{"vulnerability": "cve-2024-4846", "sightings": [{"uuid": "4112b320-7507-4434-9c7b-98250766ddb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48463", "type": "seen", "source": "https://schleuss.online/users/vulnbot/statuses/113836242921137665", "content": "", "creation_timestamp": "2025-01-16T04:53:40.050767Z"}, {"uuid": "4889a193-fe0f-49a8-a3ac-ee36c81382f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48463", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lftlrmcnix2t", "content": "", "creation_timestamp": "2025-01-16T05:54:59.085397Z"}, {"uuid": "41c6211f-c2eb-4990-be86-b790c2dd25f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48463", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lfvqrjvf3s2n", "content": "", "creation_timestamp": "2025-01-17T02:29:44.808939Z"}, {"uuid": "f6f06fd9-3cc6-4cb5-8b5a-b645f976bc70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48460", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2085", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48460\n\ud83d\udd39 Description: An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails.\n\ud83d\udccf Published: 2025-01-16T00:00:00\n\ud83d\udccf Modified: 2025-01-16T22:03:30.907847\n\ud83d\udd17 References:\n1. https://github.com/Eugeny/tabby/issues/9955", "creation_timestamp": "2025-01-16T22:56:45.000000Z"}, {"uuid": "b192c230-1ae8-4ec2-908f-15d8ab6cacc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48460", "type": "seen", "source": "https://t.me/cvedetector/15659", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48460 - Eugeny Tabby SSH Exposure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48460 \nPublished : Jan. 16, 2025, 10:15 p.m. | 28\u00a0minutes ago \nDescription : An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T23:46:32.000000Z"}, {"uuid": "7a846e4e-f0c2-42da-8221-3116629a512a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48463", "type": "published-proof-of-concept", "source": "Telegram/9m8kJAeuDnYT19kap-__poq-5AFByH4-gWMmBYIiFTSzwB8", "content": "", "creation_timestamp": "2025-01-16T20:00:05.000000Z"}, {"uuid": "147c22ac-9db5-4da2-bace-b5e112e9da19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48463", "type": "seen", "source": "https://t.me/cvedetector/9790", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48463 - Bruno Electron Shell External Validation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48463 \nPublished : Nov. 4, 2024, 9:15 p.m. | 31\u00a0minutes ago \nDescription : Bruno before 1.29.1 uses Electron shell.openExternal without validation (of http or https) for opening windows within the Markdown docs viewer. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T22:48:36.000000Z"}, {"uuid": "989e3f26-b968-4afb-8084-c08bceef6136", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48460", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfveqjta7x2i", "content": "", "creation_timestamp": "2025-01-16T22:54:26.409889Z"}, {"uuid": "afab6bfd-65fd-4f26-a337-047e229a5aa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48460", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfvclo6tsi2j", "content": "", "creation_timestamp": "2025-01-16T22:15:55.888808Z"}, {"uuid": "c320f4af-f2ab-4756-8895-2dc4e4c6b996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48461", "type": "seen", "source": "https://t.me/cvedetector/9356", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48461 - TeslaLogger Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-48461 \nPublished : Oct. 29, 2024, 9:15 p.m. | 42\u00a0minutes ago \nDescription : Cross Site Scripting vulnerability in TeslaLogger Admin Panel before v.1.59.6 allows a remote attacker to execute arbitrary code via the New Journey field. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T23:08:25.000000Z"}, {"uuid": "7d195905-1813-46e9-80f1-e34e00f66f9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-48465", "type": "seen", "source": "https://t.me/cvedetector/9172", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-48465 - MRBS SQL injection vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-48465 \nPublished : Oct. 28, 2024, 8:15 p.m. | 42\u00a0minutes ago \nDescription : The MRBS version 1.5.0 has an SQL injection vulnerability in the edit_entry_handler.php file, specifically in the rooms%5B%5D parameter \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-28T22:01:25.000000Z"}]}