{"vulnerability": "CVE-2024-3752", "sightings": [{"uuid": "dbe4b4da-4b1a-4ee2-8446-1e85f40746f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37527", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqdmkmrtn2w", "content": "", "creation_timestamp": "2025-01-27T16:16:11.924670Z"}, {"uuid": "c292b7b6-0de4-4f93-8d39-785edfae6fda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37527", "type": "seen", "source": "MISP/d0bda5d9-8cbc-4c6c-8803-a5e3150f9ec2", "content": "", "creation_timestamp": "2025-09-01T19:03:03.000000Z"}, {"uuid": "17219756-e3d5-470a-8fe6-296c11a9366c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37522", "type": "seen", "source": "https://t.me/cvedetector/1321", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37522 - \"With Multiple WooCommerce Order Emails Dario Curas\u00ec CC & BCC Stored XSS\"\", \n  \"Content\": \"CVE ID : CVE-2024-37522 \nPublished : July 21, 2024, 8:15 a.m. | 34\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Dario Curas\u00ec CC & BCC for Woocommerce Order Emails allows Stored XSS.This issue affects CC & BCC for Woocommerce Order Emails: from n/a through 1.4.1. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-21T10:52:01.000000Z"}, {"uuid": "93a833f4-18c2-47d8-ad5c-86094c8430e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37523", "type": "seen", "source": "https://t.me/cvedetector/1316", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37523 - AMP-MODE Login Logo Editor: Reflected Stored Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-37523 \nPublished : July 21, 2024, 7:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AMP-MODE Login Logo Editor allows Stored XSS.This issue affects Login Logo Editor: from n/a through 1.3.3. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-21T10:01:50.000000Z"}, {"uuid": "12c4ddc1-442a-4086-b30b-ecda5a263d3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37528", "type": "seen", "source": "https://t.me/cvedetector/170", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37528 - IBM Cloud Pak for Business Automation 18.0.0, 18.0\", \n  \"Content\": \"CVE ID : CVE-2024-37528 \nPublished : July 8, 2024, 3:15 a.m. | 48\u00a0minutes ago \nDescription : IBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  IBM X-Force ID:  294293. \nSeverity: 4.8 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-08T06:08:12.000000Z"}, {"uuid": "f7a44d10-1fe1-4eb8-a150-66c0be5d0c61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37527", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113901113262793871", "content": "", "creation_timestamp": "2025-01-27T15:51:01.839070Z"}, {"uuid": "e0dc2881-d191-4094-bd9d-b47b5877e17d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37527", "type": "seen", "source": "https://t.me/cvedetector/16468", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37527 - IBM OpenPages with Watson Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-37527 \nPublished : Jan. 27, 2025, 4:15 p.m. | 17\u00a0minutes ago \nDescription : IBM OpenPages with Watson 8.3 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-27T17:40:21.000000Z"}, {"uuid": "6d1b7118-4fc9-45d0-8942-064dcfe72515", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37521", "type": "seen", "source": "https://t.me/cvedetector/1324", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37521 - Zwwoooo zBench Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-37521 \nPublished : July 21, 2024, 8:15 a.m. | 34\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in zwwooooo zBench allows Stored XSS.This issue affects zBench: from n/a through 1.4.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-21T10:52:07.000000Z"}, {"uuid": "b1d76614-7d5f-46b4-850d-42436fb497a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37526", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113902557559561784", "content": "", "creation_timestamp": "2025-01-27T21:58:20.126536Z"}, {"uuid": "cedb97b5-3287-456a-b4ee-abac4b5c7514", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37526", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqxpcasxc2b", "content": "", "creation_timestamp": "2025-01-27T22:15:38.847513Z"}, {"uuid": "f734caa5-38e9-4bb5-b132-214383e33f1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37529", "type": "seen", "source": "https://t.me/cvedetector/3192", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37529 - IBM Db2 Memory Corruption DOS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-37529 \nPublished : Aug. 14, 2024, 6:15 p.m. | 28\u00a0minutes ago \nDescription : IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 11.1 and 11.5 could allow an authenticated user to cause a denial of service with a specially crafted query due to improper memory allocation.  IBM X-Force ID:  294295. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-14T20:44:27.000000Z"}, {"uuid": "1bdc23d7-7f8d-483b-9a33-626b348521af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37520", "type": "seen", "source": "https://t.me/cvedetector/348", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37520 - Improper Limitation of a Pathname to a Restricted\", \n  \"Content\": \"CVE ID : CVE-2024-37520 \nPublished : July 9, 2024, 1:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in RadiusTheme ShopBuilder \u2013 Elementor WooCommerce Builder Addons allows Path Traversal.This issue affects ShopBuilder \u2013 Elementor WooCommerce Builder Addons: from n/a through 2.1.12. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T15:36:54.000000Z"}, {"uuid": "966148af-8669-43a9-80f4-67f3f2f4f917", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37528", "type": "seen", "source": "https://t.me/Kelvinseccommunity/536", "content": "\ud83d\udd25\ud83d\udd25\ud83d\udd25 CVE-2024-37528\nIBM Cloud Pak for Business Automation 18.0.0, 18.0.1, 18.0.2, 19.0.1, 19.0.2, 19.0.3, 20.0.1, 20.0.2, 20.0.3, 21.0.1, 21.0.2, 21.0.3, 22.0.1, 22.0.2, 23.0.1, and 23.0.2 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.  IBM X-Force ID:  294293.\n\n\ud83c\udfc6 @Kelvinseccommunity", "creation_timestamp": "2024-07-08T06:40:28.000000Z"}]}