{"uuid": "59559a92-be51-4fdc-9c46-b5cd0b76535c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10674", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/14582", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udcc5 Date: 2025-03-14 03:37:25\n\ud83d\udea8 Title: Alleged disclosure of WordPress Th Shop Mania Theme 1.4.9 Missing Authorization Exploit\n\ud83d\udee1\ufe0f Victim Country: \n\ud83c\udfed Victim Industry: \n\ud83c\udfe2 Victim Organization: \n\ud83c\udf10 Victim Site: \n\ud83d\udcdc Category: Vulnerability\n\ud83d\udd75\ufe0f\u200d\u2642\ufe0f Threat Actor: Nxploited\n\ud83c\udf0d Network: openweb\n\ud83d\udd17 Claim: https://0day.today/exploit/description/39944\n\ud83d\udcdd Description: The threat actor claims to have revealed an exploit for the WordPress Th Shop Mania Theme version 1.4.9. The vulnerability stems from missing authorization controls, posing a medium security risk to PHP-based web applications. The exploit is associated with CVE-2024-10674.\n\n\u26a0\ufe0f Stay ahead of cyber threats! Subscribe to the Paid Threat Feed at https://t.me/DarkWebInformer_Bot for real-time updates (Website excluded). Want to pay via crypto? Visit https://darkwebinformer.com/crypto-payments.", "creation_timestamp": "2025-03-14T04:37:28.000000Z"}