{"vulnerability": "CVE-2024-46506", "sightings": [{"uuid": "1c2e3926-6de9-43f9-8196-93d477fdf80e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lhwkli25iy23", "content": "", "creation_timestamp": "2025-02-11T21:02:02.087888Z"}, {"uuid": "c35a8c07-c2b8-4beb-8ce4-c780ffb7a03d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/r-netsec.bsky.social/post/3lgzvzvcgzc22", "content": "", "creation_timestamp": "2025-01-31T11:39:44.366512Z"}, {"uuid": "0cb4a476-d97f-4946-86b5-51518d27d203", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lgxgwaf4e42q", "content": "", "creation_timestamp": "2025-01-30T12:03:56.320860Z"}, {"uuid": "ae07c16f-f339-4b10-8b68-83ff76a8cf68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-12T03:00:46.000000Z"}, {"uuid": "85109261-eacc-4e77-ba51-ce1c2b8cd8fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lrbs3romej2o", "content": "", "creation_timestamp": "2025-06-10T21:02:34.184468Z"}, {"uuid": "9a0e9bda-4965-459d-bfaa-3d1416ed031f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:11:06.000000Z"}, {"uuid": "e36a3884-2bce-4a73-a523-c9746c9521d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/rajsamani.bsky.social/post/3liw3lekik22f", "content": "", "creation_timestamp": "2025-02-24T09:58:46.575748Z"}, {"uuid": "e8e85e8b-fef4-4fba-9a4b-89a9699e7bb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:03.000000Z"}, {"uuid": "6e099af4-e313-4775-9288-0297987c5a0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lp2wfc6nen2r", "content": "", "creation_timestamp": "2025-05-13T16:40:19.947497Z"}, {"uuid": "d3093fac-be23-4afe-9ccc-8d742e3b95f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lp2wsu3pa42w", "content": "", "creation_timestamp": "2025-05-13T16:48:02.237187Z"}, {"uuid": "75ff8cb2-863f-406d-af5c-465d2bbf8ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "03fb6c20-025e-4199-9f5a-d53669d8b8dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "2ced93a9-063b-43e9-b63e-021b5e162a82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "d358c748-6a90-4afd-b693-33abae903985", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "d4c9997b-8f13-49a8-b67b-bc94e742e413", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "fd0d94e1-7a69-45d1-a140-81a88b108706", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "c9b48c2f-3029-4f74-a469-ffebca2166b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "2501fc80-3bfd-40d3-8fb9-609b4d229ba6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "d9f6875f-7184-44da-bd62-bab6a0843758", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "7c225be5-9443-450b-9ecb-39f6daa11392", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "3a0c326d-f689-4f2a-8d88-6ca8ba1b6b07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lylnhhezmp27", "content": "", "creation_timestamp": "2025-09-11T21:02:29.320716Z"}, {"uuid": "bfb0ce20-0b85-45cf-9afb-1ece6813e02e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/netalertx_rce_cve_2024_46506.rb", "content": "", "creation_timestamp": "2025-02-11T08:32:04.000000Z"}, {"uuid": "f43516e9-92a5-433a-906a-6dd57e342d76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "76c0b70e-211f-412e-ab57-c1130b8a6d4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "b5e82c7c-c493-45b2-98eb-52d95aba6597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "MISP/f7787455-9994-4047-b6f7-77347597c104", "content": "", "creation_timestamp": "2025-08-26T18:36:19.000000Z"}, {"uuid": "c26f67f3-682a-45fa-90c3-a40ac616776d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "c0c7c3c4-79c9-4d61-838f-0d15484b94ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "190dc642-6dcf-448a-b5d6-ba7ef0319bd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "f9c6ec2e-4106-47de-a06c-9e48be95ced6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "366f0563-c1e3-45b1-8e31-60574cb83ada", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16137", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-48766\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: NetAlertX 24.7.18 before 24.10.12 allows unauthenticated file reading because an HTTP client can ignore a redirect, and because of factors related to strpos and directory traversal. This is related to components/logs.php.\n\ud83d\udccf Published: 2025-05-13T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-13T15:18:55.980Z\n\ud83d\udd17 References:\n1. https://rhinosecuritylabs.com/research/cve-2024-46506-rce-in-netalertx/", "creation_timestamp": "2025-05-13T15:31:10.000000Z"}, {"uuid": "3764e06d-3ad4-49bf-926a-abfe7593694c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "790e7e3a-7cb0-4ee9-8a3f-fbfa02edbba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "published-proof-of-concept", "source": "Telegram/fKVTyseO1uYL9TllYOizt7PACaW5f67udAzHLYRojaAhnqE", "content": "", "creation_timestamp": "2025-12-28T03:00:05.000000Z"}, {"uuid": "c9c8e895-31d4-4044-a07b-a7c60612067c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/16212", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46506\n\ud83d\udd25 CVSS Score: 10 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: NetAlertX 23.01.14 through 24.x before 24.10.12 allows unauthenticated command injection via settings update because function=savesettings lacks an authentication requirement, as exploited in the wild in May 2025. This is related to settings.php and util.php.\n\ud83d\udccf Published: 2025-05-13T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-13T19:09:51.072Z\n\ud83d\udd17 References:\n1. https://rhinosecuritylabs.com/research/cve-2024-46506-rce-in-netalertx/", "creation_timestamp": "2025-05-13T19:31:09.000000Z"}, {"uuid": "07fcb80e-2fc0-4d61-b803-a497cbf2c1a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-46506.yaml", "content": "", "creation_timestamp": "2025-09-08T22:56:05.000000Z"}, {"uuid": "16c15ed5-4944-4927-bd53-8504cfc24a8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "exploited", "source": "https://t.me/cvedetector/25213", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46506 - NetAlertX Unauthenticated Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-46506 \nPublished : May 13, 2025, 4:15 p.m. | 59\u00a0minutes ago \nDescription : NetAlertX 23.01.14 through 24.x before 24.10.12 allows unauthenticated command injection via settings update because function=savesettings lacks an authentication requirement, as exploited in the wild in May 2025. This is related to settings.php and util.php. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-13T19:43:57.000000Z"}, {"uuid": "cdf91936-bc29-41d5-bd98-f770658d0532", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46506", "type": "published-proof-of-concept", "source": "https://t.me/thebugbountyhunter/9588", "content": "CVE-2024-46506: Unauthenticated RCE in NetAlertx - Rhino Security Labs\n\nhttps://rhinosecuritylabs.com/research/cve-2024-46506-rce-in-netalertx/", "creation_timestamp": "2025-01-31T01:26:08.000000Z"}]}