{"vulnerability": "CVE-2024-28080", "sightings": [{"uuid": "50c5dbb5-effd-4986-8543-3099dd78ab25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/10165", "content": "Rage Against the Authentication State Machine\n\nhttps://blog.silentsignal.eu/2025/06/14/gitblit-cve-CVE-2024-28080/", "creation_timestamp": "2025-08-29T13:01:40.000000Z"}, {"uuid": "ad64b205-3141-430f-a587-aa24abb0ae33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "seen", "source": "https://securityboulevard.com/2025/09/gitblit-authentication-bypass-vulnerability-cve-2024-28080/", "content": "", "creation_timestamp": "2025-09-12T06:50:39.123079Z"}, {"uuid": "928b0a03-717c-427a-bba5-5b2bf6e9c258", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lxjnc5a2un2b", "content": "", "creation_timestamp": "2025-08-29T08:28:59.484534Z"}, {"uuid": "7b50a840-0ef1-4698-a8df-77328ed0467d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3lxjnuyywif2r", "content": "", "creation_timestamp": "2025-08-29T08:39:32.451606Z"}, {"uuid": "644324c2-352c-428b-aa00-7c1565807d15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2024-28080", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3lxm5b7ka4y2w", "content": "", "creation_timestamp": "2025-08-30T08:20:07.784005Z"}, {"uuid": "14d6d705-09b6-4b82-a479-d522bdbeb199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "seen", "source": "https://bsky.app/profile/crowdcyber.bsky.social/post/3lxnsf77dot2m", "content": "", "creation_timestamp": "2025-08-31T00:10:50.239558Z"}, {"uuid": "603e87c4-beca-4624-a7b6-d106b50bd270", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lxx46de2tk2b", "content": "", "creation_timestamp": "2025-09-03T16:59:54.540161Z"}, {"uuid": "ffeede52-d28d-4e77-a73d-eebbd80018e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-28080", "type": "seen", "source": "https://t.me/TopCyberTechNews/591", "content": "Top Security News for Today\n\nRage Against the Authentication State Machine (CVE-2024-28080)  \nhttps://www.reddit.com/r/netsec/comments/1n31plm/rage_against_the_authentication_state_machine/\n\nHow attackers adapt to built-in macOS protection  \nhttps://securelist.com/macos-security-and-typical-attacks/117367/\n\nCache Me If You Can (Sitecore Experience Platform Cache Poisoning to RCE) - watchTowr Labs  \nhttps://www.reddit.com/r/netsec/comments/1n33j71/cache_me_if_you_can_sitecore_experience_platform/\n\nBaggage Tag Scam  \nhttps://www.schneier.com/blog/archives/2025/08/baggage-tag-scam.html\n\nRansomware gang takedowns causing explosion of new, smaller groups  \nhttps://therecord.media/ransomware-gang-takedown-proliferation\n\nAI Waifu RAT: A Ring3 malware-like RAT based on LLM manipulation is circulating in the wild.  \nhttps://www.reddit.com/r/netsec/comments/1n3a1ll/ai_waifu_rat_a_ring3_malwarelike_rat_based_on_llm/\n\nHidden in plain sight: a misconfigured upload path that invited trouble  \nhttps://www.reddit.com/r/netsec/comments/1n3cu26/hidden_in_plain_sight_a_misconfigured_upload_path/\n\nOperation Serengeti 2.0: Trend Micro Helps Law Enforcement Fight Cybercrime in Africa  \nhttps://www.trendmicro.com/en_us/research/25/h/operation-serengeti-trend-micro.html\n\nScammer steals $1.5 million from Baltimore by spoofing city vendor  \nhttps://therecord.media/scammer-steals-baltimore-city-impersonation-vendor\n\nFollow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2025-08-30T09:30:25.000000Z"}]}