<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://db.gcve.eu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T11:14:00.266875+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@gcve.eu</email>
  </author>
  <link href="https://db.gcve.eu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://db.gcve.eu/sighting/8ebbab55-9bc7-4921-9a46-ad562d87777c/export</id>
    <title>8ebbab55-9bc7-4921-9a46-ad562d87777c</title>
    <updated>2026-07-15T11:14:00.291968+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "8ebbab55-9bc7-4921-9a46-ad562d87777c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32589", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:02.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/8ebbab55-9bc7-4921-9a46-ad562d87777c/export"/>
    <published>2025-09-16T03:45:02+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/e3bc3c1c-adc8-4991-af75-8a34eadcc863/export</id>
    <title>e3bc3c1c-adc8-4991-af75-8a34eadcc863</title>
    <updated>2026-07-15T11:14:00.296046+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "e3bc3c1c-adc8-4991-af75-8a34eadcc863", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32589", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:32.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/e3bc3c1c-adc8-4991-af75-8a34eadcc863/export"/>
    <published>2025-09-15T13:28:32+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/09daf78e-f2bf-49f3-af4d-cc9c72366e43/export</id>
    <title>09daf78e-f2bf-49f3-af4d-cc9c72366e43</title>
    <updated>2026-07-15T11:14:00.296378+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "09daf78e-f2bf-49f3-af4d-cc9c72366e43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32584", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7763", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-32584\n\ud83d\udd25 CVSS Score: 4.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:X/RC:R)\n\ud83d\udd39 Description: An improper access control (CWE-284) vulnerability in FortiWLC version 8.6.0, version 8.5.3 and below, version 8.4.8 and below, version 8.3.3 and below, version 8.2.7 to 8.2.4, version 8.1.3 may allow an unauthenticated and remote attacker to access certain areas of the web management CGI functionality by just specifying the correct URL.  The vulnerability applies only to limited CGI resources and might allow the unauthorized party to access configuration details.\n\ud83d\udccf Published: 2025-03-17T13:05:44.978Z\n\ud83d\udccf Modified: 2025-03-17T13:37:26.791Z\n\ud83d\udd17 References:\n1. https://fortiguard.fortinet.com/psirt/FG-IR-20-138", "creation_timestamp": "2025-03-17T13:46:52.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/09daf78e-f2bf-49f3-af4d-cc9c72366e43/export"/>
    <published>2025-03-17T13:46:52+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/47b97e0b-a0f3-45d8-a978-e6bf08c0091a/export</id>
    <title>47b97e0b-a0f3-45d8-a978-e6bf08c0091a</title>
    <updated>2026-07-15T11:14:00.296563+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "47b97e0b-a0f3-45d8-a978-e6bf08c0091a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32589", "type": "seen", "source": "https://t.me/cvedetector/13327", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2021-32589 - Fortinet FortiManager FortiAnalyzer Use-After-Free Code Execution\", \n  \"Content\": \"CVE ID : CVE-2021-32589 \nPublished : Dec. 19, 2024, 1:15 p.m. | 32\u00a0minutes ago \nDescription : A use after free in Fortinet FortiManager, FortiAnalyzer allows attacker to execute unauthorized code or commands via \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-19T14:49:09.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/47b97e0b-a0f3-45d8-a978-e6bf08c0091a/export"/>
    <published>2024-12-19T14:49:09+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/0b53e239-7bad-45b0-bf1e-8bab8037cd83/export</id>
    <title>0b53e239-7bad-45b0-bf1e-8bab8037cd83</title>
    <updated>2026-07-15T11:14:00.296686+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "0b53e239-7bad-45b0-bf1e-8bab8037cd83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32589", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ldnxdn4btu27", "content": "", "creation_timestamp": "2024-12-19T13:15:33.854430Z"}</content>
    <link href="https://db.gcve.eu/sighting/0b53e239-7bad-45b0-bf1e-8bab8037cd83/export"/>
    <published>2024-12-19T13:15:33.854430+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/97834b24-7929-48fd-b8a4-ed5aa9566206/export</id>
    <title>97834b24-7929-48fd-b8a4-ed5aa9566206</title>
    <updated>2026-07-15T11:14:00.296798+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "97834b24-7929-48fd-b8a4-ed5aa9566206", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32589", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113679517704779961", "content": "", "creation_timestamp": "2024-12-19T12:36:21.909801Z"}</content>
    <link href="https://db.gcve.eu/sighting/97834b24-7929-48fd-b8a4-ed5aa9566206/export"/>
    <published>2024-12-19T12:36:21.909801+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/0413b512-c17b-44b4-85b7-67a2d2553df1/export</id>
    <title>0413b512-c17b-44b4-85b7-67a2d2553df1</title>
    <updated>2026-07-15T11:14:00.296905+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "0413b512-c17b-44b4-85b7-67a2d2553df1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32585", "type": "seen", "source": "https://t.me/cibsecurity/40242", "content": "\u203c CVE-2021-32585 \u203c\n\nAn improper neutralization of input during web page generation vulnerability [CWE-79] in FortiWAN before 4.5.9 may allow an attacker to perform a stored cross-site scripting attack via specifically crafted HTTP requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-06T20:30:24.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/0413b512-c17b-44b4-85b7-67a2d2553df1/export"/>
    <published>2022-04-06T20:30:24+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/f9e1e3cd-c786-452a-9b26-b4218b1ec9ea/export</id>
    <title>f9e1e3cd-c786-452a-9b26-b4218b1ec9ea</title>
    <updated>2026-07-15T11:14:00.297016+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "f9e1e3cd-c786-452a-9b26-b4218b1ec9ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32586", "type": "seen", "source": "https://t.me/cibsecurity/38275", "content": "\u203c CVE-2021-32586 \u203c\n\nAn improper input validation vulnerability in the web server CGI facilities of FortiMail before 7.0.1 may allow an unauthenticated attacker to alter the environment of the underlying script interpreter via specifically crafted HTTP requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T22:23:34.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/f9e1e3cd-c786-452a-9b26-b4218b1ec9ea/export"/>
    <published>2022-03-01T22:23:34+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/dd294d0a-9753-4adb-95a9-7015baadb6b0/export</id>
    <title>dd294d0a-9753-4adb-95a9-7015baadb6b0</title>
    <updated>2026-07-15T11:14:00.297131+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "dd294d0a-9753-4adb-95a9-7015baadb6b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32588", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/4061", "content": "#Threat_Research\n1. Fortinet FortiPortal Vulnerability Disclosures (CVE-2021-32588, CVE-2021-36168)\nhttps://insomniasec.com/blog/fortiportal-disclosures\n2. Modify in-flight data to payment provider Smart2Pay\nhttps://hackerone.com/reports/1295844", "creation_timestamp": "2021-08-14T13:25:01.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/dd294d0a-9753-4adb-95a9-7015baadb6b0/export"/>
    <published>2021-08-14T13:25:01+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/9a7ddaeb-86d7-4830-a3a4-cb317ed49569/export</id>
    <title>9a7ddaeb-86d7-4830-a3a4-cb317ed49569</title>
    <updated>2026-07-15T11:14:00.297253+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "9a7ddaeb-86d7-4830-a3a4-cb317ed49569", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32587", "type": "seen", "source": "https://t.me/cibsecurity/26919", "content": "\u203c CVE-2021-32587 \u203c\n\nAn improper access control vulnerability in FortiManager and FortiAnalyzer GUI interface 7.0.0, 6.4.5 and below, 6.2.8 and below, 6.0.11and below, 5.6.11and below may allow a remote and authenticated attacker with restricted user profile to retrieve the list of administrative users of other ADOMs and their related configuration.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-06T14:32:32.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/9a7ddaeb-86d7-4830-a3a4-cb317ed49569/export"/>
    <published>2021-08-06T14:32:32+00:00</published>
  </entry>
</feed>
