{"vulnerability": "cve-2024-4969", "sightings": [{"uuid": "85d34497-4beb-45d7-bb68-f46ef154f943", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49698", "type": "seen", "source": "https://t.me/cvedetector/14034", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49698 - PriceListo Best Restaurant Menu Missing Authorization\", \n  \"Content\": \"CVE ID : CVE-2024-49698 \nPublished : Dec. 31, 2024, 2:15 p.m. | 39\u00a0minutes ago \nDescription : Missing Authorization vulnerability in PriceListo Best Restaurant Menu by PriceListo.This issue affects Best Restaurant Menu by PriceListo: from n/a through 1.4.2. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-31T16:13:33.000000Z"}, {"uuid": "2a99a915-23a1-40b0-b68b-8bcf6622c93a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49692", "type": "seen", "source": "https://t.me/cvedetector/9279", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49692 - AffiliateX Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-49692 \nPublished : Oct. 29, 2024, 11:15 a.m. | 41\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in AffiliateX allows Stored XSS.This issue affects AffiliateX: from n/a through 1.2.9. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:05:41.000000Z"}, {"uuid": "872ac3d4-cf57-4b3a-b35d-ab2fc1c44c9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49696", "type": "seen", "source": "https://t.me/cvedetector/8799", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49696 - RoboSoft Robo Gallery Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-49696 \nPublished : Oct. 24, 2024, 1:15 p.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in RoboSoft Robo Gallery allows Stored XSS.This issue affects Robo Gallery: from n/a through 3.2.21. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-24T15:58:56.000000Z"}, {"uuid": "697a704a-0104-43b5-a7c6-24d67a07e19d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49690", "type": "seen", "source": "https://t.me/cvedetector/8711", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49690 - Qode Interactive Qi Blocks PHP RFI Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49690 \nPublished : Oct. 23, 2024, 4:15 p.m. | 43\u00a0minutes ago \nDescription : Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Qode Interactive Qi Blocks.This issue affects Qi Blocks: from n/a through 1.3.2. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-23T19:03:52.000000Z"}, {"uuid": "ca26d809-a83c-4bd6-b7e4-1f9333d5501a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lgebaz3an42c", "content": "", "creation_timestamp": "2025-01-22T21:02:00.871368Z"}, {"uuid": "dbe8427b-110a-4b35-9d5f-4aec552b9457", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49694", "type": "seen", "source": "https://t.me/cvedetector/14032", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49694 - Imw3 My Wp Brand Hide Menu & Hide Plugin Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49694 \nPublished : Dec. 31, 2024, 2:15 p.m. | 39\u00a0minutes ago \nDescription : Missing Authorization vulnerability in imw3 My Wp Brand \u2013 Hide menu & Hide Plugin.This issue affects My Wp Brand \u2013 Hide menu & Hide Plugin: from n/a through 1.1.2. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-31T16:13:29.000000Z"}, {"uuid": "61d85537-f8a1-4191-bddb-07a643265351", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2399", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49699\n\ud83d\udd39 Description: Deserialization of Untrusted Data vulnerability in NotFound ARPrice allows Object Injection. This issue affects ARPrice: from n/a through 4.0.3.\n\ud83d\udccf Published: 2025-01-21T13:40:33.266Z\n\ud83d\udccf Modified: 2025-01-21T13:40:33.266Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/arprice/vulnerability/wordpress-arprice-plugin-4-0-3-php-object-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-21T14:01:50.000000Z"}, {"uuid": "16effd28-71f6-4c32-a6bd-48c5fac9e424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49695", "type": "seen", "source": "https://t.me/cvedetector/8798", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49695 - Spiffy Plugins WP Flow Plus Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49695 \nPublished : Oct. 24, 2024, 1:15 p.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Spiffy Plugins WP Flow Plus allows Stored XSS.This issue affects WP Flow Plus: from n/a through 5.2.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-24T15:58:55.000000Z"}, {"uuid": "8fe1fe7c-7562-4ee9-a676-97705e4ee524", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49693", "type": "seen", "source": "https://t.me/cvedetector/8797", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49693 - Kraftplugins Mega Elements Stored Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49693 \nPublished : Oct. 24, 2024, 1:15 p.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kraftplugins Mega Elements allows Stored XSS.This issue affects Mega Elements: from n/a through 1.2.6. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-24T15:58:54.000000Z"}, {"uuid": "ed8f2c27-f407-4750-abdb-478a2ade80e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49691", "type": "seen", "source": "https://t.me/cvedetector/8794", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49691 - Woobewoo Product Filter SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-49691 \nPublished : Oct. 24, 2024, 12:15 p.m. | 39\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Woobewoo Product Filter by WBW allows SQL Injection.This issue affects Product Filter by WBW: from n/a through 2.7.0. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-24T15:08:46.000000Z"}, {"uuid": "6e1f97e3-0b27-43a9-a3ed-1c17b8b392f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49697", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113510596114307248", "content": "", "creation_timestamp": "2024-11-19T16:37:23.448534Z"}, {"uuid": "97317bea-dc8f-4930-91e1-458a423c2177", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49698", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113747773210439306", "content": "", "creation_timestamp": "2024-12-31T13:54:38.450627Z"}, {"uuid": "a582ebb9-d6ef-47d7-b0f5-1ff2d32316f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49694", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lemacfll2k25", "content": "", "creation_timestamp": "2024-12-31T14:15:47.658291Z"}, {"uuid": "f9064107-3525-4da8-8530-2752c775f8c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49698", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lemaciduyh2f", "content": "", "creation_timestamp": "2024-12-31T14:15:50.469129Z"}, {"uuid": "bbc54822-9f2b-49ac-abfc-8a7a9d4fea24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "seen", "source": "https://infosec.exchange/users/random_robbie/statuses/113826791154115377", "content": "", "creation_timestamp": "2025-01-14T12:49:56.666241Z"}, {"uuid": "6a46b22d-8ba6-499c-9498-8427b07087e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113866702059518211", "content": "", "creation_timestamp": "2025-01-21T13:59:48.505963Z"}, {"uuid": "aa751281-a162-4f29-b453-b02473f42dcf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgb247sn2j2h", "content": "", "creation_timestamp": "2025-01-21T14:16:03.955445Z"}, {"uuid": "6fdc2e1e-a497-45d4-90ee-f7fb5622a1cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgb3gaaluf2b", "content": "", "creation_timestamp": "2025-01-21T14:39:39.121578Z"}, {"uuid": "1a11f2fa-a2a8-44d8-9a40-8af04b3cfb91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-49699", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113866894247536039", "content": "", "creation_timestamp": "2025-01-21T14:48:46.114292Z"}]}