<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 18 Jul 2026 04:36:46 +0000</lastBuildDate>
    <item>
      <title>31abd344-4220-4ef2-b3ad-27cfdf7061fb</title>
      <link>https://vulnerability.circl.lu/sighting/31abd344-4220-4ef2-b3ad-27cfdf7061fb/export</link>
      <description>{"uuid": "31abd344-4220-4ef2-b3ad-27cfdf7061fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2334", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16742", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-2334\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The edd-google-sheet-connector-pro WordPress plugin before 1.4, Easy Digital Downloads Google Sheet Connector WordPress plugin before 1.6.6 does not have CSRF check when updating its Access Code, which could allow attackers to make logged in admin change the access code to an arbitrary one via a CSRF attack\n\ud83d\udccf Published: 2025-05-15T20:08:56.575Z\n\ud83d\udccf Modified: 2025-05-16T18:35:06.742Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/95562684-2bb1-46f0-838c-8501db6b43ed/", "creation_timestamp": "2025-05-16T19:34:43.000000Z"}</description>
      <content:encoded>{"uuid": "31abd344-4220-4ef2-b3ad-27cfdf7061fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2334", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16742", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-2334\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The edd-google-sheet-connector-pro WordPress plugin before 1.4, Easy Digital Downloads Google Sheet Connector WordPress plugin before 1.6.6 does not have CSRF check when updating its Access Code, which could allow attackers to make logged in admin change the access code to an arbitrary one via a CSRF attack\n\ud83d\udccf Published: 2025-05-15T20:08:56.575Z\n\ud83d\udccf Modified: 2025-05-16T18:35:06.742Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/95562684-2bb1-46f0-838c-8501db6b43ed/", "creation_timestamp": "2025-05-16T19:34:43.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/31abd344-4220-4ef2-b3ad-27cfdf7061fb/export</guid>
      <pubDate>Fri, 16 May 2025 19:34:43 +0000</pubDate>
    </item>
    <item>
      <title>f4d05061-ea02-4414-9f9a-83d610ab2329</title>
      <link>https://vulnerability.circl.lu/sighting/f4d05061-ea02-4414-9f9a-83d610ab2329/export</link>
      <description>{"uuid": "f4d05061-ea02-4414-9f9a-83d610ab2329", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23347", "type": "seen", "source": "https://t.me/cibsecurity/68143", "content": "\u203c CVE-2023-23347 \u203c\n\nHCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:12.000000Z"}</description>
      <content:encoded>{"uuid": "f4d05061-ea02-4414-9f9a-83d610ab2329", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23347", "type": "seen", "source": "https://t.me/cibsecurity/68143", "content": "\u203c CVE-2023-23347 \u203c\n\nHCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T00:15:12.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f4d05061-ea02-4414-9f9a-83d610ab2329/export</guid>
      <pubDate>Thu, 10 Aug 2023 00:15:12 +0000</pubDate>
    </item>
    <item>
      <title>23f3ac99-ae3a-476d-99b4-6403b99d17c0</title>
      <link>https://vulnerability.circl.lu/sighting/23f3ac99-ae3a-476d-99b4-6403b99d17c0/export</link>
      <description>{"uuid": "23f3ac99-ae3a-476d-99b4-6403b99d17c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23348", "type": "seen", "source": "https://t.me/cibsecurity/66295", "content": "\u203c CVE-2023-23348 \u203c\n\nHCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-10T22:24:00.000000Z"}</description>
      <content:encoded>{"uuid": "23f3ac99-ae3a-476d-99b4-6403b99d17c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23348", "type": "seen", "source": "https://t.me/cibsecurity/66295", "content": "\u203c CVE-2023-23348 \u203c\n\nHCL Launch could disclose sensitive information if a manual edit of a configuration file has been performed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-10T22:24:00.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/23f3ac99-ae3a-476d-99b4-6403b99d17c0/export</guid>
      <pubDate>Mon, 10 Jul 2023 22:24:00 +0000</pubDate>
    </item>
    <item>
      <title>3555c102-180e-42ca-bba4-c8da796cd45a</title>
      <link>https://vulnerability.circl.lu/sighting/3555c102-180e-42ca-bba4-c8da796cd45a/export</link>
      <description>{"uuid": "3555c102-180e-42ca-bba4-c8da796cd45a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23344", "type": "seen", "source": "https://t.me/cibsecurity/65443", "content": "\u203c CVE-2023-23344 \u203c\n\nA permission issue in BigFix WebUI Insights site version 14 allows an authenticated, unprivileged operator to access an administrator page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-23T12:33:18.000000Z"}</description>
      <content:encoded>{"uuid": "3555c102-180e-42ca-bba4-c8da796cd45a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23344", "type": "seen", "source": "https://t.me/cibsecurity/65443", "content": "\u203c CVE-2023-23344 \u203c\n\nA permission issue in BigFix WebUI Insights site version 14 allows an authenticated, unprivileged operator to access an administrator page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-23T12:33:18.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3555c102-180e-42ca-bba4-c8da796cd45a/export</guid>
      <pubDate>Fri, 23 Jun 2023 12:33:18 +0000</pubDate>
    </item>
  </channel>
</rss>
