{"vulnerability": "cve-2024-1121", "sightings": [{"uuid": "70bbb81b-9016-4aac-8a4b-8400106b337c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11216", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljndxyhel62a", "content": "", "creation_timestamp": "2025-03-05T16:00:11.672249Z"}, {"uuid": "36db2935-b9b7-426b-9cb7-168cbf855f9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3limmad7rq422", "content": "", "creation_timestamp": "2025-02-20T15:30:09.897255Z"}, {"uuid": "0d5d1200-f167-4868-925c-d576aa3f5fde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12130", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-04-16T18:43:10.993Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:0830\n2. https://access.redhat.com/errata/RHSA-2025:0878\n3. https://access.redhat.com/errata/RHSA-2025:0922\n4. https://access.redhat.com/errata/RHSA-2025:0923\n5. https://access.redhat.com/errata/RHSA-2025:1186\n6. https://access.redhat.com/errata/RHSA-2025:1187\n7. https://access.redhat.com/errata/RHSA-2025:1188\n8. https://access.redhat.com/errata/RHSA-2025:1189\n9. https://access.redhat.com/errata/RHSA-2025:1207\n10. https://access.redhat.com/errata/RHSA-2025:1275\n11. https://access.redhat.com/errata/RHSA-2025:1295\n12. https://access.redhat.com/errata/RHSA-2025:1296\n13. https://access.redhat.com/errata/RHSA-2025:1372\n14. https://access.redhat.com/errata/RHSA-2025:1453\n15. https://access.redhat.com/errata/RHSA-2025:1707\n16. https://access.redhat.com/errata/RHSA-2025:1713\n17. https://access.redhat.com/errata/RHSA-2025:1908\n18. https://access.redhat.com/errata/RHSA-2025:1910\n19. https://access.redhat.com/errata/RHSA-2025:1914\n20. https://access.redhat.com/errata/RHSA-2025:2441\n21. https://access.redhat.com/errata/RHSA-2025:2443\n22. https://access.redhat.com/errata/RHSA-2025:2454\n23. https://access.redhat.com/errata/RHSA-2025:2456\n24. https://access.redhat.com/errata/RHSA-2025:2701\n25. https://access.redhat.com/errata/RHSA-2025:2703\n26. https://access.redhat.com/errata/RHSA-2025:2710\n27. https://access.redhat.com/errata/RHSA-2025:2712\n28. https://access.redhat.com/errata/RHSA-2025:3577\n29. https://access.redhat.com/errata/RHSA-2025:3798\n30. https://access.redhat.com/security/cve/CVE-2024-11218\n31. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-04-16T18:56:07.000000Z"}, {"uuid": "eaa2e960-e8dd-420d-bb76-7bd05093d90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/cvedetector/16073", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11218 - Podman/Buildah Compose Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11218 \nPublished : Jan. 22, 2025, 5:15 a.m. | 37\u00a0minutes ago \nDescription : A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host. \nSeverity: 8.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T07:12:01.000000Z"}, {"uuid": "fda63677-3044-48a5-9ab0-13de41ee7af9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11217", "type": "seen", "source": "https://t.me/cvedetector/11187", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11217 - OAuth-server Debug Log OAuth Client Secret Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-11217 \nPublished : Nov. 15, 2024, 9:15 p.m. | 45\u00a0minutes ago \nDescription : A vulnerability was found in the OAuth-server. OAuth-server logs the OAuth2 client secret when the logLevel is Debug higher for OIDC/GitHub/GitLab/Google IDPs login options. \nSeverity: 4.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T23:19:45.000000Z"}, {"uuid": "269d9790-0e69-44ed-8453-a5a7aeb0c569", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-1121", "type": "seen", "source": "https://t.me/ctinow/196423", "content": "https://ift.tt/sueGKiv\nCVE-2024-1121 | Advanced Forms for ACF Plugin up to 1.9.3.2 on WordPress Form Setting Export authorization", "creation_timestamp": "2024-02-29T09:56:52.000000Z"}, {"uuid": "faf57629-9cdd-4179-a5ad-c4f4c5981aeb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11217", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488957266320605", "content": "", "creation_timestamp": "2024-11-15T20:54:20.350420Z"}, {"uuid": "da01a81d-bdd4-416b-a507-7c51b18c787b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11219", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113553312903556583", "content": "", "creation_timestamp": "2024-11-27T05:40:49.471887Z"}, {"uuid": "f1a09175-2365-4fe2-a50d-b2475a44c9b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/podmanio.bsky.social/post/3lge4yk3kcc23", "content": "", "creation_timestamp": "2025-01-22T19:45:42.340422Z"}, {"uuid": "1c480297-ae7a-4cb2-b01e-713bff6b3006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/az8UqFVz3MQxgOn4eHL-FB2LAsJIbnM8ilHYQShUiIVjYsf8", "content": "", "creation_timestamp": "2025-03-06T02:16:24.000000Z"}, {"uuid": "336383fb-c1f8-4e94-aa4c-3f1f16b695cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/MlsTbHi2mpRUxw0qXxyWVHW1ySK_r0nti9nWjsyrG5AU10k0", "content": "", "creation_timestamp": "2025-03-06T02:16:24.000000Z"}, {"uuid": "b83cd778-7381-41a6-8516-8f4e970a3614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11217", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/880", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11217\n\ud83d\udd39 Description: A vulnerability was found in the OAuth-server. OAuth-server logs the OAuth2 client secret when the logLevel is Debug higher for OIDC/GitHub/GitLab/Google IDPs login options.\n\ud83d\udccf Published: 2024-11-15T20:48:46.460Z\n\ud83d\udccf Modified: 2025-01-09T04:01:09.890Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-11217\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2326230", "creation_timestamp": "2025-01-09T04:13:59.000000Z"}, {"uuid": "3f699ea0-79c1-47b1-990c-771163dbb750", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5635", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd25 CVSS Score: 8.6 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-02-27T00:54:39.333Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:0830\n2. https://access.redhat.com/errata/RHSA-2025:0878\n3. https://access.redhat.com/errata/RHSA-2025:0922\n4. https://access.redhat.com/errata/RHSA-2025:0923\n5. https://access.redhat.com/errata/RHSA-2025:1186\n6. https://access.redhat.com/errata/RHSA-2025:1187\n7. https://access.redhat.com/errata/RHSA-2025:1188\n8. https://access.redhat.com/errata/RHSA-2025:1189\n9. https://access.redhat.com/errata/RHSA-2025:1207\n10. https://access.redhat.com/errata/RHSA-2025:1275\n11. https://access.redhat.com/errata/RHSA-2025:1295\n12. https://access.redhat.com/errata/RHSA-2025:1296\n13. https://access.redhat.com/errata/RHSA-2025:1372\n14. https://access.redhat.com/errata/RHSA-2025:1453\n15. https://access.redhat.com/errata/RHSA-2025:1707\n16. https://access.redhat.com/security/cve/CVE-2024-11218\n17. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-02-27T01:26:02.000000Z"}, {"uuid": "1ce844bc-3b05-41da-9103-7e9a4ef419cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11216", "type": "seen", "source": "Telegram/fmAxn10UfrehXDLmSKIHvF7InyyBx1GoPVlof8n2J8AjEuEE", "content": "", "creation_timestamp": "2025-03-06T02:16:32.000000Z"}, {"uuid": "77efb892-b10e-4a9a-ae26-ec99d7be7e30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/2GbtUoHMFF44U27GnZOaWCuJrHoCaXwBOvZwT7QRqgco0uuR", "content": "", "creation_timestamp": "2025-02-06T02:40:20.000000Z"}, {"uuid": "92a36209-62d0-4992-a2cb-c8256ad25a71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11216", "type": "seen", "source": "https://t.me/cvedetector/19636", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11216 - PozitifIK Pik Online Authorization Bypass and Information Exposure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11216 \nPublished : March 5, 2025, 1:15 p.m. | 1\u00a0hour, 53\u00a0minutes ago \nDescription : Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in PozitifIK Pik Online allows Account Footprinting, Session Hijacking.This issue affects Pik Online: through 05.03.2025.  \n  \n  \nNOTE: The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-05T16:56:41.000000Z"}, {"uuid": "598b9fc2-a718-4be6-8f38-366451c44ca1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11210", "type": "seen", "source": "https://t.me/cvedetector/10964", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11210 - EyouCMS Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11210 \nPublished : Nov. 14, 2024, 3:15 p.m. | 19\u00a0minutes ago \nDescription : A vulnerability was found in EyouCMS 1.51. It has been rated as critical. This issue affects the function editFile of the file application/admin/logic/FilemanagerLogic.php. The manipulation of the argument activepath leads to path traversal. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T16:39:43.000000Z"}, {"uuid": "bd0026b5-8d8c-45c3-98ed-d911585e2457", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11212", "type": "seen", "source": "https://t.me/cvedetector/10962", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11212 - SourceCodester Best Employee Management System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-11212 \nPublished : Nov. 14, 2024, 3:15 p.m. | 19\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in SourceCodester Best Employee Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/fetch_product_details.php. The manipulation of the argument barcode leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T16:39:38.000000Z"}, {"uuid": "127df9d0-a6bc-4384-b3c7-5f1af53b8c6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11214", "type": "seen", "source": "https://t.me/cvedetector/10972", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11214 - SourceCodester Best Employee Management System PHP Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11214 \nPublished : Nov. 14, 2024, 4:15 p.m. | 38\u00a0minutes ago \nDescription : A vulnerability has been found in SourceCodester Best Employee Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/profile.php. The manipulation of the argument website_image leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The initial researcher disclosure contains confusing vulnerability classes. \nSeverity: 4.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T18:20:07.000000Z"}, {"uuid": "c4b5bc29-f9b9-4524-8099-c797c068d3dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11213", "type": "seen", "source": "https://t.me/cvedetector/10971", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11213 - \"SourceCodester Best Employee Management System SQL Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-11213 \nPublished : Nov. 14, 2024, 4:15 p.m. | 38\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in SourceCodester Best Employee Management System 1.0. This affects an unknown part of the file /admin/edit_role.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 4.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T18:20:06.000000Z"}, {"uuid": "ed9b039f-b38c-4d91-ad03-f9dd8cfdd9e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11211", "type": "seen", "source": "https://t.me/cvedetector/10961", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11211 - EyouCMS Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11211 \nPublished : Nov. 14, 2024, 3:15 p.m. | 19\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in EyouCMS 1.5.6. Affected is an unknown function of the component Website Logo Handler. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 4.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T16:39:37.000000Z"}, {"uuid": "a3a2b10a-d695-46ec-bf36-321b4b912631", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/CyberBulletin/2182", "content": "\u26a1Podman and Buildah Vulnerable to Container Breakout \u2013 CVE-2024-11218.\n\n#CyberBulletin", "creation_timestamp": "2025-01-27T11:24:04.000000Z"}, {"uuid": "eb0b0471-8f0c-4e3f-82e9-2249655a79a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/H4pBs7HYOXM99n9EqU-4XyCClDp4eYbt8Y7KTVTioQjKWyNG", "content": "", "creation_timestamp": "2025-02-14T10:06:08.000000Z"}, {"uuid": "12c4ad10-8ff7-4d8e-ad27-d5ee4e82122e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/LXhWAf2aYB8jupokX7Qp0vbiRBWGzTGp7AZRKqh-6HUnyvEt", "content": "", "creation_timestamp": "2025-02-14T10:01:39.000000Z"}, {"uuid": "8ba47add-c64d-4429-94a3-9e1ab7cd7fd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/FsmZ1sneld_hSit-qBB7WWADsJNY71hcEnSe_AOfhsaio3gF", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}, {"uuid": "3c8ac558-15ed-4c9f-9798-7a1433e12cc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/SRQu-Rhb7v1-pv-oMQo-GP9yKCbkD8ZjKLUS3DabjphTljr7", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}, {"uuid": "36226088-66d9-44bd-835f-34404ab9c3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/F3o0-LI6lrEFIssK8kclyfbs_xT3kN8dai1EX-qslTreI9KJ", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}, {"uuid": "843ef4f4-263a-45ce-928c-1e1745718e52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11215", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113481595423608847", "content": "", "creation_timestamp": "2024-11-14T13:42:07.772821Z"}, {"uuid": "3678d94b-860d-499d-9504-e5444fbfe208", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11210", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113481824113002641", "content": "", "creation_timestamp": "2024-11-14T14:40:17.118864Z"}, {"uuid": "1d6a8055-1a38-4464-a94d-602fc146cfee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11211", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113481919670212707", "content": "", "creation_timestamp": "2024-11-14T15:04:35.037546Z"}, {"uuid": "c164625f-244b-4fb6-a02f-26dd4700ca68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11212", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113481919684718479", "content": "", "creation_timestamp": "2024-11-14T15:04:35.281310Z"}, {"uuid": "8b5d9764-ccbd-4ecb-8d45-d33f8e4af397", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11216", "type": "seen", "source": "MISP/fc16b923-3a13-4e9d-9aac-10a57cac12c7", "content": "", "creation_timestamp": "2025-08-18T18:31:00.000000Z"}, {"uuid": "cddb5302-eee2-4bfc-bc04-d4a0c80a8265", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "MISP/d0bda5d9-8cbc-4c6c-8803-a5e3150f9ec2", "content": "", "creation_timestamp": "2025-09-01T19:03:03.000000Z"}, {"uuid": "a92ea708-3ce3-45b5-9ffb-6e7a93322e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2520", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11218\n\ud83d\udd39 Description: A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.\n\ud83d\udccf Published: 2025-01-22T04:55:30.649Z\n\ud83d\udccf Modified: 2025-01-22T04:55:30.649Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-11218\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2326231", "creation_timestamp": "2025-01-22T06:03:32.000000Z"}, {"uuid": "dd2343bc-4143-4a1c-9ef6-63bdcab2fe1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11216", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6543", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-11216\n\ud83d\udd25 CVSS Score: 7.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L)\n\ud83d\udd39 Description: Authorization Bypass Through User-Controlled Key, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in PozitifIK Pik Online allows Account Footprinting, Session Hijacking.This issue affects Pik Online: through 05.03.2025.\n\n\nNOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-03-05T13:02:20.755Z\n\ud83d\udccf Modified: 2025-03-05T13:02:20.755Z\n\ud83d\udd17 References:\n1. https://www.usom.gov.tr/bildirim/tr-25-0052", "creation_timestamp": "2025-03-05T13:35:04.000000Z"}, {"uuid": "912a51dd-d034-472b-8273-dc03fbccdb93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "Telegram/zPRf5sy2nrfNIh9ihojqpVYfoin8NwwCjfJ9TtDC6E1yz3Jp", "content": "", "creation_timestamp": "2025-02-14T10:01:39.000000Z"}, {"uuid": "9fbb089f-f9c9-4236-a9cf-5a698e36aded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11215", "type": "seen", "source": "https://t.me/cvedetector/10952", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11215 - EasyPHP Web Server Path Traversal\", \n  \"Content\": \"CVE ID : CVE-2024-11215 \nPublished : Nov. 14, 2024, 2:15 p.m. | 28\u00a0minutes ago \nDescription : Absolute path traversal (incorrect restriction of a path to a restricted directory) vulnerability in the EasyPHP web server, affecting version 14.1. This vulnerability could allow remote users to bypass SecurityManager restrictions and retrieve any file stored on the server by setting only consecutive strings \u2018/...%5c\u2019. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T15:49:19.000000Z"}, {"uuid": "c6847aed-07e8-4416-961e-6bdde3f5e33c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgcmfcomg62x", "content": "", "creation_timestamp": "2025-01-22T05:15:56.166128Z"}, {"uuid": "7848f650-a390-4c49-9570-71f1041d53eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgcnp3tbw62h", "content": "", "creation_timestamp": "2025-01-22T05:39:18.051624Z"}, {"uuid": "4108fefd-348b-478b-afdc-7769e73dc164", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgcnp44vdz2e", "content": "", "creation_timestamp": "2025-01-22T05:39:18.710678Z"}, {"uuid": "c2c07d10-fece-4a0d-9282-f457a1d54090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113870431260277167", "content": "", "creation_timestamp": "2025-01-22T05:48:11.813376Z"}, {"uuid": "3369e3f5-c871-4d27-aa81-095424d3f664", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-11218", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lgpdww47w22p", "content": "", "creation_timestamp": "2025-01-27T06:49:21.727295Z"}]}