{"vulnerability": "cve-2024-2528", "sightings": [{"uuid": "7d722b0c-d46f-4fd5-a10c-fc3f2690cf74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-2528", "type": "seen", "source": "https://t.me/ctinow/209129", "content": "https://ift.tt/gnbo3Kl\nCVE-2024-2528 | MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0 /admin/update-rooms.php room_id sql injection", "creation_timestamp": "2024-03-15T21:01:28.000000Z"}, {"uuid": "f8cca7aa-ac4d-48b3-957d-807a909b897d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25288", "type": "seen", "source": "https://t.me/ctinow/206499", "content": "https://ift.tt/GOI0krR\nCVE-2024-25288 | SLiMS Bulian 9.6.1 pop-scope-vocabolary.php sql injection (ID 229)", "creation_timestamp": "2024-03-13T09:41:28.000000Z"}, {"uuid": "a4541971-39f7-4040-b3ba-64860b1590b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-2528", "type": "seen", "source": "https://t.me/ctinow/209714", "content": "https://ift.tt/ZGY8u1Q\nCVE-2024-2528", "creation_timestamp": "2024-03-16T21:21:33.000000Z"}, {"uuid": "44a3010d-fb18-4285-beac-d73472e73beb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-2528", "type": "seen", "source": "https://t.me/ctinow/209716", "content": "https://ift.tt/ZGY8u1Q\nCVE-2024-2528", "creation_timestamp": "2024-03-16T21:26:12.000000Z"}, {"uuid": "28580f5b-e120-47a6-9703-e06c27c40ed9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25288", "type": "seen", "source": "https://t.me/ctinow/189914", "content": "https://ift.tt/T5SXVmd\nCVE-2024-25288", "creation_timestamp": "2024-02-21T18:36:20.000000Z"}, {"uuid": "1c0387d0-9a6b-4a17-9bac-e699deefaf8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25288", "type": "seen", "source": "https://t.me/ctinow/189900", "content": "https://ift.tt/T5SXVmd\nCVE-2024-25288", "creation_timestamp": "2024-02-21T18:31:27.000000Z"}, {"uuid": "0bbdad2c-e390-4f70-8f35-b97f2cb8cdd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25288", "type": "seen", "source": "https://t.me/arpsyndicate/4042", "content": "#ExploitObserverAlert\n\nCVE-2024-25288\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2024-25288. SLIMS (Senayan Library Management Systems) 9 Bulian v9.6.1 is vulnerable to SQL Injection via pop-scope-vocabolary.php.", "creation_timestamp": "2024-02-22T20:50:08.000000Z"}, {"uuid": "3e87e0bc-b3ab-47d7-bc53-cf34aa6edbaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25283", "type": "seen", "source": "https://t.me/cvedetector/7421", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25283 - Visa 3DSecure 2.0 Reflected Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-25283 \nPublished : Oct. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : 3DSecure 2.0 allows reflected XSS in the 3DS Authorization Challenge via a modified params parameter in a /rest/online request with a /redirect?action=challenge&txn= substring. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T07:17:03.000000Z"}, {"uuid": "e33a39eb-1a54-4c11-b843-5b0b4c6bfded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25282", "type": "seen", "source": "https://t.me/cvedetector/7420", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25282 - Visa 3DSecure Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-25282 \nPublished : Oct. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : 3DSecure 2.0 allows XSS in its 3DSMethod Authentication via a modified params parameter in a /rest/online request with a /redirect?action=challenge&txn= substring. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T07:17:02.000000Z"}, {"uuid": "dde6bb6b-1ef8-49c0-8488-eb54cb845c0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25286", "type": "seen", "source": "https://t.me/cvedetector/7424", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25286 - Gemalto 3DSecure CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-25286 \nPublished : Oct. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : 3DSecure 2.0 allows CSRF in the Authorization Method via modified Origin and Referer HTTP headers. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T07:17:08.000000Z"}, {"uuid": "c0e586d7-4386-4bdf-9af1-8906eaf22173", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25285", "type": "seen", "source": "https://t.me/cvedetector/7423", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25285 - EMVCo 3DSecure Cross-Site Request Forgery (CSRF) Notification URL Hijacking\", \n  \"Content\": \"CVE ID : CVE-2024-25285 \nPublished : Oct. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : 3DSecure 2.0 allows form action hijacking via threeDsMethod.jsp?threeDSMethodData= or the threeDSMethodNotificationURL parameter. The destination web site for a form submission can be modified. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T07:17:07.000000Z"}, {"uuid": "b516b531-1fa7-43f5-a349-cf21dfc38ec4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-25284", "type": "seen", "source": "https://t.me/cvedetector/7422", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-25284 - Visa 3DSecure 2.0 Reflected Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-25284 \nPublished : Oct. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : 3DSecure 2.0 allows reflected XSS in the 3DS Authorization Method via the threeDsMethod.jsp threeDSMethodData parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T07:17:03.000000Z"}]}