{"vulnerability": "CVE-2024-4891", "sightings": [{"uuid": "89d201f5-3d9b-456c-b64a-debd53c14558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48914", "type": "seen", "source": "https://t.me/InfoSecInsider/535", "content": "\u26a1\ufe0fCVE-2024-48914 (CVSS 9.1): Critical File Read Flaw Discovered in Vendure E-commerce Platform.\n\n#CyberBulletin", "creation_timestamp": "2024-10-22T15:06:36.000000Z"}, {"uuid": "f48afd20-c659-4c3d-8396-962ec285f252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48917", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113505700408685113", "content": "", "creation_timestamp": "2024-11-18T19:52:20.569992Z"}, {"uuid": "e49bcef8-501a-4844-bfc0-1b66d9e169f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48916", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lv7le2schv2z", "content": "", "creation_timestamp": "2025-07-30T21:37:15.747958Z"}, {"uuid": "6a5ef765-9a64-49bb-8a75-3b8dbc3383c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48917", "type": "seen", "source": "MISP/1c5c38d6-3401-41ac-be0e-4cf361fa6f51", "content": "", "creation_timestamp": "2025-09-25T00:36:28.000000Z"}, {"uuid": "dfd976b2-a2c0-43c4-b772-f0255be2d5c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48914", "type": "seen", "source": "https://t.me/CyberBulletin/1215", "content": "\u26a1\ufe0fCVE-2024-48914 (CVSS 9.1): Critical File Read Flaw Discovered in Vendure E-commerce Platform.\n\n#CyberBulletin", "creation_timestamp": "2024-10-22T15:03:38.000000Z"}, {"uuid": "af94fd07-8448-4d35-9de4-5a5142eece74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48912", "type": "seen", "source": "https://t.me/cvedetector/12643", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48912 - GLPI User Account Deletion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48912 \nPublished : Dec. 11, 2024, 5:15 p.m. | 19\u00a0minutes ago \nDescription : GLPI is a free asset and IT management software package. Starting in version 0.80 and prior to version 10.0.17, an authenticated user can use an application endpoint to delete any user account. Version 10.0.17 contains a patch for this issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-11T18:35:00.000000Z"}, {"uuid": "a1b7b447-bd6d-46fa-b4cf-01bda6f29c91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48917", "type": "seen", "source": "https://t.me/cvedetector/11378", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48917 - Apache PhpSpreadsheet XXE Encoder Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-48917 \nPublished : Nov. 18, 2024, 8:15 p.m. | 16\u00a0minutes ago \nDescription : PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. The `XmlScanner` class has a scan method which should prevent XXE attacks. However, in a bypass of the previously reported `CVE-2024-47873`, the regexes from the `findCharSet` method, which is used for determining the current encoding can be bypassed by using a payload in the encoding UTF-7, and adding at end of the file a comment with the value `encoding=\"UTF-8\"` with `\"`, which is matched by the first regex, so that `encoding='UTF-7'` with single quotes `'` in the XML header is not matched by the second regex. An attacker can bypass the sanitizer and achieve an XML external entity attack. Versions 1.9.4, 2.1.3, 2.3.2, and 3.4.0 fix the issue. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T21:34:11.000000Z"}, {"uuid": "9f6a6b26-ad18-4820-9997-1889a9d37c1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48919", "type": "seen", "source": "https://t.me/cvedetector/8648", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48919 - \"Cursor Terminal Cmd-K Web Page Code Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-48919 \nPublished : Oct. 22, 2024, 9:15 p.m. | 30\u00a0minutes ago \nDescription : Cursor is a code editor built for programming with AI. Prior to Sep 27, 2024, if a user generated a terminal command via Cursor's Terminal Cmd-K/Ctrl-K feature and if the user explicitly imported a malicious web page into the Terminal Cmd-K prompt, an attacker with control over the referenced web page could have a significant chance of influencing a language model to output arbitrary commands for execution in the user's terminal. This scenario would require the user explicitly opt-in to including the contents of a compromised webpage, and it would require that the attacker display prompt injection text in the the contents of the compromised webpage.  \n  \nA server-side patch to not stream back newlines or control characters was released on September 27, 2024, within two hours of the issue being reported. Additionally, Cursor 0.42 includes client-side mitigations to prevent any newline or control character from being streamed into the terminal directly. It also contains a new setting, `\"cursor.terminal.usePreviewBox\"`, which, if set to true, streams the response into a preview box whose contents then have to be manually accepted before being inserted into the terminal. This setting is useful if you're working in a shell environment where commands can be executed without pressing enter or any control character. The patch has been applied server-side, so no additional action is needed, even on older versions of Cursor. Separately, Cursor's maintainers also recommend, as best practice, to only include trusted pieces of context in prompts. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-22T23:49:34.000000Z"}, {"uuid": "f3aac663-e807-4c75-b8fe-ed253949145a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48913", "type": "seen", "source": "https://t.me/cvedetector/7936", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48913 - Hono CSRF Header Verification Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-48913 \nPublished : Oct. 15, 2024, 4:15 p.m. | 19\u00a0minutes ago \nDescription : Hono, a web framework, prior to version 4.6.5 is vulnerable to bypass of cross-site request forgery (CSRF) middleware by a request without Content-Type header. Although the CSRF middleware verifies the Content-Type Header, Hono always considers a request without a Content-Type header to be safe. This can allow an attacker to bypass CSRF protection implemented with Hono CSRF middleware. Version 4.6.5 fixes this issue. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T18:36:57.000000Z"}, {"uuid": "4bcd1e55-6240-43ff-8f85-abf6809a8eea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48915", "type": "seen", "source": "https://t.me/cvedetector/7938", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48915 - Agent Dart Certificate Verification Bypass (CANISTER tampering)\", \n  \"Content\": \"CVE ID : CVE-2024-48915 \nPublished : Oct. 15, 2024, 5:15 p.m. | 36\u00a0minutes ago \nDescription : Agent Dart is an agent library built for Internet Computer for Dart and Flutter apps. Prior to version 1.0.0-dev.29, certificate verification in `lib/agent/certificate.dart` does not occur properly. During the delegation verification in the `_checkDelegation` function, the canister_ranges aren't verified. The impact of not checking the canister_ranges is that a subnet can sign canister responses in behalf of another subnet. The certificate\u2019s timestamp, i.e /time path, is also not verified, meaning that the certificate effectively has no expiration time. Version 1.0.0-dev.29 implements appropriate certificate verification. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T20:17:23.000000Z"}, {"uuid": "3dba322a-21a8-44ed-8472-614fd2f2eeed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48914", "type": "seen", "source": "https://t.me/InfoSecInsider/24148", "content": "\u26a1\ufe0fCVE-2024-48914 (CVSS 9.1): Critical File Read Flaw Discovered in Vendure E-commerce Platform.\n\n#CyberBulletin", "creation_timestamp": "2024-10-22T15:06:34.000000Z"}, {"uuid": "a25f61dd-792b-4619-8ad6-b3e9f6d77d4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48914", "type": "seen", "source": "https://t.me/CyberBulletin/26149", "content": "\u26a1\ufe0fCVE-2024-48914 (CVSS 9.1): Critical File Read Flaw Discovered in Vendure E-commerce Platform.\n\n#CyberBulletin", "creation_timestamp": "2024-10-22T15:03:38.000000Z"}, {"uuid": "a1a4b872-e0cd-4fe0-a53e-e4be3cf4503e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48914", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8799", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aPoC for CVE-2024-48914\nURL\uff1ahttps://github.com/EQSTLab/CVE-2024-48914\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-10-21T10:04:39.000000Z"}, {"uuid": "b414d169-e6d5-48b6-ba2b-54654636dddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48910", "type": "seen", "source": "https://t.me/cvedetector/9508", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48910 - DOMPurify Prototype Pollution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48910 \nPublished : Oct. 31, 2024, 3:15 p.m. | 34\u00a0minutes ago \nDescription : DOMPurify is a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify was vulnerable to prototype pollution. This vulnerability is fixed in 2.4.2. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-31T16:56:34.000000Z"}, {"uuid": "001584ec-64dc-4295-81e0-11c63a804f02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48911", "type": "seen", "source": "https://t.me/cvedetector/7861", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48911 - OpenCanary Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48911 \nPublished : Oct. 14, 2024, 9:15 p.m. | 42\u00a0minutes ago \nDescription : OpenCanary, a multi-protocol network honeypot, directly executed commands taken from its config file. Prior to version 0.9.4, where the config file is stored in an unprivileged user directory but the daemon is executed by root, it\u2019s possible for the unprivileged user to change the config file and escalate permissions when root later runs the daemon. Version 0.9.4 contains a fix for the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T00:12:36.000000Z"}, {"uuid": "6b93dd8d-c46e-4b08-ab2d-ab41a8336836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48912", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113635295264729068", "content": "", "creation_timestamp": "2024-12-11T17:10:00.947609Z"}, {"uuid": "82eeff84-3ee2-4d87-80bd-8e72cf6f464a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48918", "type": "seen", "source": "https://t.me/cvedetector/8127", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48918 - Apache RDS AI Input Validation Vulnerability (NoSQL Injection)\", \n  \"Content\": \"CVE ID : CVE-2024-48918 \nPublished : Oct. 16, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : RDS Light is a simplified version of the Reflective Dialogue System (RDS), a self-reflecting AI framework. Versions prior to 1.1.0 contain a vulnerability that involves a lack of input validation within the RDS AI framework, specifically within the user input handling code in the main module (`main.py`). This leaves the framework open to injection attacks and potential memory tampering. Any user or external actor providing input to the system could exploit this vulnerability to inject malicious commands, corrupt stored data, or affect API calls. This is particularly critical for users employing RDS AI in production environments where it interacts with sensitive systems, performs dynamic memory caching, or retrieves user-specific data for analysis. Impacted areas include developers using the RDS AI system as a backend for AI-driven applications and systems running RDS AI that may be exposed to untrusted environments or receive unverified user inputs. The vulnerability has been patched in version 1.1.0 of the RDS AI framework. All user inputs are now sanitized and validated against a set of rules designed to mitigate malicious content. Users should upgrade to version 1.1.0 or higher and ensure all dependencies are updated to their latest versions. For users unable to upgrade to the patched version, a workaround can be implemented. The user implementing the workaround should implement custom validation checks for user inputs to filter out unsafe characters and patterns (e.g., SQL injection attempts, script injections) and limit or remove features that allow user input until the system can be patched. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T23:55:18.000000Z"}, {"uuid": "6b9212a9-43b7-45c1-bae1-b10c011c4a41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48914", "type": "seen", "source": "https://t.me/cvedetector/7927", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48914 - Vendure File System Traversal and Server Crash Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48914 \nPublished : Oct. 15, 2024, 4:15 p.m. | 19\u00a0minutes ago \nDescription : Vendure is an open-source headless commerce platform. Prior to versions 3.0.5 and 2.3.3, a vulnerability in Vendure's asset server plugin allows an attacker to craft a request which is able to traverse the server file system and retrieve the contents of arbitrary files, including sensitive data such as configuration files, environment variables, and other critical data stored on the server. In the same code path is an additional vector for crashing the server via a malformed URI. Patches are available in versions 3.0.5 and 2.3.3. Some workarounds are also available. One may use object storage rather than the local file system, e.g. MinIO or S3, or define middleware which detects and blocks requests with urls containing `/../`. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T18:36:47.000000Z"}]}