{"vulnerability": "CVE-2024-3748", "sightings": [{"uuid": "b373b3f3-8d15-4d41-90d5-79338c15e9c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-37480", "type": "seen", "source": "https://t.me/cvedetector/1359", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37480 - Apollo13Themes Apollo13 Framework Extensions Stored Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-37480 \nPublished : July 21, 2024, 10:15 p.m. | 36\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Apollo13Themes Apollo13 Framework Extensions apollo13-framework-extensions allows Stored XSS.This issue affects Apollo13 Framework Extensions: from n/a through 1.9.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T01:05:00.000000Z"}, {"uuid": "0d1acb55-ec92-41f6-9f27-26aa8519e109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-37489", "type": "seen", "source": "https://t.me/cvedetector/1333", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37489 - OceanWP Ocean Extra Stored Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-37489 \nPublished : July 21, 2024, 8:15 a.m. | 34\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in OceanWP Ocean Extra allows Stored XSS.This issue affects Ocean Extra: from n/a through 2.2.9. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-21T10:52:22.000000Z"}, {"uuid": "e0eb6738-2d72-4819-a421-34cf42c7b939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-37488", "type": "seen", "source": "https://t.me/cvedetector/1336", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37488 - HelloAsso Stored Web Page Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-37488 \nPublished : July 21, 2024, 8:15 a.m. | 34\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HelloAsso allows Stored XSS.This issue affects HelloAsso: from n/a through 1.1.9. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-21T10:52:24.000000Z"}, {"uuid": "9aaea992-6dc3-46d6-b510-e5a2354b452a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-37487", "type": "seen", "source": "https://t.me/cvedetector/1335", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37487 - Wordpress Directory Kit Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-37487 \nPublished : July 21, 2024, 8:15 a.m. | 34\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in wpdirectorykit.Com WP Directory Kit allows Reflected XSS.This issue affects WP Directory Kit: from n/a through 1.3.5. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-21T10:52:23.000000Z"}, {"uuid": "08008bc9-e92b-4546-9c1d-66650a856289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-37485", "type": "seen", "source": "https://t.me/cvedetector/1358", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-37485 - Vinny Alves bbPress Notify Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-37485 \nPublished : July 21, 2024, 10:15 p.m. | 36\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Vinny Alves (UseStrict Consulting) bbPress Notify allows Reflected XSS.This issue affects bbPress Notify: from n/a through 2.18.3. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T01:04:59.000000Z"}, {"uuid": "9b7ad5ea-00c2-4a65-b987-fe792a2f83dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-37484", "type": "seen", "source": "Telegram/LOlWkIeDbz3LDEo92QR2GdQIFLuRhyguR-kZRUAugyYbdBCL", "content": "", "creation_timestamp": "2025-02-14T09:47:00.000000Z"}]}