{"vulnerability": "cve-2024-4931", "sightings": [{"uuid": "d2f991c1-71cc-4994-8c30-3b5c64dab701", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49312", "type": "seen", "source": "Telegram/8xXxmAqeXGYAHwwa5zKS875FG_5xi65vRtBsw06Xrds_E-Fa", "content": "", "creation_timestamp": "2025-02-14T10:03:12.000000Z"}, {"uuid": "f8bc08c9-7d43-4bae-9c5c-0fbd35f1e343", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49311", "type": "seen", "source": "https://t.me/cvedetector/8229", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49311 - WisdmLabs Edwiser Bridge Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49311 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WisdmLabs Edwiser Bridge allows Stored XSS.This issue affects Edwiser Bridge: from n/a through 3.0.7. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:18.000000Z"}, {"uuid": "856f1638-daac-438d-84a5-ea558aada0c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49310", "type": "seen", "source": "https://t.me/cvedetector/8228", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49310 - Themesflat Elementor Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49310 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themesflat Themesflat Addons For Elementor allows Stored XSS.This issue affects Themesflat Addons For Elementor: from n/a through 2.2.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:17.000000Z"}, {"uuid": "69864c45-4670-42c1-9abe-933959503f1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49319", "type": "seen", "source": "https://t.me/cvedetector/8223", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49319 - Elementor Awesome Contact Form7 Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49319 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in B.M. Rafiul Alam Awesome Contact Form7 for Elementor allows Stored XSS.This issue affects Awesome Contact Form7 for Elementor: from n/a through 3.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:10.000000Z"}, {"uuid": "9be08509-a9c0-4858-adda-3540cdd187d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49316", "type": "seen", "source": "https://t.me/cvedetector/8222", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49316 - Zodiac Akismet htaccess Writer Reflected XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49316 \nPublished : Oct. 17, 2024, 7:15 p.m. | 16\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in zodiac Akismet htaccess writer allows Reflected XSS.This issue affects Akismet htaccess writer: from n/a through 1.0.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T21:40:10.000000Z"}, {"uuid": "c712f90b-08f2-4516-ae48-099eb310ae85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49317", "type": "seen", "source": "https://t.me/cvedetector/8208", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49317 - ZIPANG Point Maker PHP Remote File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49317 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ZIPANG Point Maker allows PHP Local File Inclusion.This issue affects Point Maker: from n/a through 0.1.4. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:42.000000Z"}, {"uuid": "e374e551-e7e6-4fbe-9a29-79b0c66b98ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49314", "type": "seen", "source": "https://t.me/cvedetector/8207", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49314 - JiangQie Free Mini Program RCE\", \n  \"Content\": \"CVE ID : CVE-2024-49314 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Unrestricted Upload of File with Dangerous Type vulnerability in \u9171\u8304 JiangQie Free Mini Program allows Upload a Web Shell to a Web Server.This issue affects JiangQie Free Mini Program: from n/a through 2.5.2. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:41.000000Z"}, {"uuid": "2d4ee758-3a44-4361-863e-3b3aa1a0c4ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49313", "type": "seen", "source": "https://t.me/cvedetector/8206", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49313 - VKontakte Wall Post CSRF Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49313 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in RudeStan VKontakte Wall Post allows Stored XSS.This issue affects VKontakte Wall Post: from n/a through 2.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:37.000000Z"}, {"uuid": "f0003167-6d34-4abe-9fdc-ffc49dfa9aa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49312", "type": "seen", "source": "https://t.me/cvedetector/8205", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49312 - Edwiser Bridge SSRF\", \n  \"Content\": \"CVE ID : CVE-2024-49312 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Server-Side Request Forgery (SSRF) vulnerability in WisdmLabs Edwiser Bridge.This issue affects Edwiser Bridge: from n/a through 3.0.7. \nSeverity: 4.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:36.000000Z"}, {"uuid": "518b197e-7f98-4489-a38e-ea9b263b840a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49318", "type": "seen", "source": "https://t.me/cvedetector/8202", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49318 - My Reading Library Object Injection Remote Code Execution (RCE)\", \n  \"Content\": \"CVE ID : CVE-2024-49318 \nPublished : Oct. 17, 2024, 6:15 p.m. | 26\u00a0minutes ago \nDescription : Deserialization of Untrusted Data vulnerability in Scott Olson My Reading Library allows Object Injection.This issue affects My Reading Library: from n/a through 1.0. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T20:49:34.000000Z"}, {"uuid": "ef239eb0-cc4a-49e4-af94-a7f08b35154e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49315", "type": "seen", "source": "https://t.me/cvedetector/8185", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49315 - CodeFlock FREE DOWNLOAD MANAGER Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49315 \nPublished : Oct. 17, 2024, 2:15 p.m. | 21\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in CodeFlock FREE DOWNLOAD MANAGER allows Path Traversal.This issue affects FREE DOWNLOAD MANAGER: from n/a through 1.0.0. \nSeverity: 8.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-17T16:38:45.000000Z"}, {"uuid": "54723358-dc6c-4c5a-9e6b-28f79c4fc361", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49311", "type": "seen", "source": "Telegram/oBlVsqXAL8EGbtisIFjIQX8Dh7O1okayu5AcHl0j9eDCo_GH", "content": "", "creation_timestamp": "2025-02-14T10:03:16.000000Z"}, {"uuid": "38610781-13c0-4525-9f08-9da33a1e1ceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2024-49312", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3milgh5yiq32i", "content": "", "creation_timestamp": "2026-04-03T09:40:09.558493Z"}]}