{"vulnerability": "CVE-2024-4804", "sightings": [{"uuid": "b970ae50-424d-4407-a800-6825d37b2581", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-48044", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mij2hhjexl2i", "content": "", "creation_timestamp": "2026-04-02T11:00:14.529383Z"}, {"uuid": "77fff1e6-0ff9-4a83-9738-883c42affd48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4804", "type": "seen", "source": "Telegram/FkT72xN4DS1RR-zXc0Jigu-446rsFsbyXu09zCCDCkajGm4Y", "content": "", "creation_timestamp": "2025-02-14T10:03:11.000000Z"}, {"uuid": "df09ce64-aa5f-40ec-b395-f8b87d08e028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48049", "type": "seen", "source": "https://t.me/cvedetector/8393", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48049 - Mighty Builder Web Page Generation XSS\", \n  \"Content\": \"CVE ID : CVE-2024-48049 \nPublished : Oct. 20, 2024, 8:15 a.m. | 21\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mighty Plugins Mighty Builder allows Stored XSS.This issue affects Mighty Builder: from n/a through 1.0.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T10:44:04.000000Z"}, {"uuid": "b66216d9-5515-434d-954a-2f8eca46276a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48041", "type": "seen", "source": "https://t.me/cvedetector/7725", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48041 - CreativeMindsSolutions CM Tooltip Glossary Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-48041 \nPublished : Oct. 11, 2024, 7:15 p.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CreativeMindsSolutions CM Tooltip Glossary allows Stored XSS.This issue affects CM Tooltip Glossary: from n/a through 4.3.9. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-11T22:04:04.000000Z"}, {"uuid": "753bfe99-7537-4bae-aab6-c1d289c390d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48048", "type": "seen", "source": "https://t.me/cvedetector/8172", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48048 - Wsify Widget CSRF Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48048 \nPublished : Oct. 17, 2024, 1:15 p.m. | 31\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in WSIFY \u2013 Sales can fly Wsify Widget allows Stored XSS.This issue affects Wsify Widget: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T15:48:22.000000Z"}, {"uuid": "d1df06fd-a468-4538-b24b-dbd9c3c65d36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48046", "type": "seen", "source": "https://t.me/cvedetector/8170", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48046 - Supsystic Contact Form Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-48046 \nPublished : Oct. 17, 2024, 1:15 p.m. | 31\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Supsystic Contact Form by Supsystic allows Stored XSS.This issue affects Contact Form by Supsystic: from n/a through 1.7.28. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T15:48:20.000000Z"}, {"uuid": "d998635c-cccd-43dd-a0fb-264eff8bc160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48047", "type": "seen", "source": "https://t.me/cvedetector/8169", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48047 - Razon Komar Pal Linked Variation for WooCommerce CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48047 \nPublished : Oct. 17, 2024, 12:15 p.m. | 40\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in Razon Komar Pal Linked Variation for WooCommerce allows Cross Site Request Forgery.This issue affects Linked Variation for WooCommerce: from n/a through 1.0.5. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T14:58:11.000000Z"}, {"uuid": "fee31eca-f196-4bbe-adec-922fd202a3a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48043", "type": "seen", "source": "https://t.me/cvedetector/8168", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48043 - ShortPixel Image Optimizer SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-48043 \nPublished : Oct. 17, 2024, 12:15 p.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ShortPixel ShortPixel Image Optimizer allows Blind SQL Injection.This issue affects ShortPixel Image Optimizer: from n/a through 5.6.3. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T14:58:10.000000Z"}, {"uuid": "c1cf80d1-8a28-4bf8-8ca8-23442495c2df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48042", "type": "seen", "source": "https://t.me/cvedetector/8059", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48042 - Supsystic Contact Form Template Engine Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-48042 \nPublished : Oct. 16, 2024, 1:15 p.m. | 39\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Supsystic Contact Form by Supsystic allows Command Injection.This issue affects Contact Form by Supsystic: from n/a through 1.7.28. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T16:22:55.000000Z"}, {"uuid": "4c05f444-fa2f-47a2-9a64-d71cad4a7d15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48040", "type": "seen", "source": "https://t.me/cvedetector/7729", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48040 - Tainacan SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48040 \nPublished : Oct. 11, 2024, 7:15 p.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Tainacan.Org Tainacan allows SQL Injection.This issue affects Tainacan: from n/a through 0.21.8. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-11T22:04:13.000000Z"}, {"uuid": "aefb0271-bbf8-49be-8eb6-71f5a5c9ab56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48045", "type": "seen", "source": "https://t.me/cvedetector/9584", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48045 - Leevio Happy Addons for Elementor Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48045 \nPublished : Nov. 1, 2024, 3:15 p.m. | 40\u00a0minutes ago \nDescription : Missing Authorization vulnerability in Leevio Happy Addons for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Happy Addons for Elementor: from n/a through 3.12.3. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-01T17:01:00.000000Z"}, {"uuid": "dca0e086-99b8-437e-9ba6-37357d7c500f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48044", "type": "seen", "source": "https://t.me/cvedetector/9583", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48044 - ShortPixel Image Optimizer Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48044 \nPublished : Nov. 1, 2024, 3:15 p.m. | 40\u00a0minutes ago \nDescription : Missing Authorization vulnerability in ShortPixel \u2013 Convert WebP/AVIF & Optimize Images ShortPixel Image Optimizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Image Optimizer: from n/a through 5.6.3. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-01T17:00:59.000000Z"}]}