{"vulnerability": "CVE-2024-33003", "sightings": [{"uuid": "d7d9e8bd-c160-46db-acfb-758e2f3cf974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33003", "type": "seen", "source": "https://t.me/cvedetector/2958", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-33003 - SAP Commerce Cloud OCC API Insufficient Data in URL Parameters Information Disclosure and Data Leaking\", \n  \"Content\": \"CVE ID : CVE-2024-33003 \nPublished : Aug. 13, 2024, 4:15 a.m. | 40\u00a0minutes ago \nDescription : Some OCC API endpoints in SAP Commerce Cloud  \nallows Personally Identifiable Information (PII) data, such as passwords, email  \naddresses, mobile numbers, coupon codes, and voucher codes, to be included in  \nthe request URL as query or path parameters. On successful exploitation, this  \ncould lead to a High impact on confidentiality and integrity of the  \napplication. \nSeverity: 7.4 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T07:04:09.000000Z"}]}