{"vulnerability": "CVE-2022-24342", "sightings": [{"uuid": "919028cb-227d-4751-8433-5f5fce92fd39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "published-proof-of-concept", "source": "https://t.me/reconshell/1315", "content": "CVE-2022-24342 account takeover via CSRF\n\n#CVE-2022-24342 #vulnerability #GitHub #CSRF #Exploit\n#CyberSecurity #BugBountry #Hacking #OSINT #Pentest\n\nhttps://reconshell.com/cve-2022-24342-account-takeover-via-csrf/", "creation_timestamp": "2022-07-04T20:48:01.000000Z"}, {"uuid": "830e5410-697f-4a0d-822b-2d910aecbb05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "published-proof-of-concept", "source": "Telegram/fdGFZ2gHKmG2voL4zAoI2grAco9RuTEEk8kCLVh8z6GA7A", "content": "", "creation_timestamp": "2022-07-04T16:35:34.000000Z"}, {"uuid": "db848cc5-2654-4f2f-b461-4ce34c1ffb7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "seen", "source": "https://t.me/crackcodes/796", "content": "Today's Update\n1. nday exploit: netgear orbi unauthenticated command injection (CVE-2020-27861)\n2. Collection of Exploits, CVES(Unauthenticated) and Wordpress Scanners\n3. CVE-2022-24706 exploit\n4. Androguard Tool - Reverse engineering and pentesting of Android applications.\n5. Amsi-Bypass-Powershell Scripts\n6. Bug-Bounty-Tips\n7. nacs - Event-driven pentest scanner\n8. Malaysia locatefamily Data leak\n9. Jaeles \u2013 The Swiss Army knife for automated Web Application Testing\n10. D(COM) V(ulnerability) S(canner) AKA Devious swiss army knife \u2013 Lateral movement using DCOM Objects\n11. Pak Military Garments Company Data dump Video\n12. CVE-2022-24342 - JetBrains TeamCity \u2013 account takeover via CSRF in GitHub authentication (PoC)\n\nLink:- https://forum.hackbyte.org", "creation_timestamp": "2022-07-05T14:02:24.000000Z"}, {"uuid": "16e3607f-e435-4af7-ab85-ee9d50f609fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2627", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aPoC for CVE-2022-24342: account takeover via CSRF in GitHub authentication\nURL\uff1ahttps://github.com/yuriisanin/CVE-2022-24342\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-07-02T22:47:20.000000Z"}, {"uuid": "10f84c3a-5be0-407e-b48a-310fd6fec6af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "seen", "source": "Telegram/k8m3X8YhQhkrr48KHoFrxNHe2bYjefr1euD_m-0TzPewCA", "content": "", "creation_timestamp": "2022-07-05T06:24:51.000000Z"}, {"uuid": "743e9cea-0e37-4785-9b59-92c9ba299006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/903", "content": "CVE-2022-24342\nJetBrains TeamCity - account takeover via CSRF in GitHub authentication (PoC exploit)\n\u0421\u043c\u043e\u0442\u0440\u0435\u0442\u044c \u043d\u0435\u043c\u043e\u0435 \u043a\u0438\u043d\u043e \u0442\u0443\u0442\n\n#cve #poc", "creation_timestamp": "2022-07-04T10:35:33.000000Z"}, {"uuid": "d5dd1eba-ca76-4b9a-8c67-1f262e819dda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2198", "content": "#CVE-2022\n\nPoC for CVE-2022-24342: account takeover via CSRF in GitHub authentication\n\nhttps://github.com/yuriisanin/CVE-2022-24342\n\n@BlueRedTeam", "creation_timestamp": "2022-07-03T06:33:56.000000Z"}, {"uuid": "5163e7fc-bbe3-4c57-ad8e-2cf5068acdd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-24342", "type": "seen", "source": "https://t.me/cibsecurity/38108", "content": "\u203c CVE-2022-24342 \u203c\n\nIn JetBrains TeamCity before 2021.2.1, URL injection leading to CSRF was possible.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-25T18:21:20.000000Z"}]}