{"vulnerability": "CVE-2024-3962", "sightings": [{"uuid": "83015b4f-0e8c-415f-bd31-1ede6ba6acdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39622", "type": "seen", "source": "https://t.me/cvedetector/4420", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39622 - CridioStudio ListingPro SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-39622 \nPublished : Aug. 29, 2024, 3:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro.This issue affects ListingPro: from n/a through 2.9.4. \nSeverity: 9.3 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T17:53:56.000000Z"}, {"uuid": "edc3bea5-6880-40bb-97cd-7194e9d5e102", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39620", "type": "seen", "source": "https://t.me/cvedetector/4417", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39620 - CridioStudio ListingPro SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-39620 \nPublished : Aug. 29, 2024, 3:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T17:53:53.000000Z"}, {"uuid": "f9965099-da61-4f05-8da5-a5bfdbe1e8c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39624", "type": "seen", "source": "https://t.me/cvedetector/2274", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39624 - CridioStudio ListingPro Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39624 \nPublished : Aug. 1, 2024, 9:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through 2.9.3. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-01T23:47:24.000000Z"}, {"uuid": "925826d8-c0d8-41b3-9871-9530860ae298", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39621", "type": "seen", "source": "https://t.me/cvedetector/2273", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39621 - CridioStudio ListingPro Path Traversal\", \n  \"Content\": \"CVE ID : CVE-2024-39621 \nPublished : Aug. 1, 2024, 9:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CridioStudio ListingPro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through 2.9.3. \nSeverity: 8.0 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-01T23:47:23.000000Z"}, {"uuid": "b11d3e5a-a122-47b9-b2d4-e621d56b2859", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39626", "type": "seen", "source": "https://t.me/cvedetector/2315", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39626 - 5 Star Plugins Pretty Simple Popup Builder Stored Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39626 \nPublished : Aug. 1, 2024, 11:15 p.m. | 37\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in 5 Star Plugins Pretty Simple Popup Builder allows Stored XSS.This issue affects Pretty Simple Popup Builder: from n/a through 1.0.7. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-02T02:18:50.000000Z"}, {"uuid": "8a22ed81-33f8-4d1f-965e-a9181493952d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39628", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1006", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39628\n\ud83d\udd39 Description: Cross-Site Request Forgery (CSRF) vulnerability in Saturday Drive Ninja Forms allows Cross Site Request Forgery.This issue affects Ninja Forms: from n/a through 3.8.6.\n\ud83d\udccf Published: 2024-08-26T20:58:09.794Z\n\ud83d\udccf Modified: 2025-01-09T17:42:04.960Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/ninja-forms/wordpress-ninja-forms-plugin-3-8-6-cross-site-request-forgery-csrf-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-09T18:19:28.000000Z"}, {"uuid": "2868b097-30cd-4635-bc19-93bd111ff7e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39623", "type": "seen", "source": "https://t.me/cvedetector/14144", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39623 - CridioStudio ListingPro CSRF Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-39623 \nPublished : Jan. 2, 2025, 1:15 p.m. | 39\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in CridioStudio ListingPro allows Authentication Bypass.This issue affects ListingPro: from n/a through 2.9.4. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T15:05:31.000000Z"}, {"uuid": "8e8a5d98-ca84-432c-88cc-985bf2d6d0c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39629", "type": "seen", "source": "https://t.me/cvedetector/2313", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39629 - ThemeGrill Himalayas Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-39629 \nPublished : Aug. 1, 2024, 11:15 p.m. | 37\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemeGrill Himalayas allows Stored XSS.This issue affects Himalayas: from n/a through 1.3.2. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-02T02:18:49.000000Z"}, {"uuid": "8380606c-4e91-497f-bb08-0c6bf3f0314a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39627", "type": "seen", "source": "https://t.me/cvedetector/2311", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39627 - Imagely NextGEN Gallery Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-39627 \nPublished : Aug. 1, 2024, 11:15 p.m. | 37\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Imagely NextGEN Gallery allows Stored XSS.This issue affects NextGEN Gallery: from n/a through 3.59.3. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-02T02:18:47.000000Z"}, {"uuid": "aec05a59-48a6-4fc2-842a-af338219411d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39623", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler5umvgo32i", "content": "", "creation_timestamp": "2025-01-02T13:15:36.967884Z"}, {"uuid": "79118d54-135e-4383-9ec2-1b9a22282c4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39623", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lercqlmlza2h", "content": "", "creation_timestamp": "2025-01-02T14:42:55.044837Z"}, {"uuid": "15e19de1-7265-4e21-9ed8-25e3db5892d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39623", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lercqltehy2g", "content": "", "creation_timestamp": "2025-01-02T14:42:56.370819Z"}]}