https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 05 Jun 2026 04:11:44 +0000 https://db.gcve.eu/sighting/cd7cf2f5-3da1-4b3d-a5d8-087869a70765/export {"uuid": "cd7cf2f5-3da1-4b3d-a5d8-087869a70765", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45265", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8369", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-45265\nURL\uff1ahttps://github.com/TheHermione/CVE-2024-45265\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-08-26T11:26:08.000000Z"} {"uuid": "cd7cf2f5-3da1-4b3d-a5d8-087869a70765", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45265", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8369", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-45265\nURL\uff1ahttps://github.com/TheHermione/CVE-2024-45265\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-08-26T11:26:08.000000Z"} https://db.gcve.eu/sighting/cd7cf2f5-3da1-4b3d-a5d8-087869a70765/export Mon, 26 Aug 2024 11:26:08 +0000 https://db.gcve.eu/sighting/152a5282-e5cd-40d7-8098-44357c636a55/export {"uuid": "152a5282-e5cd-40d7-8098-44357c636a55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45265", "type": "seen", "source": "https://t.me/cvedetector/4191", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45265 - SkySystem Arfa-CMS SQL Injection vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45265 \nPublished : Aug. 26, 2024, 6:15 p.m. | 38\u00a0minutes ago \nDescription : A SQL injection vulnerability in the poll component in SkySystem Arfa-CMS before 5.1.3124 allows remote attackers to execute arbitrary SQL commands via the psid parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T21:20:18.000000Z"} {"uuid": "152a5282-e5cd-40d7-8098-44357c636a55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45265", "type": "seen", "source": "https://t.me/cvedetector/4191", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45265 - SkySystem Arfa-CMS SQL Injection vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45265 \nPublished : Aug. 26, 2024, 6:15 p.m. | 38\u00a0minutes ago \nDescription : A SQL injection vulnerability in the poll component in SkySystem Arfa-CMS before 5.1.3124 allows remote attackers to execute arbitrary SQL commands via the psid parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"26 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T21:20:18.000000Z"} https://db.gcve.eu/sighting/152a5282-e5cd-40d7-8098-44357c636a55/export Mon, 26 Aug 2024 21:20:18 +0000 https://db.gcve.eu/sighting/e76a1146-b359-43ce-a2f8-b4c4840f2fc8/export {"uuid": "e76a1146-b359-43ce-a2f8-b4c4840f2fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45264", "type": "seen", "source": "https://t.me/cvedetector/4253", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45264 - SkySystem Arfa-CMS CSRF Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45264 \nPublished : Aug. 27, 2024, 4:15 p.m. | 43\u00a0minutes ago \nDescription : A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before 5.1.3124 allows remote attackers to add a new administrator, leading to escalation of privileges. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"27 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-27T19:03:57.000000Z"} {"uuid": "e76a1146-b359-43ce-a2f8-b4c4840f2fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45264", "type": "seen", "source": "https://t.me/cvedetector/4253", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45264 - SkySystem Arfa-CMS CSRF Privilege Escalation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45264 \nPublished : Aug. 27, 2024, 4:15 p.m. | 43\u00a0minutes ago \nDescription : A cross-site request forgery (CSRF) vulnerability in the admin panel in SkySystem Arfa-CMS before 5.1.3124 allows remote attackers to add a new administrator, leading to escalation of privileges. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"27 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-27T19:03:57.000000Z"} https://db.gcve.eu/sighting/e76a1146-b359-43ce-a2f8-b4c4840f2fc8/export Tue, 27 Aug 2024 19:03:57 +0000 https://db.gcve.eu/sighting/524fd7f2-3580-4076-a2ae-1755804a7447/export {"uuid": "524fd7f2-3580-4076-a2ae-1755804a7447", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45269", "type": "seen", "source": "https://t.me/cvedetector/4588", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45269 - WordPress Carousel Slider CSRF Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45269 \nPublished : Sept. 2, 2024, 12:15 a.m. | 41\u00a0minutes ago \nDescription : WordPress plugin \"Carousel Slider\" provided by Sayful Islam contains a cross-site request forgery vulnerability on Carousel image selection feature. While logged in to the WordPress site with Carousel Slider plugin enabled, accessing a crafted page may cause a user to alter the contents of the WordPress site. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Sep 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T03:00:10.000000Z"} {"uuid": "524fd7f2-3580-4076-a2ae-1755804a7447", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45269", "type": "seen", "source": "https://t.me/cvedetector/4588", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45269 - WordPress Carousel Slider CSRF Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45269 \nPublished : Sept. 2, 2024, 12:15 a.m. | 41\u00a0minutes ago \nDescription : WordPress plugin \"Carousel Slider\" provided by Sayful Islam contains a cross-site request forgery vulnerability on Carousel image selection feature. While logged in to the WordPress site with Carousel Slider plugin enabled, accessing a crafted page may cause a user to alter the contents of the WordPress site. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Sep 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-02T03:00:10.000000Z"} https://db.gcve.eu/sighting/524fd7f2-3580-4076-a2ae-1755804a7447/export Mon, 02 Sep 2024 03:00:10 +0000 https://db.gcve.eu/sighting/3e90eae1-96e8-432a-8738-13e316cc0a4c/export {"uuid": "3e90eae1-96e8-432a-8738-13e316cc0a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45262", "type": "seen", "source": "https://t.me/cvedetector/8858", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45262 - GL-iNet RPC Entity Path Traversal\", \n \"Content\": \"CVE ID : CVE-2024-45262 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The params parameter in the call method of the /rpc endpoint is vulnerable to arbitrary directory traversal, which enables attackers to execute scripts under any path. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:37.000000Z"} {"uuid": "3e90eae1-96e8-432a-8738-13e316cc0a4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45262", "type": "seen", "source": "https://t.me/cvedetector/8858", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45262 - GL-iNet RPC Entity Path Traversal\", \n \"Content\": \"CVE ID : CVE-2024-45262 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The params parameter in the call method of the /rpc endpoint is vulnerable to arbitrary directory traversal, which enables attackers to execute scripts under any path. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:37.000000Z"} https://db.gcve.eu/sighting/3e90eae1-96e8-432a-8738-13e316cc0a4c/export Fri, 25 Oct 2024 00:21:37 +0000 https://db.gcve.eu/sighting/5596a8f4-3f32-4789-b455-9ea27c0bccd9/export {"uuid": "5596a8f4-3f32-4789-b455-9ea27c0bccd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45263", "type": "seen", "source": "https://t.me/cvedetector/8859", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45263 - GL-iNet File Upload Remote Code Execution Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45263 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The upload interface allows the uploading of arbitrary files to the device. Once the device executes the files, it can lead to information leakage, enabling complete control. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:38.000000Z"} {"uuid": "5596a8f4-3f32-4789-b455-9ea27c0bccd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45263", "type": "seen", "source": "https://t.me/cvedetector/8859", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45263 - GL-iNet File Upload Remote Code Execution Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45263 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The upload interface allows the uploading of arbitrary files to the device. Once the device executes the files, it can lead to information leakage, enabling complete control. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:38.000000Z"} https://db.gcve.eu/sighting/5596a8f4-3f32-4789-b455-9ea27c0bccd9/export Fri, 25 Oct 2024 00:21:38 +0000 https://db.gcve.eu/sighting/9928c101-c79d-4e3e-ba17-cb026202a037/export {"uuid": "9928c101-c79d-4e3e-ba17-cb026202a037", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45261", "type": "seen", "source": "https://t.me/cvedetector/8863", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45261 - GL-iNet Authentication Bypass Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45261 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The SID generated for a specific user is not tied to that user itself, which allows other users to potentially use it for authentication. Once an attacker bypasses the application's authentication procedures, they can generate a valid SID, escalate privileges, and gain full control. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:43.000000Z"} {"uuid": "9928c101-c79d-4e3e-ba17-cb026202a037", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45261", "type": "seen", "source": "https://t.me/cvedetector/8863", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45261 - GL-iNet Authentication Bypass Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45261 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. The SID generated for a specific user is not tied to that user itself, which allows other users to potentially use it for authentication. Once an attacker bypasses the application's authentication procedures, they can generate a valid SID, escalate privileges, and gain full control. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:43.000000Z"} https://db.gcve.eu/sighting/9928c101-c79d-4e3e-ba17-cb026202a037/export Fri, 25 Oct 2024 00:21:43 +0000 https://db.gcve.eu/sighting/d9d00915-877f-47b4-8445-f8db33fd9b98/export {"uuid": "d9d00915-877f-47b4-8445-f8db33fd9b98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45260", "type": "seen", "source": "https://t.me/cvedetector/8866", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45260 - GL-iNet Unauthorized Group-Based Interface Invocation vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45260 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. Users who belong to unauthorized groups can invoke any interface of the device, thereby gaining complete control over it. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:46.000000Z"} {"uuid": "d9d00915-877f-47b4-8445-f8db33fd9b98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45260", "type": "seen", "source": "https://t.me/cvedetector/8866", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45260 - GL-iNet Unauthorized Group-Based Interface Invocation vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-45260 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : An issue was discovered on certain GL-iNet devices, including MT6000, MT3000, MT2500, AXT1800, and AX1800 4.6.2. Users who belong to unauthorized groups can invoke any interface of the device, thereby gaining complete control over it. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"24 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:46.000000Z"} https://db.gcve.eu/sighting/d9d00915-877f-47b4-8445-f8db33fd9b98/export Fri, 25 Oct 2024 00:21:46 +0000 https://db.gcve.eu/sighting/c9a18af1-8487-4ace-a5bc-88bbd3cf3901/export {"uuid": "c9a18af1-8487-4ace-a5bc-88bbd3cf3901", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4526", "type": "seen", "source": "Telegram/H55ov8IacpGD4d6mrtffL7qZ6gWihoji42FC5ULXd8vVXzpR", "content": "", "creation_timestamp": "2025-02-19T19:13:57.000000Z"} {"uuid": "c9a18af1-8487-4ace-a5bc-88bbd3cf3901", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4526", "type": "seen", "source": "Telegram/H55ov8IacpGD4d6mrtffL7qZ6gWihoji42FC5ULXd8vVXzpR", "content": "", "creation_timestamp": "2025-02-19T19:13:57.000000Z"} https://db.gcve.eu/sighting/c9a18af1-8487-4ace-a5bc-88bbd3cf3901/export Wed, 19 Feb 2025 19:13:57 +0000