Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 12 Jun 2026 02:15:42 +0000 fc208ea2-755e-4005-abaf-405091133b5d https://vulnerability.circl.lu/sighting/fc208ea2-755e-4005-abaf-405091133b5d/export {"uuid": "fc208ea2-755e-4005-abaf-405091133b5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30287", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12507", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30287\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Authentication vulnerability that could result in arbitrary code execution in the context of the current user. A low privileged attacker with local access could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction in that a victim must be coerced into performing actions within the application and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:03:02.492Z\n\ud83d\udccf Modified: 2025-04-18T17:52:35.491Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:29.000000Z"} {"uuid": "fc208ea2-755e-4005-abaf-405091133b5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30287", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12507", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30287\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Authentication vulnerability that could result in arbitrary code execution in the context of the current user. A low privileged attacker with local access could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction in that a victim must be coerced into performing actions within the application and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:03:02.492Z\n\ud83d\udccf Modified: 2025-04-18T17:52:35.491Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:29.000000Z"} https://vulnerability.circl.lu/sighting/fc208ea2-755e-4005-abaf-405091133b5d/export Fri, 18 Apr 2025 17:59:29 +0000 4899cf8c-695f-4456-ba1a-d94e06d9d7ab https://vulnerability.circl.lu/sighting/4899cf8c-695f-4456-ba1a-d94e06d9d7ab/export {"uuid": "4899cf8c-695f-4456-ba1a-d94e06d9d7ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30286", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12508", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30286\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. A high-privileged attacker could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:02:48.704Z\n\ud83d\udccf Modified: 2025-04-18T17:49:52.379Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:30.000000Z"} {"uuid": "4899cf8c-695f-4456-ba1a-d94e06d9d7ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30286", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12508", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30286\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. A high-privileged attacker could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:02:48.704Z\n\ud83d\udccf Modified: 2025-04-18T17:49:52.379Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:30.000000Z"} https://vulnerability.circl.lu/sighting/4899cf8c-695f-4456-ba1a-d94e06d9d7ab/export Fri, 18 Apr 2025 17:59:30 +0000 ea44c02f-5328-4c6c-bfde-eced28217979 https://vulnerability.circl.lu/sighting/ea44c02f-5328-4c6c-bfde-eced28217979/export {"uuid": "ea44c02f-5328-4c6c-bfde-eced28217979", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30285", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12516", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30285\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:02:50.212Z\n\ud83d\udccf Modified: 2025-04-18T17:35:35.238Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:44.000000Z"} {"uuid": "ea44c02f-5328-4c6c-bfde-eced28217979", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30285", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12516", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30285\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:02:50.212Z\n\ud83d\udccf Modified: 2025-04-18T17:35:35.238Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:44.000000Z"} https://vulnerability.circl.lu/sighting/ea44c02f-5328-4c6c-bfde-eced28217979/export Fri, 18 Apr 2025 17:59:44 +0000 6ec405b2-2db5-4e57-84de-c343466c85b7 https://vulnerability.circl.lu/sighting/6ec405b2-2db5-4e57-84de-c343466c85b7/export {"uuid": "6ec405b2-2db5-4e57-84de-c343466c85b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30284", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12517", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30284\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:02:58.049Z\n\ud83d\udccf Modified: 2025-04-18T17:35:07.424Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:45.000000Z"} {"uuid": "6ec405b2-2db5-4e57-84de-c343466c85b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30284", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12517", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30284\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by a Deserialization of Untrusted Data vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction and scope is changed.\n\ud83d\udccf Published: 2025-04-08T20:02:58.049Z\n\ud83d\udccf Modified: 2025-04-18T17:35:07.424Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:45.000000Z"} https://vulnerability.circl.lu/sighting/6ec405b2-2db5-4e57-84de-c343466c85b7/export Fri, 18 Apr 2025 17:59:45 +0000 7f8be21e-2d9b-4ecd-a1ff-22bebe874234 https://vulnerability.circl.lu/sighting/7f8be21e-2d9b-4ecd-a1ff-22bebe874234/export {"uuid": "7f8be21e-2d9b-4ecd-a1ff-22bebe874234", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30282", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12518", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30282\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Authentication vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass authentication mechanisms and execute code. Exploitation of this issue does not require user interaction.\n\ud83d\udccf Published: 2025-04-08T20:02:59.068Z\n\ud83d\udccf Modified: 2025-04-18T17:20:50.879Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:46.000000Z"} {"uuid": "7f8be21e-2d9b-4ecd-a1ff-22bebe874234", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30282", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12518", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30282\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Authentication vulnerability that could result in arbitrary code execution in the context of the current user. A high-privileged attacker could leverage this vulnerability to bypass authentication mechanisms and execute code. Exploitation of this issue does not require user interaction.\n\ud83d\udccf Published: 2025-04-08T20:02:59.068Z\n\ud83d\udccf Modified: 2025-04-18T17:20:50.879Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T17:59:46.000000Z"} https://vulnerability.circl.lu/sighting/7f8be21e-2d9b-4ecd-a1ff-22bebe874234/export Fri, 18 Apr 2025 17:59:46 +0000 1b7ce559-d15b-457e-a6ec-739a4825aafb https://vulnerability.circl.lu/sighting/1b7ce559-d15b-457e-a6ec-739a4825aafb/export {"uuid": "1b7ce559-d15b-457e-a6ec-739a4825aafb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30289", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12533", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30289\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. A low privileged attacker with local access could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction in that a victim must be coerced into performing actions within the application.\n\ud83d\udccf Published: 2025-04-08T20:02:56.190Z\n\ud83d\udccf Modified: 2025-04-18T17:56:52.882Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T18:58:55.000000Z"} {"uuid": "1b7ce559-d15b-457e-a6ec-739a4825aafb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30289", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12533", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-30289\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: ColdFusion versions 2023.12, 2021.18, 2025.0 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability that could lead in arbitrary code execution by an attacker. A low privileged attacker with local access could leverage this vulnerability to bypass security protections and execute code. Exploitation of this issue requires user interaction in that a victim must be coerced into performing actions within the application.\n\ud83d\udccf Published: 2025-04-08T20:02:56.190Z\n\ud83d\udccf Modified: 2025-04-18T17:56:52.882Z\n\ud83d\udd17 References:\n1. https://helpx.adobe.com/security/products/coldfusion/apsb25-15.html", "creation_timestamp": "2025-04-18T18:58:55.000000Z"} https://vulnerability.circl.lu/sighting/1b7ce559-d15b-457e-a6ec-739a4825aafb/export Fri, 18 Apr 2025 18:58:55 +0000 7db5be0e-b438-4fc8-9aed-a7b168a865a4 https://vulnerability.circl.lu/sighting/7db5be0e-b438-4fc8-9aed-a7b168a865a4/export {"uuid": "7db5be0e-b438-4fc8-9aed-a7b168a865a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30288", "type": "seen", "source": "https://bsky.app/profile/hoyahaxa.bsky.social/post/3lsgjb6emgc25", "content": "", "creation_timestamp": "2025-06-25T11:32:57.975470Z"} {"uuid": "7db5be0e-b438-4fc8-9aed-a7b168a865a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30288", "type": "seen", "source": "https://bsky.app/profile/hoyahaxa.bsky.social/post/3lsgjb6emgc25", "content": "", "creation_timestamp": "2025-06-25T11:32:57.975470Z"} https://vulnerability.circl.lu/sighting/7db5be0e-b438-4fc8-9aed-a7b168a865a4/export Wed, 25 Jun 2025 11:32:57 +0000 13568d18-54d0-48e5-8c06-46809d9306db https://vulnerability.circl.lu/sighting/13568d18-54d0-48e5-8c06-46809d9306db/export {"uuid": "13568d18-54d0-48e5-8c06-46809d9306db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30288", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lsgkllxt232p", "content": "", "creation_timestamp": "2025-06-25T11:56:38.499546Z"} {"uuid": "13568d18-54d0-48e5-8c06-46809d9306db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30288", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lsgkllxt232p", "content": "", "creation_timestamp": "2025-06-25T11:56:38.499546Z"} https://vulnerability.circl.lu/sighting/13568d18-54d0-48e5-8c06-46809d9306db/export Wed, 25 Jun 2025 11:56:38 +0000 e36ceb85-fb33-4dbe-981b-2447c2906c6e https://vulnerability.circl.lu/sighting/e36ceb85-fb33-4dbe-981b-2447c2906c6e/export {"uuid": "e36ceb85-fb33-4dbe-981b-2447c2906c6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30281", "type": "seen", "source": "MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea", "content": "", "creation_timestamp": "2025-08-09T17:25:37.000000Z"} {"uuid": "e36ceb85-fb33-4dbe-981b-2447c2906c6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30281", "type": "seen", "source": "MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea", "content": "", "creation_timestamp": "2025-08-09T17:25:37.000000Z"} https://vulnerability.circl.lu/sighting/e36ceb85-fb33-4dbe-981b-2447c2906c6e/export Sat, 09 Aug 2025 17:25:37 +0000 ad15c488-584a-41af-aabc-d7a84584c841 https://vulnerability.circl.lu/sighting/ad15c488-584a-41af-aabc-d7a84584c841/export {"uuid": "ad15c488-584a-41af-aabc-d7a84584c841", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30281", "type": "seen", "source": "MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea", "content": "", "creation_timestamp": "2025-09-10T07:00:39.000000Z"} {"uuid": "ad15c488-584a-41af-aabc-d7a84584c841", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30281", "type": "seen", "source": "MISP/a1f4de80-fff0-4971-8020-da8f70ab57ea", "content": "", "creation_timestamp": "2025-09-10T07:00:39.000000Z"} https://vulnerability.circl.lu/sighting/ad15c488-584a-41af-aabc-d7a84584c841/export Wed, 10 Sep 2025 07:00:39 +0000