{"vulnerability": "CVE-2024-5619", "sightings": [{"uuid": "f281988d-8f17-493d-817b-d18081c88e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56198", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113748138515723202", "content": "", "creation_timestamp": "2024-12-31T15:27:32.317786Z"}, {"uuid": "c87d583c-a1e1-4b66-a11f-a78eb66833d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56198", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lemgzd2ocm25", "content": "", "creation_timestamp": "2024-12-31T16:16:00.514331Z"}, {"uuid": "365df756-d8de-493b-b17f-b5209475656b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56195", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljptkyuatu2q", "content": "", "creation_timestamp": "2025-03-06T15:44:35.168020Z"}, {"uuid": "67afb179-b973-4259-bea9-03f85301d3da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56190", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lxz7leb54j2i", "content": "", "creation_timestamp": "2025-09-04T13:06:12.136894Z"}, {"uuid": "217d134f-7b04-4722-ba68-19d41ab1a04c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56196", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6662", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-56196\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Improper Access Control vulnerability in Apache Traffic Server.\n\nThis issue affects Apache Traffic Server: from 10.0.0 through 10.0.3.\n\nUsers are recommended to upgrade to version 10.0.4, which fixes the issue.\n\ud83d\udccf Published: 2025-03-06T11:21:49.763Z\n\ud83d\udccf Modified: 2025-03-06T11:21:49.763Z\n\ud83d\udd17 References:\n1. https://lists.apache.org/thread/btofzws2yqskk2n7f01r3l1819x01023", "creation_timestamp": "2025-03-06T11:39:27.000000Z"}, {"uuid": "ea6bcd1c-414b-4096-a1f8-7c132ec4aaf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56198", "type": "seen", "source": "https://t.me/cvedetector/14043", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56198 - Path-Traverser Bypass in path-sanitizer File Pathworm\", \n  \"Content\": \"CVE ID : CVE-2024-56198 \nPublished : Dec. 31, 2024, 4:15 p.m. | 31\u00a0minutes ago \nDescription : path-sanitizer is a simple lightweight npm package for sanitizing paths to prevent Path Traversal. Prior to 3.1.0, the filters can be bypassed using .=%5c which results in a path traversal. This vulnerability is fixed in 3.1.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-31T17:53:44.000000Z"}, {"uuid": "87aa1d4c-2706-48ac-b95a-b8018c0dc7e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56199", "type": "seen", "source": "https://t.me/cvedetector/14189", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56199 - phpMyFAQ HTML Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56199 \nPublished : Jan. 2, 2025, 6:15 p.m. | 37\u00a0minutes ago \nDescription : phpMyFAQ is an open source FAQ web application. Starting no later than version 3.2.10 and prior to version 4.0.2, an attacker can inject malicious HTML content into the FAQ editor at `http[:]//localhost/admin/index[.]php?action=editentry`, resulting in a complete disruption of the FAQ page's user interface. By injecting malformed HTML elements styled to cover the entire screen, an attacker can render the page unusable. This injection manipulates the page structure by introducing overlapping buttons, images, and iframes, breaking the intended layout and functionality. Exploiting this issue can lead to Denial of Service for legitimate users, damage to the user experience, and potential abuse in phishing or defacement attacks. Version 4.0.2 contains a patch for the vulnerability. \nSeverity: 5.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T20:06:57.000000Z"}, {"uuid": "e28d055b-086c-4b76-9a94-3a6ffd74e0fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-5619", "type": "seen", "source": "https://t.me/cvedetector/1162", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5619 - PruvaSoft Informatics Apinizer Management Console Authorization Bypass Through User-Controlled Key Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-5619 \nPublished : July 18, 2024, 5:15 p.m. | 41\u00a0minutes ago \nDescription : Authorization Bypass Through User-Controlled Key vulnerability in PruvaSoft Informatics Apinizer Management Console allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Apinizer Management Console: before 2024.05.1. \nSeverity: 9.6 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-18T20:08:17.000000Z"}, {"uuid": "32d14f7e-d401-4ff4-b19d-5d799a0ebf5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56197", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113947638509402541", "content": "", "creation_timestamp": "2025-02-04T21:03:00.637033Z"}, {"uuid": "abdfcbe5-01a7-4e8c-b87b-735054074a28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56191", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk2qmorykz2h", "content": "", "creation_timestamp": "2025-03-10T23:51:10.130788Z"}, {"uuid": "b0200659-5560-4ab8-92d7-75821678d5d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56192", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk2qmpg7dd2h", "content": "", "creation_timestamp": "2025-03-10T23:51:12.099615Z"}, {"uuid": "61aec1ae-dbac-4096-a919-3ecad0643274", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56195", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114115902257488846", "content": "", "creation_timestamp": "2025-03-06T14:14:42.289362Z"}, {"uuid": "8c9a5aa1-828d-4f4e-a7c8-57ff873b25d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56196", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114115902257488846", "content": "", "creation_timestamp": "2025-03-06T14:14:42.348482Z"}, {"uuid": "1c5b424e-abe7-44b9-a278-ae8ed17aff99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56196", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljptkycffy2f", "content": "", "creation_timestamp": "2025-03-06T15:44:34.141727Z"}, {"uuid": "3634aca9-8610-48ee-9818-1f8f30336a97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56193", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq65wel6lt22", "content": "", "creation_timestamp": "2025-05-27T17:02:24.336441Z"}, {"uuid": "3ee14b41-92af-46c7-a8f7-3e696a6ab945", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56193", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17657", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-56193\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: There is a possible disclosure of Bluetooth adapter details due to a permissions bypass. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.\n\ud83d\udccf Published: 2025-05-27T15:41:27.429Z\n\ud83d\udccf Modified: 2025-05-27T15:41:27.429Z\n\ud83d\udd17 References:\n1. https://source.android.com/security/bulletin/pixel/2025-05-01", "creation_timestamp": "2025-05-27T15:49:14.000000Z"}, {"uuid": "e900553d-0171-4ec8-aa15-7855621e9405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56191", "type": "seen", "source": "https://t.me/cvedetector/19986", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56191 - D-Link DHD Elevation of Privilege\", \n  \"Content\": \"CVE ID : CVE-2024-56191 \nPublished : March 10, 2025, 9:15 p.m. | 17\u00a0minutes ago \nDescription : In dhd_process_full_gscan_result of dhd_pno.c, there is a possible EoP due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-10T23:13:40.000000Z"}, {"uuid": "c7410394-5ca8-441a-96c8-f6cc2d55f1a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56192", "type": "seen", "source": "https://t.me/cvedetector/19980", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56192 - WiLink Notify GScan Event Out-of-Bounds Write Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56192 \nPublished : March 10, 2025, 9:15 p.m. | 17\u00a0minutes ago \nDescription : In wl_notify_gscan_event of wl_cfgscan.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-10T23:13:33.000000Z"}, {"uuid": "f58796da-eb7c-420d-87a0-4221e01422cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56197", "type": "seen", "source": "https://t.me/cvedetector/17250", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56197 - Discourse PM Metadata Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-56197 \nPublished : Feb. 4, 2025, 9:15 p.m. | 2\u00a0hours, 7\u00a0minutes ago \nDescription : Discourse is an open source platform for community discussion. PM titles and metadata can be read by other users when the \"PM tags allowed for groups\" option is enabled, the other user is a member of a group added to this option, and the PM has been tagged. This issue has been patched in the latest `stable`, `beta` and `tests-passed` versions of Discourse. Users are advised to upgrade. Users unable to upgrade should remove all groups from the the \"PM tags allowed for groups\" option. \nSeverity: 2.2 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-05T00:45:52.000000Z"}, {"uuid": "f20a6f18-52d7-4501-a9c7-045e5df972e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56196", "type": "seen", "source": "https://t.me/cvedetector/19699", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56196 - Apache Traffic Server Access Control Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-56196 \nPublished : March 6, 2025, 12:15 p.m. | 1\u00a0hour, 52\u00a0minutes ago \nDescription : Improper Access Control vulnerability in Apache Traffic Server.  \n  \nThis issue affects Apache Traffic Server: from 10.0.0 through 10.0.3.  \n  \nUsers are recommended to upgrade to version 10.0.4, which fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-06T15:30:41.000000Z"}, {"uuid": "fa12aa01-600f-4678-b3d2-14b1e81218f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56195", "type": "seen", "source": "https://t.me/cvedetector/19698", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56195 - Apache Traffic Server Access Control Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56195 \nPublished : March 6, 2025, 12:15 p.m. | 1\u00a0hour, 52\u00a0minutes ago \nDescription : Improper Access Control vulnerability in Apache Traffic Server.  \n  \nThis issue affects Apache Traffic Server: from 9.2.0 through 9.2.8, from 10.0.0 through 10.0.3.  \n  \nUsers are recommended to upgrade to version 9.2.9 or 10.0.4, which fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-06T15:30:40.000000Z"}, {"uuid": "e1e70a87-c350-43e5-9505-5eb84478d8e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56197", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhey472ubi2f", "content": "", "creation_timestamp": "2025-02-04T21:16:06.246336Z"}, {"uuid": "d7242719-c24d-4bed-969e-cc1c253afe86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56197", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhf3ux34sm2w", "content": "", "creation_timestamp": "2025-02-04T22:23:46.286255Z"}, {"uuid": "3b603351-8deb-4bff-9951-ab13ffe13aff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-56195", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6661", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-56195\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Improper Access Control vulnerability in Apache Traffic Server.\n\nThis issue affects Apache Traffic Server: from 9.2.0 through 9.2.8, from 10.0.0 through 10.0.3.\n\nUsers are recommended to upgrade to version 9.2.9 or 10.0.4, which fixes the issue.\n\ud83d\udccf Published: 2025-03-06T11:23:37.067Z\n\ud83d\udccf Modified: 2025-03-06T11:23:37.067Z\n\ud83d\udd17 References:\n1. https://lists.apache.org/thread/btofzws2yqskk2n7f01r3l1819x01023", "creation_timestamp": "2025-03-06T11:39:27.000000Z"}]}