{"vulnerability": "GHSA-4JCV-VP96-94XR", "sightings": [{"uuid": "c7128944-fc8e-44c2-b17f-7265d66abc0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-4JCV-VP96-94XR", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/305", "content": "#exploit\n1. CVE-2024-7954:\nUnauth RCE in SPIP\nhttps://github.com/Chocapikk/CVE-2024-7954\n\n2. CVE-2024-0692:\nSolarWinds Security Event Manager AMF deserialization RCE\nhttps://exp10it.io/2024/03/solarwinds-security-event-manager-amf-deserialization-rce-cve-2024-0692\n\n3. CVE-2024-24759:\nBypass SSRF Protection with DNS Rebinding\nhttps://github.com/mindsdb/mindsdb/security/advisories/GHSA-4jcv-vp96-94xr", "creation_timestamp": "2024-09-09T14:48:44.000000Z"}, {"uuid": "0cb86982-b7ee-49d3-a798-533ea625cce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-4JCV-VP96-94XR", "type": "published-proof-of-concept", "source": "https://t.me/Kelvinseccommunity/791", "content": "#exploit\n1. CVE-2024-7954:\nUnauth RCE in SPIP\nhttps://github.com/Chocapikk/CVE-2024-7954\n\n2. CVE-2024-0692:\nSolarWinds Security Event Manager AMF deserialization RCE\nhttps://exp10it.io/2024/03/solarwinds-security-event-manager-amf-deserialization-rce-cve-2024-0692\n\n3. CVE-2024-24759:\nBypass SSRF Protection with DNS Rebinding\nhttps://github.com/mindsdb/mindsdb/security/advisories/GHSA-4jcv-vp96-94xr", "creation_timestamp": "2024-09-09T14:49:02.000000Z"}, {"uuid": "ccfb5d82-0168-4b4b-bc0a-5bebed64042c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-4JCV-VP96-94XR", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/3146", "content": "https://github.com/mindsdb/mindsdb/security/advisories/GHSA-4jcv-vp96-94xr\n\nBypass SSRF Protection with DNS Rebinding\n#github #poc", "creation_timestamp": "2024-09-10T17:44:13.000000Z"}, {"uuid": "aa059a4f-c9b5-440b-8209-cc660b0f2db9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-4JCV-VP96-94XR", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11102", "content": "#exploit\n1. CVE-2024-7954:\nUnauth RCE in SPIP\nhttps://github.com/Chocapikk/CVE-2024-7954\n\n2. CVE-2024-0692:\nSolarWinds Security Event Manager AMF deserialization RCE\nhttps://exp10it.io/2024/03/solarwinds-security-event-manager-amf-deserialization-rce-cve-2024-0692\n\n3. CVE-2024-24759:\nBypass SSRF Protection with DNS Rebinding\nhttps://github.com/mindsdb/mindsdb/security/advisories/GHSA-4jcv-vp96-94xr", "creation_timestamp": "2024-09-12T12:57:45.000000Z"}]}