{"vulnerability": "cve-2024-4648", "sightings": [{"uuid": "e506d63b-089f-4292-bb7d-657430c9de24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46484", "type": "seen", "source": "https://gist.github.com/powalll/682c1b81696888fd692e595598f2ae3e", "content": "", "creation_timestamp": "2025-08-29T04:54:19.000000Z"}, {"uuid": "b78f098e-8ea4-4c45-83bd-d664fcfe20fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46484", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115114171833588989", "content": "", "creation_timestamp": "2025-08-29T21:27:46.989984Z"}, {"uuid": "c4b790cd-4bf9-4281-ab86-3bd5b2ce518a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46484", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lxldanhsij27", "content": "", "creation_timestamp": "2025-08-30T00:34:31.421474Z"}, {"uuid": "8b711d66-11f3-4afd-a86e-7991427affc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8772", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-46483\nURL\uff1ahttps://github.com/kn32/cve-2024-46483\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-10-18T11:47:32.000000Z"}, {"uuid": "cb19bdb4-3700-427d-98d7-f3ebbff8b841", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/1303", "content": "\u26a1\ufe0fCVE-2024-46483 (CVSS 9.8): Xlight FTP Server Flaw Leaves Users Exposed to Remote Attacks, PoC Published.\n\n#CyberBulletin", "creation_timestamp": "2024-10-29T05:02:14.000000Z"}, {"uuid": "6b8faade-41ec-4426-ac12-3f31c31ee683", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46481", "type": "seen", "source": "https://t.me/cvedetector/15175", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46481 - Venki Supravizio BPM Open Redirect and Reflected Cross-Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-46481 \nPublished : Jan. 13, 2025, 8:15 p.m. | 43\u00a0minutes ago \nDescription : The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to reflected XSS. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:05:45.000000Z"}, {"uuid": "e5377cd8-3642-443e-a8ae-574e901c5c6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46480", "type": "seen", "source": "https://t.me/cvedetector/15174", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46480 - Venki Supravizio BPM NTLM Hash Leak Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46480 \nPublished : Jan. 13, 2025, 8:15 p.m. | 43\u00a0minutes ago \nDescription : An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator access to escalate privileges on the underlying host system. \nSeverity: 8.4 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:05:41.000000Z"}, {"uuid": "4856ebc3-c5e1-4e6d-b984-4d6f42d0b6c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "seen", "source": "https://t.me/cvedetector/8655", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46483 - Xlight FTP Server SFTP Heap Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46483 \nPublished : Oct. 22, 2024, 10:15 p.m. | 22\u00a0minutes ago \nDescription : Xlight FTP Server <3.9.4.3\nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-23T00:39:51.000000Z"}, {"uuid": "cd3def01-414d-4e8a-b2ac-61cff2ad030e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46482", "type": "seen", "source": "https://t.me/cvedetector/8654", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46482 - Ladybird Faveo-Helpdesk File Upload Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46482 \nPublished : Oct. 22, 2024, 10:15 p.m. | 22\u00a0minutes ago \nDescription : An arbitrary file upload vulnerability in the Ticket Generation function of Ladybird Web Solution Faveo-Helpdesk v2.0.3 allows attackers to execute arbitrary code via uploading a crafted .html or .svg file. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-23T00:39:47.000000Z"}, {"uuid": "fcae524e-8095-4db3-9916-f0804b2f6c22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46486", "type": "seen", "source": "https://t.me/cvedetector/6994", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46486 - TP-LINK TL-WDR5620 HTTP Remote Code Execution (RCE)\", \n  \"Content\": \"CVE ID : CVE-2024-46486 \nPublished : Oct. 4, 2024, 5:15 p.m. | 41\u00a0minutes ago \nDescription : TP-LINK TL-WDR5620 v2.3 was discovered to contain a remote code execution (RCE) vulnerability via the httpProcDataSrv function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-04T20:12:59.000000Z"}, {"uuid": "4269cfc3-2cb1-4972-8204-f31071e500d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3901", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\n\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T04:10:09.000000Z"}, {"uuid": "d24a63ba-055d-4ec1-b6f7-a0eeefc01445", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/7636", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:21.000000Z"}, {"uuid": "53378bd7-c070-4160-91eb-ab20dd553b36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11381", "content": "#exploit\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\nhttps://blog.sonicwall.com/en-us/2024/10/vmware-vcenter-server-cve-2024-38812-dcerpc-vulnerability\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380\u00a0DLL Hijacking\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC", "creation_timestamp": "2024-11-04T17:28:48.000000Z"}, {"uuid": "eb113b4d-ec76-49bb-941f-b367eeb2f5ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/690", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:26.000000Z"}, {"uuid": "11c26885-4bb7-4a57-8a5b-258672421532", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "Telegram/ADvpftAyE2yYUF4YBSKpoW_jzQ0stDge7A6EXiw6E5UBsQ", "content": "", "creation_timestamp": "2024-11-03T17:41:00.000000Z"}, {"uuid": "cd13ad01-5b70-48cf-8d40-c55a80a927fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/1216", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T04:10:10.000000Z"}, {"uuid": "4d59f1f6-c405-4718-a1a2-a8aad4ebccc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/9017", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:21.000000Z"}, {"uuid": "ec8c9111-9275-40c0-a834-34fbfe82e573", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/InfoSecInsider/24431", "content": "Tools - Hackers Factory \n\nProof of Concept for manipulating the Kernel Callback Table in the Process Environment Block (PEB) to perform process injection and hijack execution flow\n\nhttps://github.com/0xHossam/KernelCallbackTable-Injection-PoC\n\n#DFIR\nhttps://github.com/OMENScan/OMENS\n\nGenerate a MITRE ATT&CK Navigator based on a list of CVEs. Database with CVE, CWE, CAPEC, and MITRE ATT&CK Techniques data is updated daily\n\nhttps://github.com/Galeax/CVE2CAPEC\n\n#exploit\n\n1. CVE-2024-46483:\nPre-Auth Heap Overflow in Xlight SFTP server\n\nhttps://github.com/kn32/cve-2024-46483\n\n2. CVE-2024-38812:\nVMWare vCenter Server DCERPC\n\n3. CVE-2024-6473:\nYandex Browser <24.7.1.380 DLL Hijacking\n\nhttps://github.com/12345qwert123456/CVE-2024-6473-PoC\n\n#CyberDilara \nhttps://t.me/CyberDilara", "creation_timestamp": "2024-11-15T05:24:25.000000Z"}, {"uuid": "1769cae0-e69e-49b7-b173-42a889cd6229", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46481", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113822794330501003", "content": "", "creation_timestamp": "2025-01-13T19:53:29.628801Z"}, {"uuid": "91323de4-8fdc-47e7-96bb-b8b3651f2aed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46480", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113823011263185366", "content": "", "creation_timestamp": "2025-01-13T20:48:40.917828Z"}, {"uuid": "18d7fc9d-fb2c-4e56-9710-5091238c9dee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46481", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1370", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46481\n\ud83d\udd39 Description: The login page of Venki Supravizio BPM up to 18.1.1 is vulnerable to open redirect leading to reflected XSS.\n\ud83d\udccf Published: 2025-01-13T00:00:00\n\ud83d\udccf Modified: 2025-01-13T19:54:57.232Z\n\ud83d\udd17 References:\n1. https://github.com/Lorenzo-de-Sa/Vulnerability-Research\n2. https://www.venki.com.br/ferramenta-bpm/supravizio/\n3. https://github.com/Lorenzo-de-Sa/Vulnerability-Research/blob/main/CVE-2024-46481.md", "creation_timestamp": "2025-01-13T20:07:14.000000Z"}, {"uuid": "dcbdbe70-810a-46b4-947c-6ac1a5e4cc55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46480", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1372", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46480\n\ud83d\udd39 Description: An NTLM hash leak in Venki Supravizio BPM up to 18.0.1 allows authenticated attackers with Application Administrator access to escalate privileges on the underlying host system.\n\ud83d\udccf Published: 2025-01-13T00:00:00\n\ud83d\udccf Modified: 2025-01-13T19:49:37.464Z\n\ud83d\udd17 References:\n1. https://github.com/Lorenzo-de-Sa/Vulnerability-Research\n2. https://www.venki.com.br/ferramenta-bpm/supravizio/\n3. https://github.com/Lorenzo-de-Sa/Vulnerability-Research/blob/main/CVE-2024-46480.md", "creation_timestamp": "2025-01-13T20:07:19.000000Z"}, {"uuid": "cb9d2da8-6e4f-4115-a1a2-ba4ea5d30f54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46485", "type": "seen", "source": "https://t.me/cvedetector/6329", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46485 - Dingfanzu CMS CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46485 \nPublished : Sept. 25, 2024, 4:15 p.m. | 44\u00a0minutes ago \nDescription : dingfanzu CMS 1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via /admin/doAdminAction.php?act=addCate \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-25T19:21:34.000000Z"}, {"uuid": "21d6cddf-a521-40cf-9e58-6773a36c4e41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46489", "type": "seen", "source": "https://t.me/cvedetector/6356", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46489 - Promptr RCE\", \n  \"Content\": \"CVE ID : CVE-2024-46489 \nPublished : Sept. 25, 2024, 6:15 p.m. | 35\u00a0minutes ago \nDescription : A remote command execution (RCE) vulnerability in promptr v6.0.7 allows attackers to execute arbitrary commands via a crafted URL. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-25T21:03:40.000000Z"}, {"uuid": "6951155b-7d75-48e6-a3a0-00fba8ead311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46488", "type": "seen", "source": "https://t.me/cvedetector/6353", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46488 - SQLite Heap Buffer Overflow Denial of Service\", \n  \"Content\": \"CVE ID : CVE-2024-46488 \nPublished : Sept. 25, 2024, 6:15 p.m. | 35\u00a0minutes ago \nDescription : sqlite-vec v0.1.1 was discovered to contain a heap buffer overflow via the npy_token_next function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted file. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-25T21:03:37.000000Z"}, {"uuid": "6dd9f77e-7ee2-4e6e-bded-86553937c68b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/haj3imad/20384", "content": "https://github.com/kn32/cve-2024-46483\n\nPre-Authentication Heap Overflow in Xlight SFTP server <= 3.9.4.2\n#github #poc #exploit", "creation_timestamp": "2024-11-03T17:41:16.000000Z"}, {"uuid": "caf50c4e-f3ba-44db-bee0-de5f0adf1ec8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-4648", "type": "seen", "source": "Telegram/kIaNLUvKjRPtGQFB9JLl8PrTBjclExTrVXwDBXDf-HrsN3TU", "content": "", "creation_timestamp": "2025-02-19T19:14:02.000000Z"}, {"uuid": "abe3885e-ef4e-499c-a291-7410312f726a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/CyberBulletin/26247", "content": "\u26a1\ufe0fCVE-2024-46483 (CVSS 9.8): Xlight FTP Server Flaw Leaves Users Exposed to Remote Attacks, PoC Published.\n\n#CyberBulletin", "creation_timestamp": "2024-10-29T05:02:14.000000Z"}, {"uuid": "1bcb9484-6fd3-4b98-87e3-c54fa553c204", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46483", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/3389", "content": "https://github.com/kn32/cve-2024-46483\n\nPre-Authentication Heap Overflow in Xlight SFTP server <= 3.9.4.2\n#github #poc #exploit", "creation_timestamp": "2024-11-03T17:31:48.000000Z"}, {"uuid": "c0e6095b-b392-4336-9c62-2cb8806b2bf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46481", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lfpowcwtfv2e", "content": "", "creation_timestamp": "2025-01-14T16:40:39.499091Z"}, {"uuid": "652bd8a2-7449-48cd-aa3b-82eda546ebcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46480", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113822772280500032", "content": "", "creation_timestamp": "2025-01-13T19:47:53.211857Z"}, {"uuid": "d9224e29-b6f8-4067-9889-5e3acb04bf83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-46480", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lfpq5bj4sm2a", "content": "", "creation_timestamp": "2025-01-14T17:02:26.630701Z"}]}