{"vulnerability": "CVE-2024-2873", "sightings": [{"uuid": "acffe97c-2a2e-4523-aa35-b2c6285a9ec9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28734", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-05-15)", "content": "", "creation_timestamp": "2025-05-15T00:00:00.000000Z"}, {"uuid": "24ad7e1d-2620-48e6-8632-b265ae610a79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28734", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-04)", "content": "", "creation_timestamp": "2025-02-04T00:00:00.000000Z"}, {"uuid": "46229139-36e0-48a1-8a7a-29e4903716fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28734", "type": "seen", "source": "https://t.me/arpsyndicate/4382", "content": "#ExploitObserverAlert\n\nPD/http/cves/2024/CVE-2024-28734\n\nDESCRIPTION: Exploit Observer has 9 entries in 4 file formats related to PD/http/cves/2024/CVE-2024-28734. Cross Site Scripting vulnerability in Unit4 Financials by Coda v.2024Q1 allows a remote attacker to escalate privileges via a crafted script to the cols parameter.", "creation_timestamp": "2024-04-07T22:02:52.000000Z"}, {"uuid": "6e7d9fb0-a24e-432f-a055-b44239923356", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28735", "type": "seen", "source": "https://t.me/arpsyndicate/4293", "content": "#ExploitObserverAlert\n\nCVE-2024-28735\n\nDESCRIPTION: Exploit Observer has 4 entries in 1 file formats related to CVE-2024-28735. An incorrect access control issue in Unit4 Financials by Coda v.2023Q4 allows a remote attacker to escalate privileges via a crafted script to the change password function.\n\nFIRST-EPSS: 0.000450000", "creation_timestamp": "2024-03-21T23:04:10.000000Z"}, {"uuid": "65415665-3e67-4799-acbe-e58753525b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28734", "type": "seen", "source": "https://t.me/ctinow/211604", "content": "https://ift.tt/2H0pJkm\nCVE-2024-28734", "creation_timestamp": "2024-03-19T15:26:59.000000Z"}, {"uuid": "9a6ee922-d5e1-4b70-a374-8920df7d8ac8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28731", "type": "seen", "source": "https://t.me/cvedetector/10758", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-28731 - DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE Cross Site Request Forgery\", \n  \"Content\": \"CVE ID : CVE-2024-28731 \nPublished : Nov. 12, 2024, 11:15 p.m. | 29\u00a0minutes ago \nDescription : Cross Site Request Forgery vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via the Port forwarding option. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-13T00:46:34.000000Z"}, {"uuid": "d10656f0-dd94-4b9c-aaae-59745b48517e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28730", "type": "seen", "source": "https://t.me/cvedetector/10757", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-28730 - DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DLRXSS\", \n  \"Content\": \"CVE ID : CVE-2024-28730 \nPublished : Nov. 12, 2024, 11:15 p.m. | 29\u00a0minutes ago \nDescription : Cross Site Scripting vulnerability in DLink DWR 2000M 5G CPE With Wifi 6 Ax1800 and Dlink DWR 5G CPE DWR-2000M_1.34ME allows a local attacker to obtain sensitive information via the file upload feature of the VPN configuration module. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-13T00:46:34.000000Z"}, {"uuid": "29f4bf84-f840-4ae6-a05e-e9dd23fe259f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-28739", "type": "seen", "source": "https://t.me/cvedetector/2629", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-28739 - Koha ILS Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-28739 \nPublished : Aug. 6, 2024, 7:15 p.m. | 17\u00a0minutes ago \nDescription : An issue in Koha ILS 23.05 and before allows a remote attacker to execute arbitrary code via a crafted script to the format parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-06T21:43:04.000000Z"}]}