{"vulnerability": "CVE-2024-4782", "sightings": [{"uuid": "1457bb5f-9975-47c8-8fa7-8c5a037b6964", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47829", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lnijr22bms2h", "content": "", "creation_timestamp": "2025-04-23T15:41:08.127257Z"}, {"uuid": "b7d061ce-41eb-4ee5-9d29-1bd4e22a0af6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47829", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnipaqz3vk2y", "content": "", "creation_timestamp": "2025-04-23T17:19:29.415743Z"}, {"uuid": "8aebc1cd-369b-44ac-976a-cfb29475ba39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47827", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:29.000000Z"}, {"uuid": "02bfcea4-52d5-4b4c-83a7-dd53acf597ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47827", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:57.000000Z"}, {"uuid": "236aa8ce-a782-4000-9c53-b558efb12776", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47823", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/15668", "content": "\u200aExploiting Livewire: CVE-2024-47823 Puts Laravel Apps at Risk\n\nhttps://securityonline.info/exploiting-livewire-cve-2024-47823-puts-laravel-apps-at-risk/", "creation_timestamp": "2024-10-10T09:20:30.000000Z"}, {"uuid": "dec14e97-3471-4ff0-b898-854c2944e79b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47821", "type": "seen", "source": "https://t.me/cvedetector/9001", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47821 - PyLoad Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47821 \nPublished : Oct. 25, 2024, 11:15 p.m. | 41\u00a0minutes ago \nDescription : pyLoad is a free and open-source Download Manager. The folder `/.pyload/scripts` has scripts which are run when certain actions are completed, for e.g. a download is finished. By downloading a executable file to a folder in /scripts and performing the respective action, remote code execution can be achieved in versions on the 0.5 branch prior to 0.5.0b3.dev87. A file can be downloaded to such a folder by changing the download folder to a folder in `/scripts` path and using the `/flashgot` API to download the file. This vulnerability allows an attacker with access to change the settings on a pyload server to execute arbitrary code and completely compromise the system. Version 0.5.0b3.dev87 fixes this issue. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-26T02:17:20.000000Z"}, {"uuid": "b1be3038-6273-4371-bd72-a6c7f2589d19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47824", "type": "seen", "source": "https://t.me/cvedetector/7930", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47824 - Matrix React SDK Message Key Stealing Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47824 \nPublished : Oct. 15, 2024, 4:15 p.m. | 19\u00a0minutes ago \nDescription : matrix-react-sdk is react-based software development kit for inserting a Matrix chat/VOIP client into a web page. Starting in version 3.18.0 and before 3.102.0, matrix-react-sdk allows a malicious homeserver to potentially steal message keys for a room when a user invites another user to that room, via injection of a malicious device controlled by the homeserver. This is possible because matrix-react-sdk before 3.102.0 shared historical message keys on invite. Version 3.102.0 fixes this issue by disabling sharing message keys on invite by removing calls to the vulnerable functionality. No known workarounds are available. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T18:36:49.000000Z"}, {"uuid": "8f805d38-e42c-4aec-8f12-0f71f804a557", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47829", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lobo4p5i3s2i", "content": "", "creation_timestamp": "2025-05-03T15:35:52.288760Z"}, {"uuid": "d18ac864-3561-4477-be4e-6fc0f85bcefc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47829", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lobpccqaqs2i", "content": "", "creation_timestamp": "2025-05-03T15:56:53.939223Z"}, {"uuid": "cae8e022-a502-45e5-a976-ecfaad1b6902", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47827", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10568", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-47827\n\ud83d\udd25 CVSS Score: 5.7 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Due to a race condition in a global variable in 3.6.0-rc1, the argo workflows controller can be made to crash on-command by any user with access to execute a workflow. This vulnerability is fixed in 3.6.0-rc2.\n\ud83d\udccf Published: 2024-10-28T15:10:55.772Z\n\ud83d\udccf Modified: 2025-04-04T20:43:57.325Z\n\ud83d\udd17 References:\n1. https://github.com/argoproj/argo-workflows/security/advisories/GHSA-ghjw-32xw-ffwr\n2. https://github.com/argoproj/argo-workflows/pull/13641\n3. https://github.com/argoproj/argo-workflows/commit/524406451f4dfa57bf3371fb85becdb56a2b309a\n4. https://github.com/argoproj/argo-workflows/blob/ce7f9bfb9b45f009b3e85fabe5e6410de23c7c5f/workflow/metrics/metrics_k8s_request.go#L75", "creation_timestamp": "2025-04-04T21:36:22.000000Z"}, {"uuid": "f3fa20cd-4964-408c-8502-395c1ea40cf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47820", "type": "seen", "source": "https://t.me/cvedetector/11364", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47820 - MarkUs Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47820 \nPublished : Nov. 18, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : MarkUs, a web application for the submission and grading of student assignments, is vulnerable to path traversal in versions prior to 2.4.8. Authenticated instructors may download any file on the web server MarkUs is running on, depending on the file permissions. MarkUs v2.4.8 has addressed this issue. No known workarounds are available at the application level aside from upgrading. \nSeverity: 5.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T19:03:47.000000Z"}, {"uuid": "f9cf98af-e731-4405-a368-e162244c6e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47828", "type": "seen", "source": "https://t.me/cvedetector/7521", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47828 - Ampache Cross-Site Request Forgery (CSRF) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47828 \nPublished : Oct. 9, 2024, 7:15 p.m. | 35\u00a0minutes ago \nDescription : ampache is a web based audio/video streaming application and file manager. A CSRF attack can be performed in order to delete objects (Playlist, smartlist etc.). Cross-Site Request Forgery (CSRF) is an attack that forces authenticated users to submit a request to a Web application against which they are currently authenticated. This vulnerability can be exploited by creating a malicious script with an arbitrary playlist ID belonging to another user. When the user submits the request, their playlist will be deleted. Any User with active sessions who are tricked into submitting a malicious request are impacted, as their playlists or other objects could be deleted without their consent. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T22:21:00.000000Z"}, {"uuid": "f20488b9-600b-4576-9d8b-85a5ea4014fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4782", "type": "seen", "source": "https://t.me/cvedetector/3342", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-4782 - Lenovo Printers Denial-of-Service Remote Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-4782 \nPublished : Aug. 16, 2024, 3:15 p.m. | 34\u00a0minutes ago \nDescription : A denial-of-service vulnerability was reported in some Lenovo printers that could allow an unauthenticated attacker on a shared network to disrupt the printer's functionality until a manual system reboot occurs. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-16T17:54:03.000000Z"}, {"uuid": "f5990c39-2478-45c9-8a0d-59162eb13a10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47823", "type": "seen", "source": "https://t.me/CyberBulletin/1145", "content": "\u26a1\ufe0fExploiting Livewire: CVE-2024-47823 Puts Laravel Apps at Risk.\n\n#CyberBulletin", "creation_timestamp": "2024-10-10T11:33:12.000000Z"}, {"uuid": "b49798ee-c661-41fc-8be9-ab0d1be8306c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47823", "type": "seen", "source": "https://t.me/CyberBulletin/26059", "content": "\u26a1\ufe0fExploiting Livewire: CVE-2024-47823 Puts Laravel Apps at Risk.\n\n#CyberBulletin", "creation_timestamp": "2024-10-10T11:33:11.000000Z"}, {"uuid": "15fa7224-f28f-40e0-88f4-5acf80496973", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47820", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113505015541543695", "content": "", "creation_timestamp": "2024-11-18T16:58:10.187884Z"}, {"uuid": "27782631-458d-4326-85b2-8d42cb65f1fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47825", "type": "seen", "source": "https://t.me/cvedetector/8545", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47825 - Cilium Network Policy Denial of Service Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47825 \nPublished : Oct. 21, 2024, 7:15 p.m. | 34\u00a0minutes ago \nDescription : Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to versions 1.14.16 and 1.15.10, a policy rule denying a prefix that is broader than `/32` may be ignored if there is a policy rule referencing a more narrow prefix (`CIDRSet` or `toFQDN`) and this narrower policy rule specifies either `enableDefaultDeny: false` or `- toEntities: all`. Note that a rule specifying `toEntities: world` or `toEntities: 0.0.0.0/0` is insufficient, it must be to entity `all`.This issue has been patched in Cilium v1.14.16 and v1.15.10. As this issue only affects policies using `enableDefaultDeny: false` or that set `toEntities` to `all`, some workarounds are available. For users with policies using `enableDefaultDeny: false`, remove this configuration option and explicitly define any allow rules required. For users with egress policies that explicitly specify `toEntities: all`, use `toEntities: world`. \nSeverity: 4.0 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-21T21:52:52.000000Z"}, {"uuid": "3972f223-c2fc-4ffd-abbf-caabd6ce20c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47827", "type": "seen", "source": "https://t.me/cvedetector/9139", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47827 - Argo Workflows Denial of Service (DoS)\", \n  \"Content\": \"CVE ID : CVE-2024-47827 \nPublished : Oct. 28, 2024, 4:15 p.m. | 34\u00a0minutes ago \nDescription : Argo Workflows is an open source container-native workflow engine for orchestrating parallel jobs on Kubernetes. Due to a race condition in a global variable in 3.6.0-rc1, the argo workflows controller can be made to crash on-command by any user with access to execute a workflow. This vulnerability is fixed in 3.6.0-rc2. \nSeverity: 5.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-28T17:50:19.000000Z"}, {"uuid": "cd531de9-b84a-48cf-a27d-34e318378f45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47826", "type": "seen", "source": "https://t.me/cvedetector/7854", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47826 - eLabFTW Cross-Site Scripting (XSS) vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47826 \nPublished : Oct. 14, 2024, 6:15 p.m. | 30\u00a0minutes ago \nDescription : eLabFTW is an open source electronic lab notebook for research labs. A vulnerability in versions prior to 5.1.5 allows an attacker to inject arbitrary HTML tags in the pages: \"experiments.php\" (show mode), \"database.php\" (show mode) or \"search.php\". It works by providing HTML code in the extended search string, which will then be displayed back to the user in the error message. This means that injected HTML will appear in a red \"alert/danger\" box, and be part of an error message. Due to some other security measures, it is not possible to execute arbitrary javascript from this attack. As such, this attack is deemed low impact. Users should upgrade to at least version 5.1.5 to receive a patch. No known workarounds are available. \nSeverity: 3.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-14T20:51:56.000000Z"}, {"uuid": "02dac6f5-ced9-4519-9e2b-35aa5d40dda3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47822", "type": "seen", "source": "https://t.me/cvedetector/7393", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47822 - Directus Exposed Access Token Log Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-47822 \nPublished : Oct. 8, 2024, 6:15 p.m. | 41\u00a0minutes ago \nDescription : Directus is a real-time API and App dashboard for managing SQL database content. Access tokens from query strings are not redacted and are potentially exposed in system logs which may be persisted. The access token in `req.query` is not redacted when the `LOG_STYLE` is set to `raw`. If these logs are not properly sanitized or protected, an attacker with access to it can potentially gain administrative control, leading to unauthorized data access and manipulation. This impacts systems where the `LOG_STYLE` is set to `raw`. The `access_token` in the query could potentially be a long-lived static token. Users with impacted systems should rotate their static tokens if they were provided using query string. This vulnerability has been patched in release version 10.13.2 and subsequent releases as well. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 4.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-08T21:14:13.000000Z"}, {"uuid": "80a2ba83-b609-4748-b9fa-2281e3d92885", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-47823", "type": "seen", "source": "https://t.me/cvedetector/7392", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47823 - Livewire PHP Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-47823 \nPublished : Oct. 8, 2024, 6:15 p.m. | 41\u00a0minutes ago \nDescription : Livewire is a full-stack framework for Laravel that allows for dynamic UI components without leaving PHP. In livewire/livewire `< v3.5.2`, the file extension of an uploaded file is guessed based on the MIME type. As a result, the actual file extension from the file name is not validated. An attacker can therefore bypass the validation by uploading a file with a valid MIME type (e.g., `image/png`) and a \u201c.php\u201d file extension. If the following criteria are met, the attacker can carry out an RCE attack: 1. Filename is composed of the original file name using `$file->getClientOriginalName()`. 2. Files stored directly on your server in a public storage disk. 3. Webserver is configured to execute \u201c.php\u201d files. This issue has been addressed in release version 3.5.2. All users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-08T21:14:12.000000Z"}]}