{"vulnerability": "CVE-2024-3246", "sightings": [{"uuid": "afa18b84-5db2-4ede-9674-d28fa52e66bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-32468", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113545092236832008", "content": "", "creation_timestamp": "2024-11-25T18:50:11.940898Z"}, {"uuid": "7dbe138e-5629-4230-b509-facab9b64e23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-32469", "type": "seen", "source": "https://t.me/cvedetector/580", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-32469 - Decidim is a participatory democracy framework. Th\", \n  \"Content\": \"CVE ID : CVE-2024-32469 \nPublished : July 10, 2024, 7:15 p.m. | 26\u00a0minutes ago \nDescription : Decidim is a participatory democracy framework. The pagination feature used in searches and filters is subject to potential XSS attack through a malformed URL using the GET parameter `per_page`. This vulnerability is fixed in 0.27.6 and 0.28.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-10T21:49:11.000000Z"}, {"uuid": "9780ae24-2b7f-4ddb-8393-1288f1de516d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3246", "type": "seen", "source": "https://t.me/cvedetector/1539", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-3246 - LiteSpeed Cache for WordPress CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-3246 \nPublished : July 24, 2024, 4:15 a.m. | 44\u00a0minutes ago \nDescription : The LiteSpeed Cache plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.2.0.1. This is due to missing or incorrect nonce validation. This makes it possible for unauthenticated attackers to update the token setting and inject malicious JavaScript via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-24T07:27:10.000000Z"}, {"uuid": "79595410-2c1c-4c0c-88a6-2e48ad69a145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-32460", "type": "seen", "source": "Telegram/8fo2IWcS_NzFmp6eT8OwdPO6tyz92dlpDVtcui4wCO45FaSX", "content": "", "creation_timestamp": "2025-02-06T02:42:28.000000Z"}, {"uuid": "d9fec711-3e64-46d8-bc8f-dfe16e183e41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3246", "type": "seen", "source": "https://t.me/HackingInsights/7218", "content": "\u200aCVE-2024-3246: LiteSpeed Cache Plugin Vulnerability Puts Millions of WordPress Sites at Risk\n\nhttps://securityonline.info/cve-2024-3246-litespeed-cache-plugin-vulnerability-puts-millions-of-wordpress-sites-at-risk/", "creation_timestamp": "2024-07-24T12:40:48.000000Z"}, {"uuid": "ea971844-77c1-46a7-a4e1-38e148fd736a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-32462", "type": "seen", "source": "https://t.me/arpsyndicate/4727", "content": "#ExploitObserverAlert\n\nCVE-2024-32462\n\nDESCRIPTION: Exploit Observer has 9 entries in 4 file formats related to CVE-2024-32462. Flatpak is a system for building, distributing, and running sandboxed desktop applications on Linux. in versions before 1.10.9, 1.12.9, 1.14.6, and 1.15.8, a malicious or compromised Flatpak app could execute arbitrary code outside its sandbox. Normally, the `--command` argument of `flatpak run` expects to be given a command to run in the specified Flatpak app, optionally along with some arguments. However it is possible to instead pass `bwrap` arguments to `--command=`, such as `--bind`. It's possible to pass an arbitrary `commandline` to the portal interface `org.freedesktop.portal.Background.RequestBackground` from within a Flatpak app. When this is converted into a `--command` and arguments, it achieves the same effect of passing arguments directly to `bwrap`, and thus can be used for a sandbox escape. The solution is to pass the `--` argument to `bwrap`, which makes it stop processing options. This has been supported since bubblewrap 0.3.0. All supported versions of Flatpak require at least that version of bubblewrap. xdg-desktop-portal version 1.18.4 will mitigate this vulnerability by only allowing Flatpak apps to create .desktop files for commands that do not start with --. The vulnerability is patched in 1.15.8, 1.10.9, 1.12.9, and 1.14.6.\n\nFIRST-EPSS: 0.000450000\nARPS-PRIORITY: 0.7115119", "creation_timestamp": "2024-04-20T18:32:00.000000Z"}]}