{"vulnerability": "CVE-2024-4279", "sightings": [{"uuid": "7656acea-b790-4097-963b-7ed4c61eeda2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42798", "type": "seen", "source": "https://t.me/cvedetector/5765", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42798 - Kashipara Music Management System Access Control Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-42798 \nPublished : Sept. 16, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : An Incorrect Access Control vulnerability was found in /music/index.php?page=user_list and /music/index.php?page=edit_user in Kashipara Music Management System v1.0. This allows a low privileged attacker to take over the administrator account. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-16T22:53:27.000000Z"}, {"uuid": "162c582f-4884-417e-8a34-2b7758e65939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42796", "type": "seen", "source": "https://t.me/cvedetector/5764", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42796 - Kashipara Music Management System Unauthenticated Access Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-42796 \nPublished : Sept. 16, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : An Incorrect Access Control vulnerability was found in /music/ajax.php?action=delete_genre in Kashipara Music Management System v1.0. This vulnerability allows an unauthenticated attacker to delete the valid music genre entries. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-16T22:53:27.000000Z"}, {"uuid": "64186243-c1c4-4175-8a73-d0ba35643801", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42795", "type": "seen", "source": "https://t.me/cvedetector/5763", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42795 - Kashipara Music Management System Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42795 \nPublished : Sept. 16, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : An Incorrect Access Control vulnerability was found in /music/view_user.php?id=3 and /music/controller.php?page=edit_user&id=3 in Kashipara Music Management System v1.0. This vulnerability allows an unauthenticated attacker to view valid user details. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-16T22:53:26.000000Z"}, {"uuid": "be3b4a7f-75e8-4151-8956-e13f7f46c459", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42794", "type": "seen", "source": "https://t.me/cvedetector/5762", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42794 - Kashipara Music Management System Unauthenticated Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-42794 \nPublished : Sept. 16, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : Kashipara Music Management System v1.0 is vulnerable to Incorrect Access Control via /music/ajax.php?action=save_user. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-01T15:31:23.000000Z"}, {"uuid": "c5857865-42c4-456b-96e4-df3c9211836f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42791", "type": "seen", "source": "https://t.me/cvedetector/4183", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42791 - Kashipara Music Management System CSRF\", \n  \"Content\": \"CVE ID : CVE-2024-42791 \nPublished : Aug. 26, 2024, 4:15 p.m. | 27\u00a0minutes ago \nDescription : A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System v1.0 via /music/ajax.php?action=delete_genre. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T18:49:49.000000Z"}, {"uuid": "db448c16-1ae1-4ef7-980f-b494b2e047a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42793", "type": "seen", "source": "https://t.me/cvedetector/4354", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42793 - Kashipara Music Management System CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42793 \nPublished : Aug. 28, 2024, 8:15 p.m. | 22\u00a0minutes ago \nDescription : A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System v1.0 via a crafted request to the /music/ajax.php?action=save_user page. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-28T22:39:27.000000Z"}, {"uuid": "839403ab-42ad-4ade-949f-c877bde31da5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42790", "type": "seen", "source": "https://t.me/cvedetector/4190", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42790 - Kashipara Music Management System Reflected Cross Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-42790 \nPublished : Aug. 26, 2024, 5:15 p.m. | 16\u00a0minutes ago \nDescription : A Reflected Cross Site Scripting (XSS) vulnerability was found in \"/music/index.php?page=test\" in Kashipara Music Management System v1.0. This vulnerability allows remote attackers to execute arbitrary code via the \"page\" parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T19:40:00.000000Z"}, {"uuid": "bdc8521c-e98a-4549-8e9b-89fe133fac65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42792", "type": "seen", "source": "https://t.me/cvedetector/4188", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42792 - Kashipara Music Management System CSRF\", \n  \"Content\": \"CVE ID : CVE-2024-42792 \nPublished : Aug. 26, 2024, 5:15 p.m. | 16\u00a0minutes ago \nDescription : A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Music Management System v1.0 via /music/ajax.php?action=delete_playlist page. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"26 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-26T19:39:58.000000Z"}]}