{"vulnerability": "CVE-2024-3870", "sightings": [{"uuid": "d81c953f-6aa4-4dc1-823c-4b81e0dc283f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38708", "type": "seen", "source": "https://t.me/cvedetector/1436", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38708 - UkrSolution Barcode Scanner with Inventory & Order Manager SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-38708 \nPublished : July 22, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in UkrSolution Barcode Scanner with Inventory & Order Manager allows SQL Injection.This issue affects Barcode Scanner with Inventory & Order Manager: from n/a through 1.6.1. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T13:38:41.000000Z"}, {"uuid": "acba71a8-0dd1-4da2-9b80-e51836481b45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38705", "type": "seen", "source": "https://t.me/cvedetector/1265", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38705 - ElementInvader Elementor Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-38705 \nPublished : July 20, 2024, 8:15 a.m. | 43\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ElementInvader ElementInvader Addons for Elementor allows Stored XSS.This issue affects ElementInvader Addons for Elementor: from n/a through 1.2.4. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-20T11:26:49.000000Z"}, {"uuid": "03648d32-15e1-4f52-9c8e-4ccde005332c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38701", "type": "seen", "source": "https://t.me/cvedetector/1433", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38701 - Academy LMS Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-38701 \nPublished : July 22, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : Authorization Bypass Through User-Controlled Key vulnerability in Academy LMS.This issue affects Academy LMS: from n/a through 2.0.4. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T13:38:38.000000Z"}, {"uuid": "c4c4391f-6060-4755-a51b-6ccdcf949670", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38704", "type": "seen", "source": "https://t.me/cvedetector/743", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38704 - Improper Limitation of a Pathname to a Restricted\", \n  \"Content\": \"CVE ID : CVE-2024-38704 \nPublished : July 12, 2024, 2:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in DynamicWebLab WordPress Team Manager allows PHP Local File Inclusion.This issue affects WordPress Team Manager: from n/a through 2.1.12. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-12T16:56:07.000000Z"}, {"uuid": "fd64fe7f-4849-4218-bbbc-ab95449821cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38706", "type": "seen", "source": "https://t.me/cvedetector/742", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38706 - Improper Limitation of a Pathname to a Restricted\", \n  \"Content\": \"CVE ID : CVE-2024-38706 \nPublished : July 12, 2024, 2:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in HasThemes HT Mega allows Path Traversal.This issue affects HT Mega: from n/a through 2.5.7. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-12T16:56:06.000000Z"}, {"uuid": "fb466cce-7029-4590-a54c-119335946d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38709", "type": "seen", "source": "https://t.me/cvedetector/741", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38709 - Improper Limitation of a Pathname to a Restricted\", \n  \"Content\": \"CVE ID : CVE-2024-38709 \nPublished : July 12, 2024, 2:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Milan Petrovic GD Rating System allows PHP Local File Inclusion.This issue affects GD Rating System: from n/a through 3.6. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-12T16:56:05.000000Z"}, {"uuid": "0160f4d3-9a4b-4169-b3c7-28349eb52072", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38700", "type": "seen", "source": "https://t.me/cvedetector/744", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38700 - Improper Neutralization of Special Elements in Out\", \n  \"Content\": \"CVE ID : CVE-2024-38700 \nPublished : July 12, 2024, 2:15 p.m. | 38\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') vulnerability in realmag777 WPCS allows Code Injection.This issue affects WPCS: from n/a through 1.2.0.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-12T16:56:08.000000Z"}]}