{"vulnerability": "CVE-2024-1006", "sightings": [{"uuid": "0e71d9ff-cd91-48b9-92ec-3d7fe8c7d343", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-10069", "type": "seen", "source": "https://t.me/cvedetector/8191", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10069 - ESAfENET CDG Java SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10069 \nPublished : Oct. 17, 2024, 3:15 p.m. | 41\u00a0minutes ago \nDescription : A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. Affected by this issue is the function actionPassMainApplication of the file /com/esafenet/servlet/client/MailDecryptApplicationService.java. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T18:19:05.000000Z"}, {"uuid": "bf361c71-7526-412e-ae6e-e7f2149e9e73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-1006", "type": "seen", "source": "https://t.me/ctinow/175408", "content": "https://ift.tt/qs9wTj5\nCVE-2024-1006", "creation_timestamp": "2024-01-29T17:31:54.000000Z"}, {"uuid": "87e1255a-294d-4a40-9830-7d485a818f66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-10068", "type": "seen", "source": "https://t.me/cvedetector/8164", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10068 - FlashFXP Uncontrolled Search Path Local Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10068 \nPublished : Oct. 17, 2024, 11:15 a.m. | 41\u00a0minutes ago \nDescription : A vulnerability was found in OpenSight Software FlashFXP 5.4.0.3970. It has been classified as critical. Affected is an unknown function in the library libcrypto-1_1.dll of the file FlashFXP.exe. The manipulation leads to uncontrolled search path. An attack has to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T14:07:59.000000Z"}, {"uuid": "ecf921f8-fd33-4da2-828a-d5975a9f8d75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-1006", "type": "seen", "source": "https://t.me/ctinow/189443", "content": "https://ift.tt/xPZwoLv\nCVE-2024-1006 | Shanxi Diankeyun Technology NODERP up to 6.0.2 Cookie common.php Nod_User_Id/Nod_User_Token improper authentication", "creation_timestamp": "2024-02-21T10:41:19.000000Z"}]}