<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Thu, 16 Jul 2026 23:19:24 +0000</lastBuildDate>
    <item>
      <title>3005d8d4-ca9d-408f-b409-3c8e6dedcfc7</title>
      <link>https://vulnerability.circl.lu/sighting/3005d8d4-ca9d-408f-b409-3c8e6dedcfc7/export</link>
      <description>{"uuid": "3005d8d4-ca9d-408f-b409-3c8e6dedcfc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25473", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3m7gmdqjtmk2i", "content": "", "creation_timestamp": "2025-12-07T22:55:38.552072Z"}</description>
      <content:encoded>{"uuid": "3005d8d4-ca9d-408f-b409-3c8e6dedcfc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25473", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3m7gmdqjtmk2i", "content": "", "creation_timestamp": "2025-12-07T22:55:38.552072Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3005d8d4-ca9d-408f-b409-3c8e6dedcfc7/export</guid>
      <pubDate>Sun, 07 Dec 2025 22:55:38 +0000</pubDate>
    </item>
    <item>
      <title>6652fa0e-2a3f-4abf-a511-be5ae8d60285</title>
      <link>https://vulnerability.circl.lu/sighting/6652fa0e-2a3f-4abf-a511-be5ae8d60285/export</link>
      <description>{"uuid": "6652fa0e-2a3f-4abf-a511-be5ae8d60285", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "seen", "source": "https://t.me/cvedetector/20755", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2547 - D-Link DIR-618 and DIR-605L Local File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2547 \nPublished : March 20, 2025, 4:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T19:54:41.000000Z"}</description>
      <content:encoded>{"uuid": "6652fa0e-2a3f-4abf-a511-be5ae8d60285", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "seen", "source": "https://t.me/cvedetector/20755", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2547 - D-Link DIR-618 and DIR-605L Local File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2547 \nPublished : March 20, 2025, 4:15 p.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-20T19:54:41.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/6652fa0e-2a3f-4abf-a511-be5ae8d60285/export</guid>
      <pubDate>Thu, 20 Mar 2025 19:54:41 +0000</pubDate>
    </item>
    <item>
      <title>8639c334-66d1-4595-ae9c-cec831328e8e</title>
      <link>https://vulnerability.circl.lu/sighting/8639c334-66d1-4595-ae9c-cec831328e8e/export</link>
      <description>{"uuid": "8639c334-66d1-4595-ae9c-cec831328e8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkt6sl5cq22x", "content": "", "creation_timestamp": "2025-03-20T17:08:54.957296Z"}</description>
      <content:encoded>{"uuid": "8639c334-66d1-4595-ae9c-cec831328e8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkt6sl5cq22x", "content": "", "creation_timestamp": "2025-03-20T17:08:54.957296Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8639c334-66d1-4595-ae9c-cec831328e8e/export</guid>
      <pubDate>Thu, 20 Mar 2025 17:08:54 +0000</pubDate>
    </item>
    <item>
      <title>7554927b-ad7c-4abd-af14-2d32da750caa</title>
      <link>https://vulnerability.circl.lu/sighting/7554927b-ad7c-4abd-af14-2d32da750caa/export</link>
      <description>{"uuid": "7554927b-ad7c-4abd-af14-2d32da750caa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8233", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2547\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.\n\ud83d\udccf Published: 2025-03-20T15:31:14.499Z\n\ud83d\udccf Modified: 2025-03-20T15:31:14.499Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300161\n2. https://vuldb.com/?ctiid.300161\n3. https://vuldb.com/?submit.516789\n4. https://lavender-bicycle-a5a.notion.site/D-Link-DIR-618-formAdvNetwork-1b053a41781f8085a4e8d3c1d1de5f56?pvs=4\n5. https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvNetwork-1b153a41781f80109325dbc96ffc0295?pvs=4\n6. https://www.dlink.com/", "creation_timestamp": "2025-03-20T16:18:24.000000Z"}</description>
      <content:encoded>{"uuid": "7554927b-ad7c-4abd-af14-2d32da750caa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2547", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8233", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2547\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as problematic, has been found in D-Link DIR-618 and DIR-605L 2.02/3.02. This issue affects some unknown processing of the file /goform/formAdvNetwork. The manipulation leads to improper access controls. The attack can only be done within the local network. The exploit has been disclosed to the public and may be used. This vulnerability only affects products that are no longer supported by the maintainer.\n\ud83d\udccf Published: 2025-03-20T15:31:14.499Z\n\ud83d\udccf Modified: 2025-03-20T15:31:14.499Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300161\n2. https://vuldb.com/?ctiid.300161\n3. https://vuldb.com/?submit.516789\n4. https://lavender-bicycle-a5a.notion.site/D-Link-DIR-618-formAdvNetwork-1b053a41781f8085a4e8d3c1d1de5f56?pvs=4\n5. https://lavender-bicycle-a5a.notion.site/D-Link-DIR-605L-formAdvNetwork-1b153a41781f80109325dbc96ffc0295?pvs=4\n6. https://www.dlink.com/", "creation_timestamp": "2025-03-20T16:18:24.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/7554927b-ad7c-4abd-af14-2d32da750caa/export</guid>
      <pubDate>Thu, 20 Mar 2025 16:18:24 +0000</pubDate>
    </item>
    <item>
      <title>1c58e93a-f921-445f-bcf4-b54d699b2d50</title>
      <link>https://vulnerability.circl.lu/sighting/1c58e93a-f921-445f-bcf4-b54d699b2d50/export</link>
      <description>{"uuid": "1c58e93a-f921-445f-bcf4-b54d699b2d50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25478", "type": "seen", "source": "Telegram/JW5Q7YJObYM1Wu0JJadvWu-BK9ANNSMIfO7ZxTpLh5r4kDFj", "content": "", "creation_timestamp": "2025-03-02T11:46:30.000000Z"}</description>
      <content:encoded>{"uuid": "1c58e93a-f921-445f-bcf4-b54d699b2d50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25478", "type": "seen", "source": "Telegram/JW5Q7YJObYM1Wu0JJadvWu-BK9ANNSMIfO7ZxTpLh5r4kDFj", "content": "", "creation_timestamp": "2025-03-02T11:46:30.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/1c58e93a-f921-445f-bcf4-b54d699b2d50/export</guid>
      <pubDate>Sun, 02 Mar 2025 11:46:30 +0000</pubDate>
    </item>
    <item>
      <title>e95939e8-789a-4508-a3d8-37219fc000d2</title>
      <link>https://vulnerability.circl.lu/sighting/e95939e8-789a-4508-a3d8-37219fc000d2/export</link>
      <description>{"uuid": "e95939e8-789a-4508-a3d8-37219fc000d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25476", "type": "seen", "source": "Telegram/3xB6M54-wSCQN7enHt26ebBCCT1YEan57cXsGm01RSafoLfk", "content": "", "creation_timestamp": "2025-03-02T11:46:30.000000Z"}</description>
      <content:encoded>{"uuid": "e95939e8-789a-4508-a3d8-37219fc000d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25476", "type": "seen", "source": "Telegram/3xB6M54-wSCQN7enHt26ebBCCT1YEan57cXsGm01RSafoLfk", "content": "", "creation_timestamp": "2025-03-02T11:46:30.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/e95939e8-789a-4508-a3d8-37219fc000d2/export</guid>
      <pubDate>Sun, 02 Mar 2025 11:46:30 +0000</pubDate>
    </item>
    <item>
      <title>de3c7399-a35f-4b89-8bdd-acadf7f9c11a</title>
      <link>https://vulnerability.circl.lu/sighting/de3c7399-a35f-4b89-8bdd-acadf7f9c11a/export</link>
      <description>{"uuid": "de3c7399-a35f-4b89-8bdd-acadf7f9c11a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25477", "type": "seen", "source": "Telegram/xvZCT4UgKPo96JnQ7twQUiScLaIvrNcCGdnoyKC_rd4mo6MD", "content": "", "creation_timestamp": "2025-03-02T11:45:37.000000Z"}</description>
      <content:encoded>{"uuid": "de3c7399-a35f-4b89-8bdd-acadf7f9c11a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25477", "type": "seen", "source": "Telegram/xvZCT4UgKPo96JnQ7twQUiScLaIvrNcCGdnoyKC_rd4mo6MD", "content": "", "creation_timestamp": "2025-03-02T11:45:37.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/de3c7399-a35f-4b89-8bdd-acadf7f9c11a/export</guid>
      <pubDate>Sun, 02 Mar 2025 11:45:37 +0000</pubDate>
    </item>
    <item>
      <title>8b9e5b33-15e0-47d1-9b71-61613e392d1b</title>
      <link>https://vulnerability.circl.lu/sighting/8b9e5b33-15e0-47d1-9b71-61613e392d1b/export</link>
      <description>{"uuid": "8b9e5b33-15e0-47d1-9b71-61613e392d1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25477", "type": "seen", "source": "Telegram/cZiMlUZG82jBqO0dhj1yHS79N6xQ424D0JwYIM4KIH2wBj1p", "content": "", "creation_timestamp": "2025-03-02T11:44:21.000000Z"}</description>
      <content:encoded>{"uuid": "8b9e5b33-15e0-47d1-9b71-61613e392d1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25477", "type": "seen", "source": "Telegram/cZiMlUZG82jBqO0dhj1yHS79N6xQ424D0JwYIM4KIH2wBj1p", "content": "", "creation_timestamp": "2025-03-02T11:44:21.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/8b9e5b33-15e0-47d1-9b71-61613e392d1b/export</guid>
      <pubDate>Sun, 02 Mar 2025 11:44:21 +0000</pubDate>
    </item>
    <item>
      <title>3ae6648d-fb46-419a-adc3-1db0cc628942</title>
      <link>https://vulnerability.circl.lu/sighting/3ae6648d-fb46-419a-adc3-1db0cc628942/export</link>
      <description>{"uuid": "3ae6648d-fb46-419a-adc3-1db0cc628942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25478", "type": "seen", "source": "https://t.me/cvedetector/19195", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25478 - Syspass Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25478 \nPublished : Feb. 28, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : The account file upload functionality in Syspass 3.2.x fails to properly handle special characters in filenames. This mismanagement leads to the disclosure of the web application s source code, exposing sensitive information such as the database password. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T02:13:45.000000Z"}</description>
      <content:encoded>{"uuid": "3ae6648d-fb46-419a-adc3-1db0cc628942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25478", "type": "seen", "source": "https://t.me/cvedetector/19195", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25478 - Syspass Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25478 \nPublished : Feb. 28, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : The account file upload functionality in Syspass 3.2.x fails to properly handle special characters in filenames. This mismanagement leads to the disclosure of the web application s source code, exposing sensitive information such as the database password. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T02:13:45.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/3ae6648d-fb46-419a-adc3-1db0cc628942/export</guid>
      <pubDate>Sat, 01 Mar 2025 02:13:45 +0000</pubDate>
    </item>
    <item>
      <title>243dde0d-6cb8-4129-85ce-01ed21025da3</title>
      <link>https://vulnerability.circl.lu/sighting/243dde0d-6cb8-4129-85ce-01ed21025da3/export</link>
      <description>{"uuid": "243dde0d-6cb8-4129-85ce-01ed21025da3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25476", "type": "seen", "source": "https://t.me/cvedetector/19194", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25476 - SysPass Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25476 \nPublished : Feb. 28, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : A stored cross-site scripting (XSS) vulnerability in SysPass 3.2.x allows a malicious user with elevated privileges to execute arbitrary Javascript code by specifying a malicious XSS payload as a notification type or notification component. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T02:13:44.000000Z"}</description>
      <content:encoded>{"uuid": "243dde0d-6cb8-4129-85ce-01ed21025da3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25476", "type": "seen", "source": "https://t.me/cvedetector/19194", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25476 - SysPass Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25476 \nPublished : Feb. 28, 2025, 11:15 p.m. | 1\u00a0hour, 24\u00a0minutes ago \nDescription : A stored cross-site scripting (XSS) vulnerability in SysPass 3.2.x allows a malicious user with elevated privileges to execute arbitrary Javascript code by specifying a malicious XSS payload as a notification type or notification component. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T02:13:44.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/243dde0d-6cb8-4129-85ce-01ed21025da3/export</guid>
      <pubDate>Sat, 01 Mar 2025 02:13:44 +0000</pubDate>
    </item>
  </channel>
</rss>
