{"vulnerability": "CVE-2024-3869", "sightings": [{"uuid": "3835783f-ff76-43ed-bd86-fa910b1ca1f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38691", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2qtohrt2i", "content": "", "creation_timestamp": "2025-01-02T12:19:48.371210Z"}, {"uuid": "bf5e525a-1df2-4c72-9546-55fb157ff669", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38691", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113760154867854478", "content": "", "creation_timestamp": "2025-01-02T18:23:30.072000Z"}, {"uuid": "b9ff32db-0c53-4dd0-8472-9af7c95109aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38699", "type": "seen", "source": "https://t.me/cvedetector/3002", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38699 - WP Swings Wallet System for WooCommerce Missing Authorization\", \n  \"Content\": \"CVE ID : CVE-2024-38699 \nPublished : Aug. 13, 2024, 11:15 a.m. | 26\u00a0minutes ago \nDescription : Missing Authorization vulnerability in WP Swings Wallet System for WooCommerce allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Wallet System for WooCommerce: from n/a through 2.5.13. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T13:46:06.000000Z"}, {"uuid": "bfffd29a-428d-4dae-9eeb-dd12b9f13589", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38693", "type": "seen", "source": "https://t.me/cvedetector/4401", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38693 - weDevs WP User Frontend SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-38693 \nPublished : Aug. 29, 2024, 2:15 p.m. | 46\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in weDevs WP User Frontend allows SQL Injection.This issue affects WP User Frontend: from n/a through 4.0.7. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T17:03:24.000000Z"}, {"uuid": "8df4528e-d712-45e4-8d11-74d6f823cb63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3869", "type": "seen", "source": "Telegram/dkobjEK0z9p55GGQbsI_ydKDKMHzZKjEAWPrqdN4tvhvlkGt", "content": "", "creation_timestamp": "2025-02-06T02:43:28.000000Z"}, {"uuid": "77b342ad-b398-4120-a692-90b712645880", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38696", "type": "seen", "source": "https://t.me/cvedetector/1266", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38696 - Zoho CRM Lead Magnet Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-38696 \nPublished : July 20, 2024, 8:15 a.m. | 43\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Zoho CRM Zoho CRM Lead Magnet allows Reflected XSS.This issue affects Zoho CRM Lead Magnet: from n/a through 1.7.8.8. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-20T11:26:50.000000Z"}, {"uuid": "2d533d5a-b2be-4f32-94cf-666aca8097cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38692", "type": "seen", "source": "https://t.me/cvedetector/1438", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38692 - Spiffy Calendar SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-38692 \nPublished : July 22, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Spiffy Plugins Spiffy Calendar allows SQL Injection.This issue affects Spiffy Calendar: from n/a through 4.9.11. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T13:38:46.000000Z"}]}