{"vulnerability": "cve-2024-0190", "sightings": [{"uuid": "64f53b17-2dcd-47a6-a775-965a5d445fb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "seen", "source": "https://t.me/cibsecurity/74191", "content": "\u203c\ufe0fCVE-2024-0190\u203c\ufe0f\n\nA vulnerability was found in RRJ Nueva Ecija Engineer Online Portal 1.0 and classified as problematic. This issue affects some unknown processing of the file addquiz.php of the component Quiz Handler. The manipulation of the argument Quiz TitleQuiz Description with the input alertx leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB249503.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-03T01:36:29.000000Z"}, {"uuid": "ace51714-e2f0-46b5-a426-63007cb82212", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "seen", "source": "Telegram/psYhbYfVMA4GENMfTJOLJ5Ko5v0ksVjodqwRFse8025z4OA", "content": "", "creation_timestamp": "2024-01-02T23:47:12.000000Z"}, {"uuid": "8b3fb29c-6c40-481a-b4ae-d55f5a7550d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "published-proof-of-concept", "source": "Telegram/6u1yfwxAOCAdyBLoL945NM0lYYZRM-EJNUNWE10D90NnM0s", "content": "", "creation_timestamp": "2024-01-02T23:37:42.000000Z"}, {"uuid": "d2895190-5d8c-4c6a-87a2-68e6dc547778", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "seen", "source": "https://t.me/ctinow/161988", "content": "https://ift.tt/YJHlAdp\nCVE-2024-0190", "creation_timestamp": "2024-01-02T20:27:10.000000Z"}, {"uuid": "0b7dc4b9-6c25-4fd6-a17b-691ea64db561", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "published-proof-of-concept", "source": "https://t.me/codeb0ss/1344", "content": "", "creation_timestamp": "2024-01-02T23:35:33.000000Z"}, {"uuid": "724b5518-1c7b-4dc8-9794-be554e1401a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "seen", "source": "https://t.me/ctinow/164501", "content": "https://ift.tt/rpsJ3Rj\nCVE-2024-0190 Exploit", "creation_timestamp": "2024-01-08T17:16:33.000000Z"}, {"uuid": "554fc187-f54e-47a8-b0fd-ff030050fa10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10668", "content": "#exploit\n1. CVE-2024-0190:\nRRJ NUEVA ECIJA Engineer XSS Exploit\nhttps://github.com/codeb0ss/CVE-2024-0190-PoC\n\n2. CVE-2024-29824:\nIvanti EPM SQL Injection RCE\nhttps://www.horizon3.ai/attack-research/attack-blogs/cve-2024-29824-deep-dive-ivanti-epm-sql-injection-remote-code-execution-vulnerability\n\n3. CVE-2024-1698:\nWordpress NotificationX <=2.8.2 - SQLI\nhttps://github.com/codeb0ss/CVE-2024-1698-PoC", "creation_timestamp": "2024-06-14T10:03:51.000000Z"}, {"uuid": "7924fe37-d533-430e-84e3-d86d9ca2c043", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0190", "type": "seen", "source": "https://t.me/ctinow/171327", "content": "https://ift.tt/U2zhXwQ\nCVE-2024-0190 | RRJ Nueva Ecija Engineer Online Portal 1.0 Quiz add_quiz.php Quiz Title/Quiz Description cross site scripting", "creation_timestamp": "2024-01-22T17:46:13.000000Z"}]}