{"vulnerability": "CVE-2022-24124", "sightings": [{"uuid": "e21bcf1b-a021-43f6-8314-af9a7fe17d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24124", "type": "seen", "source": "https://t.me/cibsecurity/36566", "content": "\u203c CVE-2022-24124 \u203c\n\nThe query API in Casdoor before 1.13.1 has a SQL injection vulnerability related to the field and value parameters, as demonstrated by api/get-organizations.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-30T02:23:22.000000Z"}, {"uuid": "0067bf2a-b1df-43f5-aee2-763f2d46b546", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24124", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/6742", "content": "#exploit\n1. CVE-2021-38297:\nGo Web Assembly Vulnerability\nhttps://jfrog.com/blog/cve-2021-38297-analysis-of-a-go-web-assembly-vulnerability\n\n2. CVE-2022-24124:\nCasdoor SQL Injection\nhttps://github.com/cukw/CVE-2022-24124_POC\n]-&gt; https://blog.qualys.com/vulnerabilities-threat-research/2022/03/09/casdoor-sql-injection-cve-2022-24124", "creation_timestamp": "2022-09-05T12:37:13.000000Z"}, {"uuid": "0dba5300-5cf6-4521-9017-6084088411e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24124", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1550", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aPOC for CVE-2022-24124\nURL\uff1ahttps://github.com/ColdFusionX/CVE-2022-24124", "creation_timestamp": "2022-02-27T07:33:48.000000Z"}, {"uuid": "c1a63bcb-17fe-4429-a22b-657979bac37a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24124", "type": "seen", "source": "https://t.me/ctinow/48210", "content": "Casdoor SQL Injection (CVE-2022-24124)\n\nhttps://ift.tt/aQrKzDB", "creation_timestamp": "2022-03-09T11:36:32.000000Z"}]}