{"vulnerability": "cve-2024-4930", "sightings": [{"uuid": "79e1f9cc-b874-449c-84ca-d299be6db9e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49306", "type": "seen", "source": "https://t.me/cvedetector/8435", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49306 - WordPress WP Content Copy Protection & No Right Click CSRF\", \n  \"Content\": \"CVE ID : CVE-2024-49306 \nPublished : Oct. 20, 2024, 11:15 a.m. | 44\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in WP-buy WP Content Copy Protection & No Right Click allows Cross Site Request Forgery.This issue affects WP Content Copy Protection & No Right Click: from n/a through 3.5.9. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-20T14:05:09.000000Z"}, {"uuid": "84aef0c3-e331-4f5b-a6e7-b1981a3ce063", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49302", "type": "seen", "source": "https://t.me/cvedetector/8233", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49302 - Portfoliohub WordPress Portfolio Builder - Portfolio Gallery Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49302 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Portfoliohub WordPress Portfolio Builder \u2013 Portfolio Gallery allows Stored XSS.This issue affects WordPress Portfolio Builder \u2013 Portfolio Gallery: from n/a through 1.1.7. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:24.000000Z"}, {"uuid": "92c171a6-a553-46a6-869d-77211343f4b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49301", "type": "seen", "source": "https://t.me/cvedetector/8232", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49301 - Sinan Yorulmaz G Meta Keywords Stored Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49301 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Sinan Yorulmaz G Meta Keywords allows Stored XSS.This issue affects G Meta Keywords: from n/a through 1.4. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:23.000000Z"}, {"uuid": "5cbb78c8-6372-40c8-ad1b-354e910ab702", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49309", "type": "seen", "source": "https://t.me/cvedetector/8227", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49309 - Digitally Web Page Generation XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49309 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Digitally allows Reflected XSS.This issue affects Digitally: from n/a through 1.0.8. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:17.000000Z"}, {"uuid": "ad8ce4d3-9f5b-49a3-ae55-c54644e46103", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49308", "type": "seen", "source": "https://t.me/cvedetector/8226", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49308 - Toast Plugins Animator Reflected Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-49308 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Toast Plugins Animator allows Reflected XSS.This issue affects Animator: from n/a through 3.0.11. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:13.000000Z"}, {"uuid": "c88fe162-0f78-4c9e-8fe7-fdde6d37dc67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49307", "type": "seen", "source": "https://t.me/cvedetector/8225", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49307 - Oliver Schl\u00f6be Admin Management Xtended Stored Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49307 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Oliver Schl\u00f6be Admin Management Xtended allows Stored XSS.This issue affects Admin Management Xtended: from n/a through 2.4.6. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:12.000000Z"}, {"uuid": "3640d7b4-a07e-4c01-acb6-d53ba4547074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49305", "type": "seen", "source": "https://t.me/cvedetector/8213", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49305 - WPFactory Email Verification for WooCommerce SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-49305 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFactory Email Verification for WooCommerce allows SQL Injection.This issue affects Email Verification for WooCommerce: from n/a through 2.8.10. \nSeverity: 9.3 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:49.000000Z"}, {"uuid": "426bd03b-0938-4762-9152-c46d5f1c06b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49304", "type": "seen", "source": "https://t.me/cvedetector/8212", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49304 - Pinpoint.World Pinpoint Booking System CSRF Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49304 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in PINPOINT.WORLD Pinpoint Booking System allows Stored XSS.This issue affects Pinpoint Booking System: from n/a through 2.9.9.5.1. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:48.000000Z"}, {"uuid": "7de6e54c-2c64-4451-a290-e7356f776566", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-49306", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mikr7nn3bn23", "content": "", "creation_timestamp": "2026-04-03T03:20:09.265677Z"}, {"uuid": "dbc15ba3-e52b-4dbd-87cd-eafeae163f6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49300", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2405", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49300\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows Reflected XSS. This issue affects Hero Mega Menu - Responsive WordPress Menu Plugin: from n/a through 1.16.5.\n\ud83d\udccf Published: 2025-01-21T13:40:32.331Z\n\ud83d\udccf Modified: 2025-01-21T13:40:32.331Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/hmenu/vulnerability/wordpress-hero-menu-plugin-1-16-5-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-21T14:01:58.000000Z"}, {"uuid": "604e751f-92e9-485f-bedf-340cdefb343f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49303", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2404", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49303\n\ud83d\udd39 Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Hero Mega Menu - Responsive WordPress Menu Plugin allows SQL Injection. This issue affects Hero Mega Menu - Responsive WordPress Menu Plugin: from n/a through 1.16.5.\n\ud83d\udccf Published: 2025-01-21T13:40:32.562Z\n\ud83d\udccf Modified: 2025-01-21T13:40:32.562Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/hmenu/vulnerability/wordpress-hero-menu-plugin-1-16-5-sql-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-21T14:01:57.000000Z"}, {"uuid": "eb6e8edb-f2d5-4341-80ab-ded5f391083a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49300", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113866642964102025", "content": "", "creation_timestamp": "2025-01-21T13:44:49.008126Z"}, {"uuid": "d83725d4-439e-4199-a817-9d51626b6a80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49303", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113866642978999471", "content": "", "creation_timestamp": "2025-01-21T13:44:49.312099Z"}, {"uuid": "c2933915-c08a-480c-8252-f370ef6ec06f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49300", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgb23pexe32w", "content": "", "creation_timestamp": "2025-01-21T14:15:47.009640Z"}, {"uuid": "3a0a4ede-f0fe-4045-8871-62011887e695", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49303", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgb23senjr2f", "content": "", "creation_timestamp": "2025-01-21T14:15:49.958889Z"}, {"uuid": "5677f413-9847-4a6b-865e-e10a95884da9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49303", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgb3g7mtmn2q", "content": "", "creation_timestamp": "2025-01-21T14:39:36.143320Z"}, {"uuid": "d239fe54-1409-45aa-8d91-3cf5d4c9e5b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49303", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113866893905606593", "content": "", "creation_timestamp": "2025-01-21T14:48:42.219854Z"}]}