<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://db.gcve.eu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-16T18:46:41.714973+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@gcve.eu</email>
  </author>
  <link href="https://db.gcve.eu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://db.gcve.eu/sighting/66ecdf34-37bd-4085-b227-ca49d1d5cd1d/export</id>
    <title>66ecdf34-37bd-4085-b227-ca49d1d5cd1d</title>
    <updated>2026-07-16T18:46:41.733306+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "66ecdf34-37bd-4085-b227-ca49d1d5cd1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28282", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/2784", "content": "#Tools -\u00a0 \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06\n\nWARF\n\nWith a Dashboard, you will quickly get the metrics of your activity. WARF confined all your targets together and provide you with a clean and efficient way to search them down with their names.\n\nFeatures:\n\u25ab\ufe0f Subdomain Enumeration\n\u25ab\ufe0f Directory BruteForce\n\u25ab\ufe0f Gather Wayback URLs\n\u25ab\ufe0f Gather JavaScript URLs\n\u25ab\ufe0f Extract links from JS files\n\u25ab\ufe0f Extract API/Secret Keys from JS files\n\u25ab\ufe0f Supports Background Scan\n\nhttps://github.com/iamnihal/warf\n\nCVE-2022-30206\n\nThis is the PoC for CVE-2022-30206.\n\nhttps://github.com/Pwnrin/CVE-2022-30206\n\nRecreateCSDownloadsTree\n\nGeneration of TOML metadata for recreating directory structures from Cobalt Strike Beacon downloads.\n\nhttps://github.com/EspressoCake/RecreateCSDownloadsTree\n\n#cobalt\n\nBHHB\n\nView HTTP history exported from Burp Suite Community Edition(CE).\n\nhttps://github.com/adityatelange/bhhb\n\nDeFiHackLabs\n\nReproduce DeFi hack incidents using Foundry. 66 incidents included.\n\nhttps://github.com/SunWeb3Sec/DeFiHackLabs\n\nCronos\n\nPoC for a new sleep obfuscation technique (based on Ekko) leveraging waitable timers to RC4 encrypt the current process and change the permissions from RW to RX to evade memory scanners.\n\nhttps://github.com/Idov31/Cronos\n\nChallenges_2022_Public\n\nFiles + Writeups for DownUnderCTF 2022 Challenges\n\nhttps://github.com/DownUnderCTF/Challenges_2022_Public\n\nDumpThatLSASS\n\nIt's Fully Undetectable and bypass almost all the vendors AV/EDRs, it doesn't bypass RunAsPPL\n\nDumping LSASS by Unhooking MiniDumpWriteDump by getting a fresh DbgHelp.dll copy from the disk , plus functions and strings obfuscation, duplicate lsass handle from existed processes.\n\nhttps://github.com/D1rkMtr/DumpThatLSASS\n\nOSINT/FORENSICS-MOBILE\n\nhttps://github.com/CScorza/OSINT-FORENSICS-MOBILE\n\nCrackMapExec\n\nA swiss army knife for pentesting networks.\n\nA new protocol has been added to CrackMapExec ! You can now try FTP credentials and quickly find FTP with anonymous logon during internal pentest.\n\nhttps://github.com/Porchetta-Industries/CrackMapExec\n\ncpplumber\n\nStatic analysis tool based on clang, which detects source-to-binary information leaks in C/C++ projects\n\nhttps://github.com/ergrelet/cpplumber\n\nCallBackDump\n\nDump lsass process tool that can pass Kaba, nuclear crystal, defender and other anti-software\n\nhttps://github.com/seventeenman/CallBackDump\n\nCifuzz\n\nCLI tool that helps you to integrate and run fuzzing based tests into your project\n\nhttps://github.com/CodeIntelligenceTesting/cifuzz\n\nCVE-2022-28282\n\nPoC for CVE-2022-28282 Firefox: heap-use-after-free in DocumentL10n::TranslateDocument\n\nhttps://github.com/Pwnrin/CVE-2022-28282\n\nmonomorph\n\nMD5-Monomorphic Shellcode Packer all payloads have the same MD5 hash \n\nhttps://github.com/DavidBuchanan314/monomorph\n\nBloodHound py\n\nBloodHound.py is a Python based ingestor for BloodHound, based on Impacket.\n\nhttps://github.com/jazzpizazz/BloodHound.py-Kerberos\n\nSharpNamedPipePTH\n\nThis project is a C# tool to use Pass-the-Hash for authentication on a local Named Pipe for user Impersonation. You need a local administrator or SEImpersonate rights to use this. \n\nhttps://github.com/S3cur3Th1sSh1t/SharpNamedPipePTH\n\nDetails:\nhttps://s3cur3th1ssh1t.github.io/Named-Pipe-PTH/\n\nPassLock\n\nA medium-security password manager that encrypts passwords using Advanced Encryption Standard (AES).\n\nFeatures:\n\u25ab\ufe0f AES Encryption\n\u25ab\ufe0f Custom key\n\u25ab\ufe0f Random encryption type\n\u25ab\ufe0f random password generator\n\u25ab\ufe0f Clipboard Copy\n\u25ab\ufe0f Custom path\n\u25ab\ufe0f Terminal User Interface\n\u25ab\ufe0f Process Monitor\n\nhttps://github.com/Akshay-Vs/PassLock\n\nopencti\n\nOpenCTI is an open source platform allowing organizations to manage their cyber threat intelligence knowledge and observables. It has been created in order to structure, store, organize and visualize technical and non-technical information about cyber threats.\n\nhttps://github.com/OpenCTI-Platform/opencti\n\nJoin:\nhttps://t.me/dilagrafie\nhttps://t.me/HackerFactory\n\nWebsite:\nwww.ghostclan.org\n\n#InsoSec #cybersec \ud835\udddb\ud835\uddee\ud835\uddf0\ud835\uddf8\ud835\uddf2\ud835\uddff\ud835\ude00 \ud835\uddd9\ud835\uddee\ud835\uddf0\ud835\ude01\ud835\uddfc\ud835\uddff\ud835\ude06", "creation_timestamp": "2023-03-30T08:39:43.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/66ecdf34-37bd-4085-b227-ca49d1d5cd1d/export"/>
    <published>2023-03-30T08:39:43+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/51ccde32-e48e-4ccd-b4a5-0a3a1e6a848b/export</id>
    <title>51ccde32-e48e-4ccd-b4a5-0a3a1e6a848b</title>
    <updated>2026-07-16T18:46:41.735265+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "51ccde32-e48e-4ccd-b4a5-0a3a1e6a848b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28285", "type": "seen", "source": "https://t.me/cibsecurity/55152", "content": "\u203c CVE-2022-28285 \u203c\n\nWhen generating the assembly code for MLoadTypedArrayElementHole, an incorrect AliasSet was used. In conjunction with another vulnerability this could have been used for an out of bounds memory read. This vulnerability affects Thunderbird &amp;lt; 91.8, Firefox &amp;lt; 99, and Firefox ESR &amp;lt; 91.8.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:23:47.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/51ccde32-e48e-4ccd-b4a5-0a3a1e6a848b/export"/>
    <published>2022-12-22T22:23:47+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/71a33e61-4720-4300-a6c7-54a87cf19c85/export</id>
    <title>71a33e61-4720-4300-a6c7-54a87cf19c85</title>
    <updated>2026-07-16T18:46:41.735342+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "71a33e61-4720-4300-a6c7-54a87cf19c85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28281", "type": "seen", "source": "https://t.me/cibsecurity/55150", "content": "\u203c CVE-2022-28281 \u203c\n\nIf a compromised content process sent an unexpected number of WebAuthN Extensions in a Register command to the parent process, an out of bounds write would have occurred leading to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird &amp;lt; 91.8, Firefox &amp;lt; 99, and Firefox ESR &amp;lt; 91.8.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:23:45.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/71a33e61-4720-4300-a6c7-54a87cf19c85/export"/>
    <published>2022-12-22T22:23:45+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/b62a8ebb-1ea6-4b5f-b0ed-26ab8c86f4e0/export</id>
    <title>b62a8ebb-1ea6-4b5f-b0ed-26ab8c86f4e0</title>
    <updated>2026-07-16T18:46:41.735398+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "b62a8ebb-1ea6-4b5f-b0ed-26ab8c86f4e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28286", "type": "seen", "source": "https://t.me/cibsecurity/55143", "content": "\u203c CVE-2022-28286 \u203c\n\nDue to a layout change, iframe contents could have been rendered outside of its border. This could have led to user confusion or spoofing attacks. This vulnerability affects Thunderbird &amp;lt; 91.8, Firefox &amp;lt; 99, and Firefox ESR &amp;lt; 91.8.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:20:11.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/b62a8ebb-1ea6-4b5f-b0ed-26ab8c86f4e0/export"/>
    <published>2022-12-22T22:20:11+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/dbf72d5e-84ea-4324-b989-8d73f58cd556/export</id>
    <title>dbf72d5e-84ea-4324-b989-8d73f58cd556</title>
    <updated>2026-07-16T18:46:41.735454+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "dbf72d5e-84ea-4324-b989-8d73f58cd556", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28287", "type": "seen", "source": "https://t.me/cibsecurity/55135", "content": "\u203c CVE-2022-28287 \u203c\n\nIn unusual circumstances, selecting text could cause text selection caching to behave incorrectly, leading to a crash. This vulnerability affects Firefox &amp;lt; 99.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:20:03.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/dbf72d5e-84ea-4324-b989-8d73f58cd556/export"/>
    <published>2022-12-22T22:20:03+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/d5e6ef57-2df4-4213-8294-7a1e47e8bc0c/export</id>
    <title>d5e6ef57-2df4-4213-8294-7a1e47e8bc0c</title>
    <updated>2026-07-16T18:46:41.735506+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "d5e6ef57-2df4-4213-8294-7a1e47e8bc0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28283", "type": "seen", "source": "https://t.me/cibsecurity/55130", "content": "\u203c CVE-2022-28283 \u203c\n\nThe sourceMapURL feature in devtools was missing security checks that would have allowed a webpage to attempt to include local files or other files that should have been inaccessible. This vulnerability affects Firefox &amp;lt; 99.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:19:58.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/d5e6ef57-2df4-4213-8294-7a1e47e8bc0c/export"/>
    <published>2022-12-22T22:19:58+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/b911f68d-6a3f-44ba-ad0a-91d1354a9958/export</id>
    <title>b911f68d-6a3f-44ba-ad0a-91d1354a9958</title>
    <updated>2026-07-16T18:46:41.735557+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "b911f68d-6a3f-44ba-ad0a-91d1354a9958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28282", "type": "seen", "source": "https://t.me/cibsecurity/55128", "content": "\u203c CVE-2022-28282 \u203c\n\nBy using a link with rel=\"localization\" a use-after-free could have been triggered by destroying an object during JavaScript execution and then referencing the object through a freed pointer, leading to a potential exploitable crash. This vulnerability affects Thunderbird &amp;lt; 91.8, Firefox &amp;lt; 99, and Firefox ESR &amp;lt; 91.8.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T22:19:56.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/b911f68d-6a3f-44ba-ad0a-91d1354a9958/export"/>
    <published>2022-12-22T22:19:56+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/6253b849-bb34-473b-b813-f6b9669aef72/export</id>
    <title>6253b849-bb34-473b-b813-f6b9669aef72</title>
    <updated>2026-07-16T18:46:41.735607+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "6253b849-bb34-473b-b813-f6b9669aef72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2828", "type": "seen", "source": "https://t.me/cibsecurity/51311", "content": "\u203c CVE-2022-2828 \u203c\n\nIn affected versions of Octopus Server it is possible to reveal information about teams via the API due to an Insecure Direct Object Reference (IDOR) vulnerability\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-13T13:18:22.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/6253b849-bb34-473b-b813-f6b9669aef72/export"/>
    <published>2022-10-13T13:18:22+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/c3e53acf-0cfe-497a-83ad-951c84a90df4/export</id>
    <title>c3e53acf-0cfe-497a-83ad-951c84a90df4</title>
    <updated>2026-07-16T18:46:41.735658+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "c3e53acf-0cfe-497a-83ad-951c84a90df4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28282", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/6910", "content": "#exploit\n1. CVE-2022-35914:\nGLPI &amp;lt;10.0.2 - PHP code injection\nhttps://github.com/cosad3s/CVE-2022-35914-poc\n\n2. CVE-2022-28282:\nFirefox - heap-use-after-free in DocumentL10n::TranslateDocument\nhttps://github.com/Pwnrin/CVE-2022-28282", "creation_timestamp": "2022-10-04T11:01:01.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/c3e53acf-0cfe-497a-83ad-951c84a90df4/export"/>
    <published>2022-10-04T11:01:01+00:00</published>
  </entry>
  <entry>
    <id>https://db.gcve.eu/sighting/5773023a-b4e0-4e4a-99e6-d1eccfb5a730/export</id>
    <title>5773023a-b4e0-4e4a-99e6-d1eccfb5a730</title>
    <updated>2026-07-16T18:46:41.735708+00:00</updated>
    <author>
      <name>cedric</name>
      <uri>https://db.gcve.eu/user/cedric</uri>
    </author>
    <content>{"uuid": "5773023a-b4e0-4e4a-99e6-d1eccfb5a730", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28281", "type": "published-proof-of-concept", "source": "Telegram/lqtqSLMCgprAleZR-GTQgesFCASBWGiEgZMpvsC33PzYD04", "content": "", "creation_timestamp": "2022-04-18T08:47:12.000000Z"}</content>
    <link href="https://db.gcve.eu/sighting/5773023a-b4e0-4e4a-99e6-d1eccfb5a730/export"/>
    <published>2022-04-18T08:47:12+00:00</published>
  </entry>
</feed>
