{"vulnerability": "cve-2024-3787", "sightings": [{"uuid": "dc8778e4-e020-42ac-a6f2-6db457bca9db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-3787", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9202", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-3787\n\ud83d\udd25 CVSS Score: 6.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Vulnerability in WBSAirback 21.02.04, which involves improper neutralisation of Server-Side Includes (SSI), through S3 disks (/admin/DeviceS3). Exploitation of this vulnerability could allow a remote user to execute arbitrary code.\n\ud83d\udccf Published: 2024-04-15T14:08:05.794Z\n\ud83d\udccf Modified: 2025-03-27T20:11:03.252Z\n\ud83d\udd17 References:\n1. https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-wbsairback-white-bear-solutions", "creation_timestamp": "2025-03-27T20:27:20.000000Z"}, {"uuid": "4aa1a3f6-46a5-4480-b6dd-315924a3b143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37879", "type": "seen", "source": "https://t.me/cvedetector/6117", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37879 - USVN RCE Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-37879 \nPublished : Sept. 20, 2024, 5:15 p.m. | 24\u00a0minutes ago \nDescription : Improper input validation in /admin/config/save in User-friendly SVN (USVN) before v1.0.12 and below allows administrators to execute arbitrary code via the fields \"siteTitle\", \"siteIco\" and \"siteLogo\". \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-20T19:45:13.000000Z"}, {"uuid": "58dd4d91-e58f-4fe7-bffa-df1ca99ebcf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37871", "type": "seen", "source": "https://t.me/cvedetector/448", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37871 - SQL injection vulnerability in login.php in Itsour\", \n  \"Content\": \"CVE ID : CVE-2024-37871 \nPublished : July 9, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T22:46:03.000000Z"}, {"uuid": "cb21db34-37ac-4948-8600-112c0af16e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37873", "type": "seen", "source": "https://t.me/cvedetector/446", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37873 - SQL injection vulnerability in view_payslip.php in\", \n  \"Content\": \"CVE ID : CVE-2024-37873 \nPublished : July 9, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : SQL injection vulnerability in view_payslip.php in Itsourcecode Payroll Management System Project In PHP With Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T22:46:01.000000Z"}, {"uuid": "fd33de7e-17d9-47fe-98c3-dfdbcf64b5a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37872", "type": "seen", "source": "https://t.me/cvedetector/444", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37872 - SQL injection vulnerability in process.php in Itso\", \n  \"Content\": \"CVE ID : CVE-2024-37872 \nPublished : July 9, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T22:45:56.000000Z"}, {"uuid": "ffe39566-e1fb-4d03-89a7-69eabed888c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37870", "type": "seen", "source": "https://t.me/cvedetector/435", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37870 - SQL injection vulnerability in processscore.php in\", \n  \"Content\": \"CVE ID : CVE-2024-37870 \nPublished : July 9, 2024, 7:15 p.m. | 35\u00a0minutes ago \nDescription : SQL injection vulnerability in processscore.php in Learning Management System Project In PHP With Source Code 1.0 allows attackers to execute arbitrary SQL commands via the id parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T21:55:37.000000Z"}, {"uuid": "12e33945-1836-41ca-b864-4f96eab25f89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37873", "type": "seen", "source": "Telegram/o8F_kbi_b9IzwM5K8QzJIfn90NH7k1B1skAj1yaSNWYNc90I", "content": "", "creation_timestamp": "2024-07-11T02:57:29.000000Z"}]}