{"vulnerability": "CVE-2024-4007", "sightings": [{"uuid": "e576609f-5ede-43be-ab7e-20b062836874", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40071", "type": "seen", "source": "https://t.me/cvedetector/23143", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40071 - Sourcecodester Online ID Generator System PHP File Upload Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40071 \nPublished : April 16, 2025, 5:15 p.m. | 28\u00a0minutes ago \nDescription : Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via id_generator/classes/SystemSettings.php?f=update_settings. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:36.000000Z"}, {"uuid": "11f63a93-2807-4403-9a8f-984b92bec60d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40074", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12422", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40074\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting (XSS) via id_generator/classes/SystemSettings.php?f=update_settings, and the point of vulnerability is in the POST parameter 'short_name'.\n\ud83d\udccf Published: 2025-04-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-18T12:02:49.516Z\n\ud83d\udd17 References:\n1. https://github.com/DiliLearngent/BugReport/blob/main/php/Online-ID-Generator-System/bug1-XSS-short_name.md", "creation_timestamp": "2025-04-18T12:58:25.000000Z"}, {"uuid": "703cc584-8006-4e53-b859-42bbc3668a17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4007", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llzctf2hhr23", "content": "", "creation_timestamp": "2025-04-04T21:02:06.820507Z"}, {"uuid": "0dba6629-a4e6-493b-8b63-c93de8677d28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40070", "type": "seen", "source": "https://t.me/cvedetector/23141", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40070 - Sourcecodester Online ID Generator System Arbitrary File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40070 \nPublished : April 16, 2025, 5:15 p.m. | 28\u00a0minutes ago \nDescription : Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via id_generator/classes/Users.php?f=save. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:32.000000Z"}, {"uuid": "4102eb7e-7131-47f8-99c0-e14d18d97d26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40074", "type": "seen", "source": "https://t.me/cvedetector/23134", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40074 - Sourcecodester Online ID Generator System Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-40074 \nPublished : April 16, 2025, 5:15 p.m. | 28\u00a0minutes ago \nDescription : Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting (XSS) via id_generator/classes/SystemSettings.php?f=update_settings, and the point of vulnerability is in the POST parameter 'short_name'. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:24.000000Z"}, {"uuid": "c0b971fa-3029-40ac-93a1-0141d3eec7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40073", "type": "seen", "source": "https://t.me/cvedetector/23133", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40073 - Sourcecodester Online ID Generator System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-40073 \nPublished : April 16, 2025, 5:15 p.m. | 28\u00a0minutes ago \nDescription : Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the template parameter at id_generator/admin/?page=generate&template=4. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:23.000000Z"}, {"uuid": "2332389e-3897-4e27-bd5a-bdd6bedc9f7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40072", "type": "seen", "source": "https://t.me/cvedetector/23132", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40072 - Sourcecodester Online ID Generator System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40072 \nPublished : April 16, 2025, 5:15 p.m. | 28\u00a0minutes ago \nDescription : Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at id_generator/admin/?page=generate/index&id=1. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T20:14:22.000000Z"}, {"uuid": "9df84ead-31b8-425f-9485-9d828a556085", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40075", "type": "seen", "source": "https://t.me/cvedetector/1472", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40075 - \"Laravel XXE Injection\"\", \n  \"Content\": \"CVE ID : CVE-2024-40075 \nPublished : July 22, 2024, 7:15 p.m. | 37\u00a0minutes ago \nDescription : Laravel v11.x was discovered to contain an XML External Entity (XXE) vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T22:00:41.000000Z"}, {"uuid": "813fc463-8a04-4100-96b0-a6a2cb8698b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40075", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/7214", "content": "\u200aCVE-2024-40075: XXE Vulnerability Found in Laravel v11.x\n\nhttps://securityonline.info/cve-2024-40075-xxe-vulnerability-found-in-laravel-v11-x/", "creation_timestamp": "2024-07-24T12:40:48.000000Z"}]}