04b-b80e8395ab85</title>
    <updated>2026-07-11T20:24:43.891574+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "87cf2f88-b9c9-42d8-a04b-b80e8395ab85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/651", "content": "Tools - Hackers Factory \n\nFrida Script Runner v1.3 is a versatile web-based tool designed for Android and iOS penetration testing purposes.\n\nhttps://github.com/z3n70/Frida-Script-Runner\n\nProof-of-Concept for CVE-2024-46538\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\nEMBA v1.5.0 - SBOMdorado\n\nhttps://github.com/e-m-b-a/emba/releases/tag/v1.5.0-SBOMdorado\n\nCSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT)\n\nhttps://github.com/doyensec/CSPTPlayground\n\nCVE_2024_26926_Analysis.pdf\n\nhttps://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf\n\nDeobfuscate obfuscator.io, unminify and unpack bundled javascript\n\nhttps://github.com/j4k0xb/webcrack\n\nFree, open-source no-code web data extraction platform. Build custom robots to automate data scraping\n\nhttps://github.com/getmaxun/maxun\n\n#CyberDilara\nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-09T04:45:17.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/87cf2f88-b9c9-42d8-a04b-b80e8395ab85/export"/>
    <published>2024-11-09T04:45:17+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1f0d1b6d-5da3-4444-98db-a8ff32b88874/export</id>
    <title>1f0d1b6d-5da3-4444-98db-a8ff32b88874</title>
    <updated>2026-07-11T20:24:43.891700+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1f0d1b6d-5da3-4444-98db-a8ff32b88874", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/24315", "content": "Tools - Hackers Factory \n\nFrida Script Runner v1.3 is a versatile web-based tool designed for Android and iOS penetration testing purposes.\n\nhttps://github.com/z3n70/Frida-Script-Runner\n\nProof-of-Concept for CVE-2024-46538\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\nEMBA v1.5.0 - SBOMdorado\n\nhttps://github.com/e-m-b-a/emba/releases/tag/v1.5.0-SBOMdorado\n\nCSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT)\n\nhttps://github.com/doyensec/CSPTPlayground\n\nCVE_2024_26926_Analysis.pdf\n\nhttps://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf\n\nDeobfuscate obfuscator.io, unminify and unpack bundled javascript\n\nhttps://github.com/j4k0xb/webcrack\n\nFree, open-source no-code web data extraction platform. Build custom robots to automate data scraping\n\nhttps://github.com/getmaxun/maxun\n\n#CyberDilara\nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-09T04:45:16.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1f0d1b6d-5da3-4444-98db-a8ff32b88874/export"/>
    <published>2024-11-09T04:45:16+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/5a5c572d-b626-4634-8076-841bf8558d83/export</id>
    <title>5a5c572d-b626-4634-8076-841bf8558d83</title>
    <updated>2026-07-11T20:24:43.891809+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "5a5c572d-b626-4634-8076-841bf8558d83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/7617", "content": "Tools - Hackers Factory \n\nFrida Script Runner v1.3 is a versatile web-based tool designed for Android and iOS penetration testing purposes.\n\nhttps://github.com/z3n70/Frida-Script-Runner\n\nProof-of-Concept for CVE-2024-46538\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\nEMBA v1.5.0 - SBOMdorado\n\nhttps://github.com/e-m-b-a/emba/releases/tag/v1.5.0-SBOMdorado\n\nCSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT)\n\nhttps://github.com/doyensec/CSPTPlayground\n\nCVE_2024_26926_Analysis.pdf\n\nhttps://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf\n\nDeobfuscate obfuscator.io, unminify and unpack bundled javascript\n\nhttps://github.com/j4k0xb/webcrack\n\nFree, open-source no-code web data extraction platform. Build custom robots to automate data scraping\n\nhttps://github.com/getmaxun/maxun\n\n#CyberDilara\nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-09T04:45:10.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/5a5c572d-b626-4634-8076-841bf8558d83/export"/>
    <published>2024-11-09T04:45:10+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7fcc95ff-e5a6-427c-af9a-0c3eb26fc3e1/export</id>
    <title>7fcc95ff-e5a6-427c-af9a-0c3eb26fc3e1</title>
    <updated>2026-07-11T20:24:43.891915+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7fcc95ff-e5a6-427c-af9a-0c3eb26fc3e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/8992", "content": "Tools - Hackers Factory \n\nFrida Script Runner v1.3 is a versatile web-based tool designed for Android and iOS penetration testing purposes.\n\nhttps://github.com/z3n70/Frida-Script-Runner\n\nProof-of-Concept for CVE-2024-46538\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\nEMBA v1.5.0 - SBOMdorado\n\nhttps://github.com/e-m-b-a/emba/releases/tag/v1.5.0-SBOMdorado\n\nCSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT)\n\nhttps://github.com/doyensec/CSPTPlayground\n\nCVE_2024_26926_Analysis.pdf\n\nhttps://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf\n\nDeobfuscate obfuscator.io, unminify and unpack bundled javascript\n\nhttps://github.com/j4k0xb/webcrack\n\nFree, open-source no-code web data extraction platform. Build custom robots to automate data scraping\n\nhttps://github.com/getmaxun/maxun\n\n#CyberDilara\nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-09T04:45:10.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7fcc95ff-e5a6-427c-af9a-0c3eb26fc3e1/export"/>
    <published>2024-11-09T04:45:10+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/48209d64-1bf2-49ff-abef-97efce84f0d7/export</id>
    <title>48209d64-1bf2-49ff-abef-97efce84f0d7</title>
    <updated>2026-07-11T20:24:43.892032+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "48209d64-1bf2-49ff-abef-97efce84f0d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3888", "content": "Tools - Hackers Factory \n\nFrida Script Runner v1.3 is a versatile web-based tool designed for Android and iOS penetration testing purposes.\n\nhttps://github.com/z3n70/Frida-Script-Runner\n\nProof-of-Concept for CVE-2024-46538\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\nEMBA v1.5.0 - SBOMdorado\n\nhttps://github.com/e-m-b-a/emba/releases/tag/v1.5.0-SBOMdorado\n\nCSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT)\n\nhttps://github.com/doyensec/CSPTPlayground\n\nCVE_2024_26926_Analysis.pdf\n\nhttps://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf\n\nDeobfuscate obfuscator.io, unminify and unpack bundled javascript\n\nhttps://github.com/j4k0xb/webcrack\n\nFree, open-source no-code web data extraction platform. Build custom robots to automate data scraping\n\nhttps://github.com/getmaxun/maxun\n\n#CyberDilara\nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-09T03:35:05.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/48209d64-1bf2-49ff-abef-97efce84f0d7/export"/>
    <published>2024-11-09T03:35:05+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/eb81cf1a-a1b4-4d33-a2ae-7ed60dc4c771/export</id>
    <title>eb81cf1a-a1b4-4d33-a2ae-7ed60dc4c771</title>
    <updated>2026-07-11T20:24:43.892156+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "eb81cf1a-a1b4-4d33-a2ae-7ed60dc4c771", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46538", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1195", "content": "Tools - Hackers Factory \n\nFrida Script Runner v1.3 is a versatile web-based tool designed for Android and iOS penetration testing purposes.\n\nhttps://github.com/z3n70/Frida-Script-Runner\n\nProof-of-Concept for CVE-2024-46538\n\nhttps://github.com/EQSTLab/CVE-2024-46538\n\nEMBA v1.5.0 - SBOMdorado\n\nhttps://github.com/e-m-b-a/emba/releases/tag/v1.5.0-SBOMdorado\n\nCSPTPlayground is an open-source playground to find and exploit Client-Side Path Traversal (CSPT)\n\nhttps://github.com/doyensec/CSPTPlayground\n\nCVE_2024_26926_Analysis.pdf\n\nhttps://github.com/MaherAzzouzi/LinuxKernel-nday/blob/main/CVE-2024-26926/CVE_2024_26926_Analysis.pdf\n\nDeobfuscate obfuscator.io, unminify and unpack bundled javascript\n\nhttps://github.com/j4k0xb/webcrack\n\nFree, open-source no-code web data extraction platform. Build custom robots to automate data scraping\n\nhttps://github.com/getmaxun/maxun\n\n#CyberDilara\nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-09T03:34:05.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/eb81cf1a-a1b4-4d33-a2ae-7ed60dc4c771/export"/>
    <published>2024-11-09T03:34:05+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/c446d6fb-3d19-4ff7-9782-97f02f20ad21/export</id>
    <title>c446d6fb-3d19-4ff7-9782-97f02f20ad21</title>
    <updated>2026-07-11T20:24:43.892263+00:00</updated>
    <author>
      <name>Alexandre Dulaunoy</name>
      <uri>https://cvepremium.circl.lu/user/adulau</uri>
    </author>
    <content>{"uuid": "c446d6fb-3d19-4ff7-9782-97f02f20ad21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-46538", "type": "seen", "source": "", "content": "", "creation_timestamp": "2024-11-05T12:24:03.827273Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/c446d6fb-3d19-4ff7-9782-97f02f20ad21/export"/>
    <published>2024-11-05T12:24:03.827273+00:00</published>
  </entry>
</feed>
