{"vulnerability": "CVE-2024-1310", "sightings": [{"uuid": "2fc36cce-948a-433b-8fb9-ef0b5bef410d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13108", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler5ucvind2a", "content": "", "creation_timestamp": "2025-01-02T13:15:26.990523Z"}, {"uuid": "ef33b7fa-59df-4930-bd1d-7f7c3ae623f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13109", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler5ufdlyx2m", "content": "", "creation_timestamp": "2025-01-02T13:15:29.139748Z"}, {"uuid": "5f63995b-3051-4b0f-b78f-1ec65b9d9907", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13108", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lercqkrnib2i", "content": "", "creation_timestamp": "2025-01-02T14:42:50.083922Z"}, {"uuid": "dad771cc-e4d1-4931-9ee0-3022e0efec47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13109", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lercqlg5rt2r", "content": "", "creation_timestamp": "2025-01-02T14:42:53.702002Z"}, {"uuid": "5f16d260-e285-457b-b430-f0a65c52eddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13107", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113759564347350044", "content": "", "creation_timestamp": "2025-01-02T15:53:17.065162Z"}, {"uuid": "96f74192-2740-415f-ab30-0e3814299d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13100", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113921455076014399", "content": "", "creation_timestamp": "2025-01-31T06:04:13.220749Z"}, {"uuid": "af582d9c-a86a-4005-86c7-c073f4496495", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13100", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgzdwtbdbd2b", "content": "", "creation_timestamp": "2025-01-31T06:15:54.345372Z"}, {"uuid": "6d7f8009-4d67-4660-8e7a-ed7fde2d7280", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgzdwvnz3w2c", "content": "", "creation_timestamp": "2025-01-31T06:15:56.676344Z"}, {"uuid": "d4af2c16-16b7-46db-b7f3-9c16f4fd59b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13100", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgzi4ogugk2w", "content": "", "creation_timestamp": "2025-01-31T07:30:45.189447Z"}, {"uuid": "03790c67-01fe-4617-82d7-93dbda0c1e37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgzi4oubw72y", "content": "", "creation_timestamp": "2025-01-31T07:30:46.335439Z"}, {"uuid": "70955248-eddc-40dd-820e-a10bf08138e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8094", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13101\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The WP MediaTagger WordPress plugin through 4.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.\n\ud83d\udccf Published: 2025-01-31T06:00:14.631Z\n\ud83d\udccf Modified: 2025-03-19T17:11:54.213Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/03f51b54-0ec2-40ce-a0fa-ef0c4ab0ea99/", "creation_timestamp": "2025-03-19T17:20:57.000000Z"}, {"uuid": "b0c4b80c-597f-452d-91d1-edf9a881082e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13103", "type": "seen", "source": "https://t.me/cvedetector/14115", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13103 - D-Link DIR-816 Virtual Service Handler Improper Access Controls Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13103 \nPublished : Jan. 2, 2025, 10:15 a.m. | 26\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This issue affects some unknown processing of the file /goform/form2AddVrtsrv.cgi of the component Virtual Service Handler. The manipulation leads to improper access controls. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T11:44:32.000000Z"}, {"uuid": "186d9f9e-4ab0-4c34-ba43-ef36e7a8b3a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13102", "type": "seen", "source": "https://t.me/cvedetector/14114", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13102 - D-Link DIR-816 Vulnerability - Remote DDNS Service Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-13102 \nPublished : Jan. 2, 2025, 10:15 a.m. | 26\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. This vulnerability affects unknown code of the file /goform/DDNS of the component DDNS Service. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T11:44:28.000000Z"}, {"uuid": "88075736-dcec-4abb-b88a-08a1a99a9dd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13109", "type": "seen", "source": "https://t.me/cvedetector/14141", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13109 - Beijing Yunfan Internet Technology Yunfan Learning Examination System Information Disclosure Authorized Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13109 \nPublished : Jan. 2, 2025, 1:15 p.m. | 39\u00a0minutes ago \nDescription : A vulnerability was found in Beijing Yunfan Internet Technology Yunfan Learning Examination System 1.9.2. It has been rated as critical. This issue affects some unknown processing of the file /doc.html. The manipulation leads to improper authorization. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T15:05:26.000000Z"}, {"uuid": "67ff08a4-c3ed-4e29-a4ea-7996c0943f6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13106", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2nuw3le2m", "content": "", "creation_timestamp": "2025-01-02T12:18:09.239345Z"}, {"uuid": "d90b2a0c-7a64-46d1-85d9-11ddbd50b056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13107", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2nxg7jl25", "content": "", "creation_timestamp": "2025-01-02T12:18:11.777492Z"}, {"uuid": "02548bad-0aa4-4429-925c-31e0390e9bfd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13104", "type": "seen", "source": "https://t.me/cvedetector/14118", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13104 - D-Link DIR-816 WiFi Settings Handler Improper Access Control Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13104 \nPublished : Jan. 2, 2025, 11:15 a.m. | 16\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. Affected is an unknown function of the file /goform/form2AdvanceSetup.cgi of the component WiFi Settings Handler. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T12:34:42.000000Z"}, {"uuid": "e38fb208-6968-4b78-b3b0-b358b70e4daf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13105", "type": "seen", "source": "https://t.me/cvedetector/14117", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13105 - D-Link DIR-816 Dhcpd Setting Handler Improper Access Control Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13105 \nPublished : Jan. 2, 2025, 11:15 a.m. | 16\u00a0minutes ago \nDescription : A vulnerability has been found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /goform/form2Dhcpd.cgi of the component DHCPD Setting Handler. The manipulation leads to improper access controls. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T12:34:41.000000Z"}, {"uuid": "d9b95d03-3cc8-4a75-a50f-50fe9b394311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13108", "type": "seen", "source": "https://t.me/cvedetector/14146", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13108 - D-Link DIR-816 Web Application Improper Access Control Remote Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13108 \nPublished : Jan. 2, 2025, 1:15 p.m. | 39\u00a0minutes ago \nDescription : A vulnerability was found in D-Link DIR-816 A2 1.10CNB05_R1B011D88210. It has been declared as critical. This vulnerability affects unknown code of the file /goform/form2NetSniper.cgi. The manipulation leads to improper access controls. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T15:05:32.000000Z"}, {"uuid": "c09569ad-8e71-4d81-9eab-c536e3aa974a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13103", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113758211078784435", "content": "", "creation_timestamp": "2025-01-02T10:09:07.555825Z"}, {"uuid": "fb7a4c7a-fa38-4b97-9a5b-12d058a8bb82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13102", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3leqtsr2ygw2k", "content": "", "creation_timestamp": "2025-01-02T10:15:36.887003Z"}, {"uuid": "0582ffa3-2a6a-43cd-aa38-00fee2b1d4c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13103", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3leqtstiqlb22", "content": "", "creation_timestamp": "2025-01-02T10:15:39.633373Z"}, {"uuid": "95b57dd2-d9bb-41ab-91f3-bc2b4ddd051c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13104", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113758331090881597", "content": "", "creation_timestamp": "2025-01-02T10:39:38.816145Z"}, {"uuid": "aa1d66e5-9af1-42e4-a39e-9174bb156d6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13104", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3leqx5kgo6422", "content": "", "creation_timestamp": "2025-01-02T11:15:20.252293Z"}, {"uuid": "51498735-7b96-43c5-aacc-0050d9990c9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13105", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3leqx5mpdte22", "content": "", "creation_timestamp": "2025-01-02T11:15:22.458950Z"}, {"uuid": "82aa371c-090d-4e17-8cc7-3d6b7244cbcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13106", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113758545638948376", "content": "", "creation_timestamp": "2025-01-02T11:34:12.484221Z"}, {"uuid": "081099ae-44c5-422c-957c-98ebcd028636", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13104", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3leqyoc725o2g", "content": "", "creation_timestamp": "2025-01-02T11:42:35.653151Z"}, {"uuid": "74622042-eacf-43bf-b397-fb3406ec80c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13105", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3leqyocj43b2q", "content": "", "creation_timestamp": "2025-01-02T11:42:36.208427Z"}, {"uuid": "7d9b08d1-9c88-4924-9e60-622bd1b29f8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113921514078558690", "content": "", "creation_timestamp": "2025-01-31T06:19:13.405339Z"}, {"uuid": "e8261c6a-4bb2-4c14-bfbd-6daeacfecf9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13100", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3601", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13100\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-01-31T06:15:27.970\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/b9261010-ab55-4d18-8fd2-2003f8692ae8/", "creation_timestamp": "2025-01-31T07:24:22.000000Z"}, {"uuid": "05fd73bb-373e-4a61-8e22-500cef2cc61a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3600", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13101\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-01-31T06:15:28.070\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/03f51b54-0ec2-40ce-a0fa-ef0c4ab0ea99/", "creation_timestamp": "2025-01-31T07:24:21.000000Z"}, {"uuid": "dd6165d9-e401-46d8-b36e-a08c4b2c5eed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3606", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13101\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The WP MediaTagger WordPress plugin through 4.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.\n\ud83d\udccf Published: 2025-01-31T06:30:53Z\n\ud83d\udccf Modified: 2025-01-31T06:30:53Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-13101\n2. https://wpscan.com/vulnerability/03f51b54-0ec2-40ce-a0fa-ef0c4ab0ea99", "creation_timestamp": "2025-01-31T08:14:54.000000Z"}, {"uuid": "b8eb5bdc-5f37-4932-b086-6c3a134ac211", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13100", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3605", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13100\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The OPSI Israel Domestic Shipments WordPress plugin through 2.6.3 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin.\n\ud83d\udccf Published: 2025-01-31T06:30:53Z\n\ud83d\udccf Modified: 2025-01-31T06:30:53Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-13100\n2. https://wpscan.com/vulnerability/b9261010-ab55-4d18-8fd2-2003f8692ae8", "creation_timestamp": "2025-01-31T08:14:54.000000Z"}, {"uuid": "18f4a916-5bab-4b06-8085-8a813a78b171", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-13101", "type": "seen", "source": "https://t.me/cvedetector/16901", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13101 - \"WordPress MediaTagger Stored Cross-Site Scripting Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-13101 \nPublished : Jan. 31, 2025, 6:15 a.m. | 1\u00a0hour, 29\u00a0minutes ago \nDescription : The WP MediaTagger WordPress plugin through 4.1.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-31T09:31:09.000000Z"}]}