{"vulnerability": "CVE-2024-12252", "sightings": [{"uuid": "1b0e109a-bb95-4571-9603-686c4fdbbdec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "published-proof-of-concept", "source": "Telegram/yRj3rvTPwwJJrmgfCfqzU7qpeXOxuv70IH7oKMdEI3GidpE", "content": "", "creation_timestamp": "2025-03-26T10:00:06.000000Z"}, {"uuid": "52ae951b-19fb-4110-99ef-27d3f401c3ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lg7ad5sdja2a", "content": "", "creation_timestamp": "2025-01-20T21:02:04.771007Z"}, {"uuid": "7e38f7b3-1ac6-4f8c-94b6-8d20e0fcf984", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf4xi2ymzp2h", "content": "", "creation_timestamp": "2025-01-07T05:53:12.294517Z"}, {"uuid": "6434155c-f917-464d-b08a-3893992bf0b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/325", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12252\n\ud83d\udd39 Description: The SEO LAT Auto Post plugin for WordPress is vulnerable to file overwrite due to a missing capability check on the remote_update AJAX action in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to overwrite the seo-beginner-auto-post.php file which can be leveraged to achieve remote code execution.\n\ud83d\udccf Published: 2025-01-07T04:22:02.465Z\n\ud83d\udccf Modified: 2025-01-07T04:22:02.465Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/67df10cc-ce3c-4157-9860-7e367062f710?source=cve\n2. https://wordpress.org/plugins/seo-beginner-auto-post/", "creation_timestamp": "2025-01-07T04:39:17.000000Z"}, {"uuid": "18995740-313c-48e3-a1c6-fdda259beeb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "seen", "source": "https://t.me/cvedetector/14464", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12252 - WordPress SEO LAT Auto Post File Overwrite Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-12252 \nPublished : Jan. 7, 2025, 5:15 a.m. | 40\u00a0minutes ago \nDescription : The SEO LAT Auto Post plugin for WordPress is vulnerable to file overwrite due to a missing capability check on the remote_update AJAX action in all versions up to, and including, 2.2.1. This makes it possible for unauthenticated attackers to overwrite the seo-beginner-auto-post.php file which can be leveraged to achieve remote code execution. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T07:10:25.000000Z"}, {"uuid": "c71cb4c3-fa80-469c-be73-4d5e46a37ed8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "published-proof-of-concept", "source": "Telegram/vQ0Sm3TCgGLw115KTy13Xlz5wNa50qfz0GIGSnr52V26EMk", "content": "", "creation_timestamp": "2025-03-26T20:00:07.000000Z"}, {"uuid": "500f76ec-db24-4eca-8540-14af66e12fcc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113785496346083664", "content": "", "creation_timestamp": "2025-01-07T05:48:08.186448Z"}, {"uuid": "f919c6e2-fe35-4657-9725-7db22baee34f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-12252", "type": "seen", "source": "https://infosec.exchange/users/random_robbie/statuses/113826826488173623", "content": "", "creation_timestamp": "2025-01-14T12:58:55.348195Z"}]}