<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-16T20:58:25.394600+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3005d8d4-ca9d-408f-b409-3c8e6dedcfc7/export</id>
    <title>3005d8d4-ca9d-408f-b409-3c8e6dedcfc7</title>
    <updated>2026-07-16T20:58:25.749873+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3005d8d4-ca9d-408f-b409-3c8e6dedcfc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25473", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3m7gmdqjtmk2i", "content": "", "creation_timestamp": "2025-12-07T22:55:38.552072Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3005d8d4-ca9d-408f-b409-3c8e6dedcfc7/export"/>
    <published>2025-12-07T22:55:38.552072+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/6652fa0e-2a3f-4abf-a511-be5ae8d60285/export</id>
    <title>6652fa0e-2a3f-4abf-a511-be5ae8d60285</title>
    <updated>2026-07-16T20:58:25.754814+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "6652fa0e-2a3f-4abf-a511-be5ae8d60285", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "seen", "source": "https://t.me/cvedetector/20755", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2547 - D-Link DIR-618 and DIR-605L Local File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2547 \nPublished : March 20, 2025, 4:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T19:54:41.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/6652fa0e-2a3f-4abf-a511-be5ae8d60285/export"/>
    <published>2025-03-20T19:54:41+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8639c334-66d1-4595-ae9c-cec831328e8e/export</id>
    <title>8639c334-66d1-4595-ae9c-cec831328e8e</title>
    <updated>2026-07-16T20:58:25.755231+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8639c334-66d1-4595-ae9c-cec831328e8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkt6sl5cq22x", "content": "", "creation_timestamp": "2025-03-20T17:08:54.957296Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8639c334-66d1-4595-ae9c-cec831328e8e/export"/>
    <published>2025-03-20T17:08:54.957296+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7554927b-ad7c-4abd-af14-2d32da750caa/export</id>
    <title>7554927b-ad7c-4abd-af14-2d32da750caa</title>
    <updated>2026-07-16T20:58:25.755524+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7554927b-ad7c-4abd-af14-2d32da750caa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8233", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2547\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.\n\ud83d\udccf Published: 2025-03-20T15:31:14.499Z\n\ud83d\udccf Modified: 2025-03-20T15:31:14.499Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300161\n2. https://vuldb.com/?ctiid.300161\n3. https://vuldb.com/?submit.516789\n4. https://lavender-bicycle-a5a.notion.site/D-Link-DIR-618-formAdvNetwork-1b053a41781f8085a4e8d3c1d1de5f56?pvs=4\n5. https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvNetwork-1b153a41781f80109325dbc96ffc0295?pvs=4\n6. https://www.dlink.com/", "creation_timestamp": "2025-03-20T16:18:24.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7554927b-ad7c-4abd-af14-2d32da750caa/export"/>
    <published>2025-03-20T16:18:24+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/1c58e93a-f921-445f-bcf4-b54d699b2d50/export</id>
    <title>1c58e93a-f921-445f-bcf4-b54d699b2d50</title>
    <updated>2026-07-16T20:58:25.755847+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "1c58e93a-f921-445f-bcf4-b54d699b2d50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25478", "type": "seen", "source": "Telegram/JW5Q7YJObYM1Wu0JJadvWu-BK9ANNSMIfO7ZxTpLh5r4kDFj", "content": "", "creation_timestamp": "2025-03-02T11:46:30.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/1c58e93a-f921-445f-bcf4-b54d699b2d50/export"/>
    <published>2025-03-02T11:46:30+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e95939e8-789a-4508-a3d8-37219fc000d2/export</id>
    <title>e95939e8-789a-4508-a3d8-37219fc000d2</title>
    <updated>2026-07-16T20:58:25.756098+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e95939e8-789a-4508-a3d8-37219fc000d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25476", "type": "seen", "source": "Telegram/3xB6M54-wSCQN7enHt26ebBCCT1YEan57cXsGm01RSafoLfk", "content": "", "creation_timestamp": "2025-03-02T11:46:30.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e95939e8-789a-4508-a3d8-37219fc000d2/export"/>
    <published>2025-03-02T11:46:30+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/de3c7399-a35f-4b89-8bdd-acadf7f9c11a/export</id>
    <title>de3c7399-a35f-4b89-8bdd-acadf7f9c11a</title>
    <updated>2026-07-16T20:58:25.756234+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "de3c7399-a35f-4b89-8bdd-acadf7f9c11a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25477", "type": "seen", "source": "Telegram/xvZCT4UgKPo96JnQ7twQUiScLaIvrNcCGdnoyKC_rd4mo6MD", "content": "", "creation_timestamp": "2025-03-02T11:45:37.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/de3c7399-a35f-4b89-8bdd-acadf7f9c11a/export"/>
    <published>2025-03-02T11:45:37+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8b9e5b33-15e0-47d1-9b71-61613e392d1b/export</id>
    <title>8b9e5b33-15e0-47d1-9b71-61613e392d1b</title>
    <updated>2026-07-16T20:58:25.756331+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8b9e5b33-15e0-47d1-9b71-61613e392d1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25477", "type": "seen", "source": "Telegram/cZiMlUZG82jBqO0dhj1yHS79N6xQ424D0JwYIM4KIH2wBj1p", "content": "", "creation_timestamp": "2025-03-02T11:44:21.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8b9e5b33-15e0-47d1-9b71-61613e392d1b/export"/>
    <published>2025-03-02T11:44:21+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/3ae6648d-fb46-419a-adc3-1db0cc628942/export</id>
    <title>3ae6648d-fb46-419a-adc3-1db0cc628942</title>
    <updated>2026-07-16T20:58:25.756424+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "3ae6648d-fb46-419a-adc3-1db0cc628942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25478", "type": "seen", "source": "https://t.me/cvedetector/19195", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25478 - Syspass Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25478 \nPublished : Feb. 28, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : The account file upload functionality in Syspass 3.2.x fails to properly handle special characters in filenames. This mismanagement leads to the disclosure of the web application s source code, exposing sensitive information such as the database password. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T02:13:45.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/3ae6648d-fb46-419a-adc3-1db0cc628942/export"/>
    <published>2025-03-01T02:13:45+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/243dde0d-6cb8-4129-85ce-01ed21025da3/export</id>
    <title>243dde0d-6cb8-4129-85ce-01ed21025da3</title>
    <updated>2026-07-16T20:58:25.756541+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "243dde0d-6cb8-4129-85ce-01ed21025da3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25476", "type": "seen", "source": "https://t.me/cvedetector/19194", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25476 - SysPass Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25476 \nPublished : Feb. 28, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : A stored cross-site scripting (XSS) vulnerability in SysPass 3.2.x allows a malicious user with elevated privileges to execute arbitrary Javascript code by specifying a malicious XSS payload as a notification type or notification component. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T02:13:44.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/243dde0d-6cb8-4129-85ce-01ed21025da3/export"/>
    <published>2025-03-01T02:13:44+00:00</published>
  </entry>
</feed>
