{"vulnerability": "CVE-2024-1318", "sightings": [{"uuid": "2e9f5b67-6e8c-4303-96e3-449e405401c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13185", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf7yqhpvvx2y", "content": "", "creation_timestamp": "2025-01-08T10:53:44.562149Z"}, {"uuid": "c08fab90-3fb4-401e-bed8-3000aeb5a2b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13186", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf7yqhtdfl2k", "content": "", "creation_timestamp": "2025-01-08T10:53:45.016992Z"}, {"uuid": "203d978b-ee78-433e-8e67-09817a07361c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13188", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113794305532924069", "content": "", "creation_timestamp": "2025-01-08T19:08:25.097061Z"}, {"uuid": "e4582c18-567d-4650-bda2-0c5ce88b977d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13188", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfausg2ere2i", "content": "", "creation_timestamp": "2025-01-08T19:15:54.526512Z"}, {"uuid": "46cb0d33-0096-4cc4-a473-842050a883df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13183", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfeqtsbe232l", "content": "", "creation_timestamp": "2025-01-10T08:15:45.177927Z"}, {"uuid": "50ef622c-bf44-45ed-83e4-f5382e877736", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13188", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfawmb5ceu2b", "content": "", "creation_timestamp": "2025-01-08T19:48:17.488641Z"}, {"uuid": "f115a438-c98e-471c-ae87-209ba26cfce8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13180", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpquypfex2f", "content": "", "creation_timestamp": "2025-01-14T17:15:42.457305Z"}, {"uuid": "de7cf512-d3dd-4b4b-838f-76de229e06af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13181", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpqv32avd2c", "content": "", "creation_timestamp": "2025-01-14T17:15:44.761040Z"}, {"uuid": "28c81265-2261-48b4-b10b-27ddda705e8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13189", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113794546486780376", "content": "", "creation_timestamp": "2025-01-08T20:09:41.839933Z"}, {"uuid": "88f83dbc-54fc-480d-9914-ac0166ec5c1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13189", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfay5jjjzd2l", "content": "", "creation_timestamp": "2025-01-08T20:15:48.832362Z"}, {"uuid": "cfabc5e7-ed4a-4fdc-b609-9d9325aa9e36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13187", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfao3ahscq2a", "content": "", "creation_timestamp": "2025-01-08T17:15:34.735355Z"}, {"uuid": "3c27287b-bdec-4224-a547-43b89ceb6ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13183", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113802868244933842", "content": "", "creation_timestamp": "2025-01-10T07:26:02.320595Z"}, {"uuid": "10f61eda-1130-44b3-ad68-d9327a9fe439", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13187", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfapmiwglj2e", "content": "", "creation_timestamp": "2025-01-08T17:43:07.644007Z"}, {"uuid": "43c21aa4-0e61-40dd-b7ea-1ccbfcd3b517", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13185", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113791814039822284", "content": "", "creation_timestamp": "2025-01-08T08:34:48.029732Z"}, {"uuid": "04e5adfd-3e10-4fde-b4af-7fbcbbb5dc77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13185", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf7tb2yef62l", "content": "", "creation_timestamp": "2025-01-08T09:15:39.108962Z"}, {"uuid": "485cecaf-4e8d-4218-9d21-754a9347dc67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13186", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf7tb5gkb225", "content": "", "creation_timestamp": "2025-01-08T09:15:41.800739Z"}, {"uuid": "1ca0874f-5482-47e4-87e5-651bd1dd666e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13184", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113848420088684532", "content": "", "creation_timestamp": "2025-01-18T08:30:27.938865Z"}, {"uuid": "5a06cea0-9132-4ddd-a68d-351122080d9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13184", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfyxvtolfd2s", "content": "", "creation_timestamp": "2025-01-18T09:15:25.079787Z"}, {"uuid": "ef7f32ea-10e9-41d5-94e2-04cea607a276", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13184", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfyzap5igp2e", "content": "", "creation_timestamp": "2025-01-18T09:39:22.627063Z"}, {"uuid": "a7a667b7-66c3-4b02-a4c5-50c3bca83cce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13180", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-043/", "content": "", "creation_timestamp": "2025-01-19T05:00:00.000000Z"}, {"uuid": "54420ed3-c7c4-4efa-885f-07a348f7c149", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13181", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-042/", "content": "", "creation_timestamp": "2025-01-19T05:00:00.000000Z"}, {"uuid": "de930700-68b5-49b8-894a-f74c48d2f82e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113996684417836846", "content": "", "creation_timestamp": "2025-02-13T12:56:01.871533Z"}, {"uuid": "44ec2dfb-f494-4056-af2d-0fa07346d3cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3li2rgvq6iq2a", "content": "", "creation_timestamp": "2025-02-13T13:15:23.653106Z"}, {"uuid": "de223c43-899f-4456-ba59-5db67add2ccc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3li2vum5ltd2c", "content": "", "creation_timestamp": "2025-02-13T14:34:39.675667Z"}, {"uuid": "9d223449-009e-4b8b-9d9c-63a5a03e5920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113997126008630427", "content": "", "creation_timestamp": "2025-02-13T14:48:20.765615Z"}, {"uuid": "6e68f451-d143-477b-95f5-128cb4e9cd40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3li37pumprh2e", "content": "", "creation_timestamp": "2025-02-13T17:30:58.881406Z"}, {"uuid": "d7782e68-a8b4-455b-8d8c-caa08402a44e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3li3vieyht32o", "content": "", "creation_timestamp": "2025-02-14T00:00:30.035925Z"}, {"uuid": "2b390e1b-cd85-479d-90f8-7d8bc71db626", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13184", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lzyvtqvnpx2q", "content": "", "creation_timestamp": "2025-09-29T21:02:20.635425Z"}, {"uuid": "b15845e1-1ed0-449b-9709-f3b6d46279b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3li55pgnyti2r", "content": "", "creation_timestamp": "2025-02-14T12:00:14.292741Z"}, {"uuid": "ddba9055-8440-43e4-9ecd-2086bb7cd310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "MISP/db121278-a8f5-4f36-a226-e45f3a86f55e", "content": "", "creation_timestamp": "2025-08-26T13:26:34.000000Z"}, {"uuid": "98b179d4-9279-4072-9f78-3c38d7623d26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13186", "type": "seen", "source": "https://t.me/cvedetector/14672", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13186 - Apache MinigameCenter Information Leak\", \n  \"Content\": \"CVE ID : CVE-2024-13186 \nPublished : Jan. 8, 2025, 9:15 a.m. | 30\u00a0minutes ago \nDescription : The MinigameCenter  module has insufficient restrictions on loading URLs, which may lead to some information leakage. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T10:47:48.000000Z"}, {"uuid": "2a25fe21-a244-4e30-9681-8c1a82ef7ba0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13187", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/841", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13187\n\ud83d\udd39 Description: A vulnerability was found in Kingsoft WPS Office 6.14.0 on macOS. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component TCC Handler. The manipulation leads to code injection. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-01-08T16:31:04.785Z\n\ud83d\udccf Modified: 2025-01-08T20:38:46.481Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.290779\n2. https://vuldb.com/?ctiid.290779\n3. https://vuldb.com/?submit.468013\n4. https://github.com/Rsec-1/wps", "creation_timestamp": "2025-01-08T21:14:08.000000Z"}, {"uuid": "41967857-a43a-4388-98ad-3a11d30b8ac2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13185", "type": "seen", "source": "https://t.me/cvedetector/14671", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13185 - Apache MinigameCenter Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-13185 \nPublished : Jan. 8, 2025, 9:15 a.m. | 30\u00a0minutes ago \nDescription : The MinigameCenter  module has insufficient restrictions on loading URLs, which may lead to some information leakage. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T10:47:47.000000Z"}, {"uuid": "abe14d69-a816-45dc-931f-d21cf3ed6a46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13185", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/686", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13185\n\ud83d\udd39 Description: The MinigameCenter  module has insufficient restrictions on loading URLs, which may lead to some information leakage.\n\ud83d\udccf Published: 2025-01-08T08:08:12.559Z\n\ud83d\udccf Modified: 2025-01-08T08:08:12.559Z\n\ud83d\udd17 References:\n1. https://www.vivo.com/en/support/security-advisory-detail?id=15", "creation_timestamp": "2025-01-08T09:13:10.000000Z"}, {"uuid": "d1e5f9fe-4bb9-4277-973d-fee00c3aae27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13186", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/680", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13186\n\ud83d\udd39 Description: The MinigameCenter  module has insufficient restrictions on loading URLs, which may lead to some information leakage.\n\ud83d\udccf Published: 2025-01-08T08:28:21.455Z\n\ud83d\udccf Modified: 2025-01-08T08:28:21.455Z\n\ud83d\udd17 References:\n1. https://www.vivo.com/en/support/security-advisory-detail?id=16", "creation_timestamp": "2025-01-08T09:12:31.000000Z"}, {"uuid": "b94a5fa8-0733-4507-a30d-a456fadc75cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13183", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1119", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13183\n\ud83d\udd39 Description: The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018title_tag\u2019 parameter in all versions up to, and including, 2.10.43 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\ud83d\udccf Published: 2025-01-10T07:21:46.542Z\n\ud83d\udccf Modified: 2025-01-10T07:21:46.542Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/d0f6be2b-5eb6-4828-ae95-7f2253700ee9?source=cve\n2. https://wordpress.org/plugins/themeisle-companion/#developers\n3. https://plugins.trac.wordpress.org/browser/themeisle-companion/trunk/obfx_modules/elementor-extra-widgets/widgets/elementor/pricing-table.php#L118\n4. https://plugins.trac.wordpress.org/changeset/3219568/\n5. https://github.com/Codeinwp/themeisle-companion/commit/47a17c86934cebbfc3f1a812f1afcaa20515c1f7", "creation_timestamp": "2025-01-10T08:15:40.000000Z"}, {"uuid": "c495b5fb-b850-4aae-b352-61327c855a37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13188", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/782", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13188\n\ud83d\udd39 Description: A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as critical. Affected by this issue is some unknown functionality of the file /opt/MicroWorld/var/ of the component Installation Handler. The manipulation leads to incorrect default permissions. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2025-01-08T19:00:14.454Z\n\ud83d\udccf Modified: 2025-01-08T19:00:14.454Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.290780\n2. https://vuldb.com/?ctiid.290780\n3. https://vuldb.com/?submit.468796\n4. https://github.com/hawkteam404/RnD_Public/blob/main/escan_incorrect_default_perm.md", "creation_timestamp": "2025-01-08T19:14:12.000000Z"}, {"uuid": "a662ecda-320c-400a-91a6-af9701e90064", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13189", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/813", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13189\n\ud83d\udd39 Description: A vulnerability classified as critical has been found in ZeroWdd myblog 1.0. This affects an unknown part of the file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java. The manipulation leads to permission issues. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-01-08T20:00:09.819Z\n\ud83d\udccf Modified: 2025-01-08T20:00:09.819Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.290781\n2. https://vuldb.com/?ctiid.290781\n3. https://vuldb.com/?submit.469223\n4. https://github.com/ZeroWdd/myblog/issues/1\n5. https://github.com/ZeroWdd/myblog/issues/1#issue-2759828006", "creation_timestamp": "2025-01-08T20:13:57.000000Z"}, {"uuid": "687b6b9b-4052-4077-bbb6-eaea996b5e8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13181", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1529", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13181\n\ud83d\udd39 Description: Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication. This CVE addresses incomplete fixes from CVE-2024-47010.\n\ud83d\udccf Published: 2025-01-14T16:53:36.325Z\n\ud83d\udccf Modified: 2025-01-14T16:53:36.325Z\n\ud83d\udd17 References:\n1. https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-7-Multiple-CVEs", "creation_timestamp": "2025-01-14T17:21:04.000000Z"}, {"uuid": "c8e5c2d8-bdb1-499c-8d92-fd83353e9fdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13180", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1532", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13180\n\ud83d\udd39 Description: Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to leak sensitive information. This CVE addresses incomplete fixes from CVE-2024-47011.\n\ud83d\udccf Published: 2025-01-14T16:52:41.501Z\n\ud83d\udccf Modified: 2025-01-14T16:52:41.501Z\n\ud83d\udd17 References:\n1. https://forums.ivanti.com/s/article/Security-Advisory-Ivanti-Avalanche-6-4-7-Multiple-CVEs", "creation_timestamp": "2025-01-14T17:21:13.000000Z"}, {"uuid": "5a097d17-d8b9-4c4a-a755-a8866651bd96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13184", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2292", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13184\n\ud83d\udd39 Description: The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordPress is vulnerable to time-based SQL Injection via the Login Attempts module in all versions up to, and including, 3.0.12 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.\n\ud83d\udccf Published: 2025-01-18T08:26:39.182Z\n\ud83d\udccf Modified: 2025-01-18T08:26:39.182Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/abab29c7-88a9-4c6f-9691-ed9087cde2ff?source=cve\n2. https://plugins.trac.wordpress.org/browser/wpextended/trunk/includes/modules/core_extensions/wpext_limit_login_attempts/wpext_limit_login_attempts.php#L105\n3. https://wordpress.org/plugins/wpextended/#developers\n4. https://plugins.trac.wordpress.org/changeset/3220003/", "creation_timestamp": "2025-01-18T08:58:13.000000Z"}, {"uuid": "6bc7f039-5841-4943-9b1a-5e76a72ebcca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1318", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12901", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1318\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)\n\ud83d\udd39 Description: The RSS Aggregator by Feedzy \u2013 Feed to Post, Autoblogging, News & YouTube Video Feeds Aggregator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'feedzy_wizard_step_process' and 'import_status' functions in all versions up to, and including, 4.4.2. This makes it possible for authenticated attackers, with Contributor access and above, who are normally restricted to only being able to create posts rather than pages, to draft and publish posts with arbitrary content.\n\ud83d\udccf Published: 2024-02-20T18:56:21.078Z\n\ud83d\udccf Modified: 2025-04-22T16:25:08.275Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/181edcec-a57d-4516-935d-6777d2de77ae?source=cve\n2. https://plugins.trac.wordpress.org/browser/feedzy-rss-feeds/tags/4.4.2/includes/admin/feedzy-rss-feeds-import.php#L1022\n3. https://plugins.trac.wordpress.org/browser/feedzy-rss-feeds/tags/4.4.2/includes/admin/feedzy-rss-feeds-admin.php#L1053\n4. https://plugins.trac.wordpress.org/changeset/3033749/feedzy-rss-feeds/tags/4.4.3/includes/admin/feedzy-rss-feeds-admin.php?old=3030538&old_path=feedzy-rss-feeds%2Ftags%2F4.4.2%2Fincludes%2Fadmin%2Ffeedzy-rss-feeds-admin.php", "creation_timestamp": "2025-04-22T17:03:22.000000Z"}, {"uuid": "79a7e93c-dff9-41a1-ad43-c369ebafb06f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13181", "type": "seen", "source": "https://t.me/true_secator/6633", "content": "\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 Ivanti \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043b\u044f \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 Avalanche, Application Control Engine \u0438 EPM.\n\n\u041d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u043c\u0438 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0447\u0435\u0442\u044b\u0440\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b \u043e\u0431\u0445\u043e\u0434\u0430 \u043f\u0443\u0442\u0438 \u0432 Ivanti EPM, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0442 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\nCVE-2024-10811, CVE-2024-13159 - CVE-2024-13161 \u0438\u043c\u0435\u044e\u0442 9,8 \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 EMP 2024 \u0438 2022 SU6 \u0441 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435\u043c \u0437\u0430 \u043d\u043e\u044f\u0431\u0440\u044c 2024.\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 12 \u0432\u044b\u0441\u043e\u043a\u043e\u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0445 \u0434\u0435\u0444\u0435\u043a\u0442\u043e\u0432, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a RCE, DoS \u0438 EoP \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0431\u0435\u0437 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438.\n\n\u0412\u044b\u043f\u0443\u0449\u0435\u043d\u0430 Avalanche 6.4.7 \u0441 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f\u043c\u0438 CVE-2024-13179 - CVE-2024-13181 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0441\u0442\u0435\u043f\u0435\u043d\u0438 \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u0431\u044b\u0442\u044c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u0438 \u043a\u0440\u0430\u0436\u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438.\n\n\u0422\u0440\u0430\u0434\u0438\u0446\u0438\u043e\u043d\u043d\u043e \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043d\u0435 \u0440\u0430\u0441\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430\u043c\u0438 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u044d\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445.\n\n\u0415\u0449\u0435 \u0433\u043e\u0432\u043e\u0440\u044f\u0442, \u0447\u0442\u043e Ivanti \u0433\u043e\u0442\u043e\u0432\u0438\u0442 \u0434\u043b\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u0439 \u0430\u043a\u0441\u0435\u0441\u0441\u0443\u0430\u0440, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0431\u0443\u0434\u0435\u0442 \u0440\u0430\u0441\u0441\u044b\u043b\u0430\u0442\u044c\u0441\u044f \u0432\u043c\u0435\u0441\u0442\u0435 \u0441\u043e \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u043c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435\u043c (\u0444\u043e\u0442\u043e \u043f\u0440\u0438\u043b\u0430\u0433\u0430\u0435\u043c).", "creation_timestamp": "2025-01-17T18:40:05.000000Z"}, {"uuid": "349c9e45-9ffe-44b2-b3e9-0cbb38aba2f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13184", "type": "seen", "source": "https://t.me/cvedetector/15800", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13184 - WordPress Toolkit - WP Extended SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13184 \nPublished : Jan. 18, 2025, 9:15 a.m. | 42\u00a0minutes ago \nDescription : The The Ultimate WordPress Toolkit \u2013 WP Extended plugin for WordPress is vulnerable to time-based SQL Injection via the Login Attempts module in all versions up to, and including, 3.0.12 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query.  This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-18T11:13:07.000000Z"}, {"uuid": "db9f857b-e5cc-415f-ac25-21c8721b4ad7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13183", "type": "seen", "source": "https://t.me/cvedetector/14951", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13183 - \"Orbit Fox by ThemeIsle Stored Cross-Site Scripting Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-13183 \nPublished : Jan. 10, 2025, 8:15 a.m. | 22\u00a0minutes ago \nDescription : The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018title_tag\u2019 parameter in all versions up to, and including, 2.10.43 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-10T09:39:28.000000Z"}, {"uuid": "f9adae45-4548-4d17-acca-86b81d3c2b00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "Telegram/pSRjZSDRDvzW7qZgle124MCZCc_qlBe9uZbYoTKryH9ziFn4", "content": "", "creation_timestamp": "2025-02-14T10:08:09.000000Z"}, {"uuid": "88c02762-e7f4-4a5d-accb-36a5b7114fc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "Telegram/OgZGjEX9D_B2XnkUZu0MPSKVoNCi-RtZJdyvsAOid0WaMhOQ", "content": "", "creation_timestamp": "2025-02-14T10:06:09.000000Z"}, {"uuid": "cdf431ee-0e94-4250-ae5d-29f182db30e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13182", "type": "seen", "source": "https://t.me/cvedetector/17996", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13182 - WordPress Directorybox Manager Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-13182 \nPublished : Feb. 13, 2025, 1:15 p.m. | 19\u00a0minutes ago \nDescription : The WP Directorybox Manager plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.5. This is due to incorrect authentication in the 'wp_dp_parse_request' function. This makes it possible for unauthenticated attackers to log in as any existing user on the site, such as an administrator. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-13T14:39:09.000000Z"}, {"uuid": "e0ddf6d4-9339-431e-82b9-70e8d2fdcf28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13181", "type": "seen", "source": "https://t.me/cvedetector/15308", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13181 - Ivanti Avalanche Path Traversal Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-13181 \nPublished : Jan. 14, 2025, 5:15 p.m. | 36\u00a0minutes ago \nDescription : Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to bypass authentication. This CVE addresses incomplete fixes from CVE-2024-47010. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T19:01:23.000000Z"}, {"uuid": "5ab4f605-9274-4e86-95c6-edc9a379ceef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13180", "type": "seen", "source": "https://t.me/cvedetector/15307", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13180 - Ivanti Avalanche Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13180 \nPublished : Jan. 14, 2025, 5:15 p.m. | 36\u00a0minutes ago \nDescription : Path Traversal in Ivanti Avalanche before version 6.4.7 allows a remote unauthenticated attacker to leak sensitive information. This CVE addresses incomplete fixes from CVE-2024-47011. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T19:01:22.000000Z"}, {"uuid": "c76fc2fe-eda1-48f5-afdf-f33ec2c312ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13189", "type": "seen", "source": "https://t.me/cvedetector/14732", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13189 - ZeroWdd MyBlog Remote File Permission Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13189 \nPublished : Jan. 8, 2025, 8:15 p.m. | 15\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in ZeroWdd myblog 1.0. This affects an unknown part of the file src/main/java/com/wdd/myblog/config/MyBlogMvcConfig.java. The manipulation leads to permission issues. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T21:41:01.000000Z"}, {"uuid": "721a7fb3-fe9a-4c01-a2e8-734d3bcf37f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13188", "type": "seen", "source": "https://t.me/cvedetector/14729", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13188 - eScan Antivirus Installation Handler Linux Default Permission Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13188 \nPublished : Jan. 8, 2025, 7:15 p.m. | 26\u00a0minutes ago \nDescription : A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as critical. Affected by this issue is some unknown functionality of the file /opt/MicroWorld/var/ of the component Installation Handler. The manipulation leads to incorrect default permissions. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T20:50:56.000000Z"}, {"uuid": "1379498a-65b0-47fe-8864-dc2956f1e55f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-13187", "type": "seen", "source": "https://t.me/cvedetector/14699", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13187 - Kingsoft WPS Office TCC Handler Code Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13187 \nPublished : Jan. 8, 2025, 5:15 p.m. | 35\u00a0minutes ago \nDescription : A vulnerability was found in Kingsoft WPS Office 6.14.0 on macOS. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component TCC Handler. The manipulation leads to code injection. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T19:09:28.000000Z"}, {"uuid": "202933b3-27dc-4f20-a991-b45f9aa7c7eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1318", "type": "seen", "source": "https://t.me/ctinow/198646", "content": "https://ift.tt/Sy7Fxzi\nCVE-2024-1318 | Feedzy RSS Aggregator Plugin up to 4.4.2 on WordPress Page authorization (ID 3033749)", "creation_timestamp": "2024-03-03T10:16:43.000000Z"}]}