<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://db.gcve.eu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Wed, 15 Jul 2026 15:55:10 +0000</lastBuildDate>
    <item>
      <title>46984e48-002f-4b47-98c0-de1f29326160</title>
      <link>https://db.gcve.eu/sighting/46984e48-002f-4b47-98c0-de1f29326160/export</link>
      <description>{"uuid": "46984e48-002f-4b47-98c0-de1f29326160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-RWF9-8FQR-P44M", "type": "seen", "source": "https://t.me/arpsyndicate/3150", "content": "#ExploitObserverAlert\n\nGHSA-rwf9-8fqr-p44m\n\nDESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to GHSA-rwf9-8fqr-p44m. Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access and access to configure or edit jobs to utilize the plugin to configure a potential rouge endpoint via which\u00a0it was possible to control response for certain request which could be injected with XSS payloads leading to XSS\u00a0while processing the response data.", "creation_timestamp": "2024-01-28T01:29:27.000000Z"}</description>
      <content:encoded>{"uuid": "46984e48-002f-4b47-98c0-de1f29326160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-RWF9-8FQR-P44M", "type": "seen", "source": "https://t.me/arpsyndicate/3150", "content": "#ExploitObserverAlert\n\nGHSA-rwf9-8fqr-p44m\n\nDESCRIPTION: Exploit Observer has 4 entries in 2 file formats related to GHSA-rwf9-8fqr-p44m. Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access and access to configure or edit jobs to utilize the plugin to configure a potential rouge endpoint via which\u00a0it was possible to control response for certain request which could be injected with XSS payloads leading to XSS\u00a0while processing the response data.", "creation_timestamp": "2024-01-28T01:29:27.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/46984e48-002f-4b47-98c0-de1f29326160/export</guid>
      <pubDate>Sun, 28 Jan 2024 01:29:27 +0000</pubDate>
    </item>
  </channel>
</rss>
