{"vulnerability": "CVE-2024-4439", "sightings": [{"uuid": "753bcb3e-8761-4d40-b68e-3a9a747e79e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44390", "type": "seen", "source": "https://t.me/cvedetector/4016", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44390 - Tenda FH1206 Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44390 \nPublished : Aug. 23, 2024, 5:15 p.m. | 19\u00a0minutes ago \nDescription : Tenda FH1206 V1.2.0.8(8155)_EN contains a Buffer Overflow vulnerability via the function formWrlsafeset. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-23T19:38:37.000000Z"}, {"uuid": "83a93fe4-c459-40a5-a638-6b0a7475f96b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9118", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-4439 docker and poc\nURL\uff1ahttps://github.com/w0r1i0g1ht/CVE-2024-4439\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-11-21T13:38:53.000000Z"}, {"uuid": "1376aa0a-4dd4-4312-b9a9-78631a4d5a3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/7219", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aThe provided exploit code leverages a stored Cross-Site Scripting (XSS) vulnerability (CVE-2024-4439) in WordPress Core versions up to 6.5.1.\nURL\uff1ahttps://github.com/d0rb/CVE-2024-4439\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-05-06T09:13:58.000000Z"}, {"uuid": "bb4848f2-613d-4dfd-bee1-f510155bd37a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/7218", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-4439 PoC\nURL\uff1ahttps://github.com/MielPopsssssss/CVE-2024-4439\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-05-06T08:54:39.000000Z"}, {"uuid": "a4dce5f9-148b-4de4-8b02-a04e9c481294", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/42", "content": "#exploit\n1. View State, The unpatchable IIS forever day being actively exploited\nhttps://zeroed.tech/blog/viewstate-the-unpatchable-iis-forever-day-being-actively-exploited\n\n2. CVE-2024-4439:\nUnauthenticated Stored XSS in WordPress Core\nhttps://github.com/d0rb/CVE-2024-4439", "creation_timestamp": "2024-07-28T10:08:25.000000Z"}, {"uuid": "3f79bde9-49f1-498e-aad6-3e3a2c872987", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "Telegram/1uV6A5SWvk3IC9C8EKpT7W6-QzGuo1e54lHs_N_grejkalT4", "content": "", "creation_timestamp": "2024-08-20T19:02:47.000000Z"}, {"uuid": "bdae8ad6-46ab-41a8-a96c-73fe07720b02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/Kelvinseccommunity/629", "content": "#exploit\n1. View State, The unpatchable IIS forever day being actively exploited\nhttps://zeroed.tech/blog/viewstate-the-unpatchable-iis-forever-day-being-actively-exploited\n\n2. CVE-2024-4439:\nUnauthenticated Stored XSS in WordPress Core\nhttps://github.com/d0rb/CVE-2024-4439", "creation_timestamp": "2024-07-28T10:07:46.000000Z"}, {"uuid": "43d9a0cc-339a-4efc-b4aa-bf239aa2071a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10896", "content": "#exploit\n1. View State, The unpatchable IIS forever day being actively exploited\nhttps://zeroed.tech/blog/viewstate-the-unpatchable-iis-forever-day-being-actively-exploited\n\n2. CVE-2024-4439:\nUnauthenticated Stored XSS in WordPress Core\nhttps://github.com/d0rb/CVE-2024-4439", "creation_timestamp": "2024-07-28T15:30:23.000000Z"}, {"uuid": "5f6c525b-b7f2-4023-99eb-6aa79d389eb9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "Telegram/nNIwW8mS-IrQk8Rnf5lWPIFFwBWImCx_LweLwHkBnVhaYuDq", "content": "", "creation_timestamp": "2024-05-08T18:58:43.000000Z"}, {"uuid": "4cd98d38-d782-43d6-8a52-e663d3bc0129", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4439", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/3498", "content": "#exploit\n1. View State, The unpatchable IIS forever day being actively exploited\nhttps://zeroed.tech/blog/viewstate-the-unpatchable-iis-forever-day-being-actively-exploited\n\n2. CVE-2024-4439:\nUnauthenticated Stored XSS in WordPress Core\nhttps://github.com/d0rb/CVE-2024-4439", "creation_timestamp": "2024-08-16T11:18:02.000000Z"}]}