{"vulnerability": "cve-2024-4927", "sightings": [{"uuid": "60a345f4-d566-4fe4-badc-3d41780eb138", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-49274", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mikukxhdjb2v", "content": "", "creation_timestamp": "2026-04-03T04:20:09.229174Z"}, {"uuid": "1ffb98f4-f274-49a0-8264-67662219c242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-49271", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mio2ber3wq2d", "content": "", "creation_timestamp": "2026-04-04T10:40:09.129823Z"}, {"uuid": "9854362a-6707-49e0-ac3f-4bd987d7f77f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49276", "type": "seen", "source": "https://t.me/cvedetector/8249", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49276 - Themis Solutions, Inc. Clio Grow Reflected Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49276 \nPublished : Oct. 17, 2024, 8:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themis Solutions, Inc. Clio Grow allows Reflected XSS.This issue affects Clio Grow: from n/a through 1.0.2. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T23:20:46.000000Z"}, {"uuid": "45145397-dcf6-450f-9af2-ffa1fcc1a526", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49278", "type": "seen", "source": "https://t.me/cvedetector/8247", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49278 - Omnipress Stored Cross-site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49278 \nPublished : Oct. 17, 2024, 8:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in omnipressteam Omnipress allows Stored XSS.This issue affects Omnipress: from n/a through 1.4.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T23:20:45.000000Z"}, {"uuid": "97175284-7969-455d-a069-8d89b8a15226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49279", "type": "seen", "source": "https://t.me/cvedetector/8245", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49279 - TipTopPress Hyperlink Group Block Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-49279 \nPublished : Oct. 17, 2024, 8:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TipTopPress Hyperlink Group Block allows Stored XSS.This issue affects Hyperlink Group Block: from n/a through 1.17.5. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T23:20:43.000000Z"}, {"uuid": "eef9cadb-265f-4aa3-98d4-cf6f4d91b607", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49273", "type": "seen", "source": "https://t.me/cvedetector/8461", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49273 - ProfileGrid ProfileGrid Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49273 \nPublished : Oct. 21, 2024, 12:15 p.m. | 41\u00a0minutes ago \nDescription : Missing Authorization vulnerability in ProfileGrid User Profiles ProfileGrid.This issue affects ProfileGrid: from n/a through 5.9.3. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-21T15:09:44.000000Z"}, {"uuid": "926b7597-f250-4e87-9839-9f495e32f4c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49275", "type": "seen", "source": "https://t.me/cvedetector/8433", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49275 - Martin Gibson IdeaPush CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49275 \nPublished : Oct. 20, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson IdeaPush allows Cross Site Request Forgery.This issue affects IdeaPush: from n/a through 8.69. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T14:05:08.000000Z"}, {"uuid": "6456a2d6-e06e-43ba-824a-b2fa99c7d5d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49274", "type": "seen", "source": "https://t.me/cvedetector/8440", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49274 - Infomaniak Staff VOD CSRF\", \n  \"Content\": \"CVE ID : CVE-2024-49274 \nPublished : Oct. 20, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in Infomaniak Staff VOD Infomaniak allows Cross Site Request Forgery.This issue affects VOD Infomaniak: from n/a through 1.5.7. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T14:05:16.000000Z"}, {"uuid": "4da6c4b6-46d3-42dc-b1db-f4bf0bfeeeb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49272", "type": "seen", "source": "https://t.me/cvedetector/8439", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49272 - WPWeb Social Auto Poster CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49272 \nPublished : Oct. 20, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T14:05:15.000000Z"}, {"uuid": "bc21f578-89a0-44d5-9dd8-e15f763e9b4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49277", "type": "seen", "source": "https://t.me/cvedetector/8246", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49277 - UltraAddons Elementor Lite Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49277 \nPublished : Oct. 17, 2024, 8:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CodeAstrology Team UltraAddons Elementor Lite allows Stored XSS.This issue affects UltraAddons Elementor Lite: from n/a through 1.1.8. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T23:20:44.000000Z"}, {"uuid": "f8f31071-7060-4642-bbc4-bc1119881377", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49270", "type": "seen", "source": "https://t.me/cvedetector/8066", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49270 - HashThemes Smart Blocks Stored Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49270 \nPublished : Oct. 16, 2024, 2:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HashThemes Smart Blocks allows Stored XSS.This issue affects Smart Blocks: from n/a through 2.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T17:13:14.000000Z"}, {"uuid": "fc585280-f2f6-4ca4-af44-c0e247a86e9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49271", "type": "seen", "source": "https://t.me/cvedetector/8055", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49271 - \"Unlimited Elements For Elementor Command Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-49271 \nPublished : Oct. 16, 2024, 1:15 p.m. | 39\u00a0minutes ago \nDescription : : Improper Neutralization of Special Elements Used in a Template Engine vulnerability in Unlimited Elements Unlimited Elements For Elementor (Free Widgets, Addons, Templates) allows : Command Injection.This issue affects Unlimited Elements For Elementor (Free Widgets, Addons, Templates): from n/a through 1.5.121. \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T16:22:51.000000Z"}]}