{"uuid": "e9e2dc54-a4a5-4533-acd6-5230dc42c202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-24914", "type": "seen", "source": "https://t.me/arpsyndicate/4863", "content": "#ExploitObserverAlert\n\nCVE-2020-24914\n\nDESCRIPTION: Exploit Observer has 13 entries in 4 file formats related to CVE-2020-24914. A PHP object injection bug in profile.php in qcubed (all versions including 3.1.1) unserializes the untrusted data of the POST-variable \"strProfileData\" and allows an unauthenticated attacker to execute code via a crafted POST request.\n\nFIRST-EPSS: 0.016790000\nNVD-IS: 5.9\nNVD-ES: 3.9\nARPS-PRIORITY: 0.8646988", "creation_timestamp": "2024-04-25T21:02:24.000000Z"}