Most recent sightings.

Most recent sightings. https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 26 May 2026 12:46:41 +0000 0e05c632-13f5-4008-a65c-8b9e1c9aac35 https://db.gcve.eu/sighting/0e05c632-13f5-4008-a65c-8b9e1c9aac35/export {"uuid": "0e05c632-13f5-4008-a65c-8b9e1c9aac35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45367", "type": "seen", "source": "https://t.me/cibsecurity/71801", "content": "\u203c CVE-2023-45367 \u203c\n\nAn issue was discovered in the CheckUser extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. A user can use a rest.php/checkuser/v0/useragent-clienthints/revision/ URL to store an arbitrary number of rows in cu_useragent_clienthints, leading to a denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:43.000000Z"} {"uuid": "0e05c632-13f5-4008-a65c-8b9e1c9aac35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45367", "type": "seen", "source": "https://t.me/cibsecurity/71801", "content": "\u203c CVE-2023-45367 \u203c\n\nAn issue was discovered in the CheckUser extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. A user can use a rest.php/checkuser/v0/useragent-clienthints/revision/ URL to store an arbitrary number of rows in cu_useragent_clienthints, leading to a denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:43.000000Z"} https://db.gcve.eu/sighting/0e05c632-13f5-4008-a65c-8b9e1c9aac35/export Mon, 09 Oct 2023 12:15:43 +0000 67d43da1-d6d3-41af-b63b-597807a981b0 https://db.gcve.eu/sighting/67d43da1-d6d3-41af-b63b-597807a981b0/export {"uuid": "67d43da1-d6d3-41af-b63b-597807a981b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45363", "type": "seen", "source": "https://t.me/cibsecurity/71804", "content": "\u203c CVE-2023-45363 \u203c\n\nAn issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:46.000000Z"} {"uuid": "67d43da1-d6d3-41af-b63b-597807a981b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45363", "type": "seen", "source": "https://t.me/cibsecurity/71804", "content": "\u203c CVE-2023-45363 \u203c\n\nAn issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:46.000000Z"} https://db.gcve.eu/sighting/67d43da1-d6d3-41af-b63b-597807a981b0/export Mon, 09 Oct 2023 12:15:46 +0000 af8132f4-b1af-4b70-bcf7-4e46de8e3256 https://db.gcve.eu/sighting/af8132f4-b1af-4b70-bcf7-4e46de8e3256/export {"uuid": "af8132f4-b1af-4b70-bcf7-4e46de8e3256", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45364", "type": "seen", "source": "https://t.me/cibsecurity/71805", "content": "\u203c CVE-2023-45364 \u203c\n\nAn issue was discovered in includes/page/Article.php in MediaWiki 1.36.x through 1.39.x before 1.39.5 and 1.40.x before 1.40.1. Deleted revision existence is leaked due to incorrect permissions being checked. This reveals that a given revision ID belonged to the given page title, and its timestamp, both of which are not supposed to be public information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:47.000000Z"} {"uuid": "af8132f4-b1af-4b70-bcf7-4e46de8e3256", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45364", "type": "seen", "source": "https://t.me/cibsecurity/71805", "content": "\u203c CVE-2023-45364 \u203c\n\nAn issue was discovered in includes/page/Article.php in MediaWiki 1.36.x through 1.39.x before 1.39.5 and 1.40.x before 1.40.1. Deleted revision existence is leaked due to incorrect permissions being checked. This reveals that a given revision ID belonged to the given page title, and its timestamp, both of which are not supposed to be public information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:47.000000Z"} https://db.gcve.eu/sighting/af8132f4-b1af-4b70-bcf7-4e46de8e3256/export Mon, 09 Oct 2023 12:15:47 +0000 cfb201bf-d0d7-41c0-9bf9-df1781892dc0 https://db.gcve.eu/sighting/cfb201bf-d0d7-41c0-9bf9-df1781892dc0/export {"uuid": "cfb201bf-d0d7-41c0-9bf9-df1781892dc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45369", "type": "seen", "source": "https://t.me/cibsecurity/71808", "content": "\u203c CVE-2023-45369 \u203c\n\nAn issue was discovered in the PageTriage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. Usernames of hidden users are exposed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:53.000000Z"} {"uuid": "cfb201bf-d0d7-41c0-9bf9-df1781892dc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45369", "type": "seen", "source": "https://t.me/cibsecurity/71808", "content": "\u203c CVE-2023-45369 \u203c\n\nAn issue was discovered in the PageTriage extension for MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. Usernames of hidden users are exposed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-09T12:15:53.000000Z"} https://db.gcve.eu/sighting/cfb201bf-d0d7-41c0-9bf9-df1781892dc0/export Mon, 09 Oct 2023 12:15:53 +0000 b257671c-4276-43ba-80c7-e862956a7c5d https://db.gcve.eu/sighting/b257671c-4276-43ba-80c7-e862956a7c5d/export {"uuid": "b257671c-4276-43ba-80c7-e862956a7c5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-4536", "type": "seen", "source": "https://t.me/ctinow/172381", "content": "https://ift.tt/TbyrJkO\nCVE-2023-4536 Exploit", "creation_timestamp": "2024-01-23T23:16:23.000000Z"} {"uuid": "b257671c-4276-43ba-80c7-e862956a7c5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-4536", "type": "seen", "source": "https://t.me/ctinow/172381", "content": "https://ift.tt/TbyrJkO\nCVE-2023-4536 Exploit", "creation_timestamp": "2024-01-23T23:16:23.000000Z"} https://db.gcve.eu/sighting/b257671c-4276-43ba-80c7-e862956a7c5d/export Tue, 23 Jan 2024 23:16:23 +0000 572f8d1b-412a-427e-97a1-277141b292b7 https://db.gcve.eu/sighting/572f8d1b-412a-427e-97a1-277141b292b7/export {"uuid": "572f8d1b-412a-427e-97a1-277141b292b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45360", "type": "seen", "source": "https://t.me/arpsyndicate/4555", "content": "#ExploitObserverAlert\n\nCVE-2023-45360\n\nDESCRIPTION: Exploit Observer has 8 entries in 2 file formats related to CVE-2023-45360. An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. This is related to MediaWiki:Youhavenewmessagesfromusers.\n\nFIRST-EPSS: 0.000450000\nNVD-IS: 2.7\nNVD-ES: 2.3\nARPS-EXPLOITABILITY: 0.5804944", "creation_timestamp": "2024-04-12T07:43:00.000000Z"} {"uuid": "572f8d1b-412a-427e-97a1-277141b292b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45360", "type": "seen", "source": "https://t.me/arpsyndicate/4555", "content": "#ExploitObserverAlert\n\nCVE-2023-45360\n\nDESCRIPTION: Exploit Observer has 8 entries in 2 file formats related to CVE-2023-45360. An issue was discovered in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. There is XSS in youhavenewmessagesmanyusers and youhavenewmessages i18n messages. This is related to MediaWiki:Youhavenewmessagesfromusers.\n\nFIRST-EPSS: 0.000450000\nNVD-IS: 2.7\nNVD-ES: 2.3\nARPS-EXPLOITABILITY: 0.5804944", "creation_timestamp": "2024-04-12T07:43:00.000000Z"} https://db.gcve.eu/sighting/572f8d1b-412a-427e-97a1-277141b292b7/export Fri, 12 Apr 2024 07:43:00 +0000 a9afa368-0a23-4853-a034-d6530ab62c8d https://db.gcve.eu/sighting/a9afa368-0a23-4853-a034-d6530ab62c8d/export {"uuid": "a9afa368-0a23-4853-a034-d6530ab62c8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45362", "type": "seen", "source": "https://t.me/arpsyndicate/4572", "content": "#ExploitObserverAlert\n\nCVE-2023-45362\n\nDESCRIPTION: Exploit Observer has 10 entries in 2 file formats related to CVE-2023-45362. An issue was discovered in DifferenceEngine.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. diff-multi-sameuser (aka \"X intermediate revisions by the same user not shown\") ignores username suppression. This is an information leak.\n\nFIRST-EPSS: 0.000450000\nNVD-IS: 1.4\nNVD-ES: 2.8\nARPS-EXPLOITABILITY: 0.5829541", "creation_timestamp": "2024-04-12T09:07:09.000000Z"} {"uuid": "a9afa368-0a23-4853-a034-d6530ab62c8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45362", "type": "seen", "source": "https://t.me/arpsyndicate/4572", "content": "#ExploitObserverAlert\n\nCVE-2023-45362\n\nDESCRIPTION: Exploit Observer has 10 entries in 2 file formats related to CVE-2023-45362. An issue was discovered in DifferenceEngine.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. diff-multi-sameuser (aka \"X intermediate revisions by the same user not shown\") ignores username suppression. This is an information leak.\n\nFIRST-EPSS: 0.000450000\nNVD-IS: 1.4\nNVD-ES: 2.8\nARPS-EXPLOITABILITY: 0.5829541", "creation_timestamp": "2024-04-12T09:07:09.000000Z"} https://db.gcve.eu/sighting/a9afa368-0a23-4853-a034-d6530ab62c8d/export Fri, 12 Apr 2024 09:07:09 +0000 32a31252-2a68-4672-9cbf-d4946381d7ed https://db.gcve.eu/sighting/32a31252-2a68-4672-9cbf-d4946381d7ed/export {"uuid": "32a31252-2a68-4672-9cbf-d4946381d7ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45363", "type": "seen", "source": "https://t.me/arpsyndicate/4581", "content": "#ExploitObserverAlert\n\nCVE-2023-45363\n\nDESCRIPTION: Exploit Observer has 10 entries in 2 file formats related to CVE-2023-45363. An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.\n\nFIRST-EPSS: 0.000470000\nNVD-IS: 3.6\nNVD-ES: 3.9\nARPS-EXPLOITABILITY: 0.5829541", "creation_timestamp": "2024-04-12T09:48:07.000000Z"} {"uuid": "32a31252-2a68-4672-9cbf-d4946381d7ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45363", "type": "seen", "source": "https://t.me/arpsyndicate/4581", "content": "#ExploitObserverAlert\n\nCVE-2023-45363\n\nDESCRIPTION: Exploit Observer has 10 entries in 2 file formats related to CVE-2023-45363. An issue was discovered in ApiPageSet.php in MediaWiki before 1.35.12, 1.36.x through 1.39.x before 1.39.5, and 1.40.x before 1.40.1. It allows attackers to cause a denial of service (unbounded loop and RequestTimeoutException) when querying pages redirected to other variants with redirects and converttitles set.\n\nFIRST-EPSS: 0.000470000\nNVD-IS: 3.6\nNVD-ES: 3.9\nARPS-EXPLOITABILITY: 0.5829541", "creation_timestamp": "2024-04-12T09:48:07.000000Z"} https://db.gcve.eu/sighting/32a31252-2a68-4672-9cbf-d4946381d7ed/export Fri, 12 Apr 2024 09:48:07 +0000 35ea8895-9150-4929-af24-6032bd1d4b1d https://db.gcve.eu/sighting/35ea8895-9150-4929-af24-6032bd1d4b1d/export {"uuid": "35ea8895-9150-4929-af24-6032bd1d4b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45361", "type": "seen", "source": "https://t.me/cvedetector/7430", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2023-45361 - MediaWiki Vector Skin Invalid Title Vulnerability\", \n \"Content\": \"CVE ID : CVE-2023-45361 \nPublished : Oct. 9, 2024, 6:15 a.m. | 32\u00a0minutes ago \nDescription : An issue was discovered in VectorComponentUserLinks.php in the Vector Skin component in MediaWiki before 1.39.5 and 1.40.x before 1.40.1. vector-intro-page MalformedTitleException is uncaught if it is not a valid title, leading to incorrect web pages. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"09 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T08:57:22.000000Z"} {"uuid": "35ea8895-9150-4929-af24-6032bd1d4b1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45361", "type": "seen", "source": "https://t.me/cvedetector/7430", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2023-45361 - MediaWiki Vector Skin Invalid Title Vulnerability\", \n \"Content\": \"CVE ID : CVE-2023-45361 \nPublished : Oct. 9, 2024, 6:15 a.m. | 32\u00a0minutes ago \nDescription : An issue was discovered in VectorComponentUserLinks.php in the Vector Skin component in MediaWiki before 1.39.5 and 1.40.x before 1.40.1. vector-intro-page MalformedTitleException is uncaught if it is not a valid title, leading to incorrect web pages. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"09 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T08:57:22.000000Z"} https://db.gcve.eu/sighting/35ea8895-9150-4929-af24-6032bd1d4b1d/export Wed, 09 Oct 2024 08:57:22 +0000