{"vulnerability": "cve-2024-45879", "sightings": [{"uuid": "dd3da9aa-73db-45a8-9036-6b5ae0110f78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45879", "type": "seen", "source": "https://t.me/cvedetector/10877", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-45879 - Baltic-it TOPqw Webportal QWKalkulation Persistent Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-45879 \nPublished : Nov. 13, 2024, 9:15 p.m. | 41\u00a0minutes ago \nDescription : The file upload function in the \"QWKalkulation\" tool of baltic-it TOPqw Webportal v1.35.287.1 (fixed in version 1.35.291), in /Apps/TOPqw/QWKalkulation/QWKalkulation.aspx, is vulnerable to Cross-Site Scripting (XSS). To exploit the persistent XSS vulnerability, an attacker has to be authenticated to the application that uses the \"TOPqw Webportal\" as a software. When authenticated, the attacker can persistently place the malicious JavaScript code in the \"QWKalkulation\" menu.' \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-13T23:05:34.000000Z"}, {"uuid": "8da365b6-bbca-481c-9909-7251d4f3d99a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-45879", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113478768482290803", "content": "", "creation_timestamp": "2024-11-14T01:43:11.840231Z"}]}