{"vulnerability": "CVE-2024-33299", "sightings": [{"uuid": "13ba7483-1908-4f4b-aac9-051aed9faa56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113805731862451658", "content": "", "creation_timestamp": "2025-01-10T19:34:17.190425Z"}, {"uuid": "f4949c40-4b22-4900-9e52-a4d15e8b7df9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lffz3riljz2f", "content": "", "creation_timestamp": "2025-01-10T20:16:02.171168Z"}, {"uuid": "97876e62-4987-4aae-b472-7476007d17fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfg2dl3ptk2h", "content": "", "creation_timestamp": "2025-01-10T20:38:19.272020Z"}, {"uuid": "a93c73a2-dec1-4360-a6bd-f0f4bd441920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lg7ad6quwi2x", "content": "", "creation_timestamp": "2025-01-20T21:02:12.939982Z"}, {"uuid": "fb8a1f44-83e8-4596-b750-188df2ddd23e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1217", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-33299\n\ud83d\udd39 Description: Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the First Name and Last Name parameters in the endpoint /admin/module/view?type=users\n\ud83d\udccf Published: 2025-01-10T00:00:00\n\ud83d\udccf Modified: 2025-01-10T19:32:30.728348\n\ud83d\udd17 References:\n1. https://github.com/MathSabo/CVE-2024-33299", "creation_timestamp": "2025-01-10T20:07:16.000000Z"}, {"uuid": "1fc67585-9c2b-4015-b632-8e4278fc56cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "published-proof-of-concept", "source": "Telegram/QXMR7F2jdeVfadE0UadP_87cUoa84idsq_cIO-k-scJwjtY", "content": "", "creation_timestamp": "2025-01-10T22:00:05.000000Z"}, {"uuid": "b420b13a-56a1-41c8-ad69-9ed4fd619ce1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-33299", "type": "seen", "source": "https://t.me/cvedetector/14996", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-33299 - Microweber Cross Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-33299 \nPublished : Jan. 10, 2025, 8:15 p.m. | 39\u00a0minutes ago \nDescription : Cross Site Scripting vulnerability in Microweber v.2.0.9 allows a remote attacker to execute arbitrary code via the First Name and Last Name parameters in the endpoint /admin/module/view?type=users \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-10T22:12:01.000000Z"}]}