{"vulnerability": "CVE-2024-4966", "sightings": [{"uuid": "b718ef1d-dd96-4da2-818f-6dfd3a6038a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49669", "type": "seen", "source": "MISP/0a71ca63-f0d0-4d81-9b10-74742a0194d1", "content": "", "creation_timestamp": "2024-11-01T12:06:50.000000Z"}, {"uuid": "eb88d084-c9c9-43f8-abd9-3248fb7706bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49668", "type": "seen", "source": "MISP/91979b92-8db9-42d9-a894-72903954de19", "content": "", "creation_timestamp": "2024-11-01T12:06:50.000000Z"}, {"uuid": "9c9c8535-dd5f-48f4-8516-a2b34ce9bfa7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49666", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113866702009261969", "content": "", "creation_timestamp": "2025-01-21T13:59:47.633857Z"}, {"uuid": "37a7b2d6-dd78-4650-9be2-f9bc8dcb9e1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49666", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgb242lp2w2e", "content": "", "creation_timestamp": "2025-01-21T14:15:58.349142Z"}, {"uuid": "752653d8-faf8-47f6-a8bd-75f24aacb98a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49666", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgb3g7gfl52u", "content": "", "creation_timestamp": "2025-01-21T14:39:35.444657Z"}, {"uuid": "cf9786fd-3f98-46bf-b626-d48703b3d07d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49666", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113866894100054305", "content": "", "creation_timestamp": "2025-01-21T14:48:46.325413Z"}, {"uuid": "21543053-b5c4-4cf1-9f75-ead9b5b1fca6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49660", "type": "seen", "source": "https://t.me/cvedetector/9300", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49660 - Campus Explorer Widget Reflective Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49660 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Campus Explorer Campus Explorer Widget allows Reflected XSS.This issue affects Campus Explorer Widget: from n/a through 1.4. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:16.000000Z"}, {"uuid": "11571067-ee69-4f8f-9fe7-8b3e88e00b9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49666", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2401", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-49666\n\ud83d\udd39 Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound ARPrice allows SQL Injection. This issue affects ARPrice: from n/a through 4.0.3.\n\ud83d\udccf Published: 2025-01-21T13:40:32.997Z\n\ud83d\udccf Modified: 2025-01-21T13:40:32.997Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/arprice/vulnerability/wordpress-arprice-plugin-4-0-3-sql-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-21T14:01:52.000000Z"}, {"uuid": "ad4172d3-7ac3-4c07-8953-decff2cf47e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49661", "type": "seen", "source": "https://t.me/cvedetector/9301", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49661 - Lew Ayotte leenk.Me Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-49661 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Lew Ayotte leenk.Me allows Reflected XSS.This issue affects leenk.Me: from n/a through 2.16.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:17.000000Z"}, {"uuid": "0e58b46f-9ef3-485c-ab42-4b3b558da443", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49667", "type": "seen", "source": "https://t.me/cvedetector/9297", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49667 - NervyThemes Elementor Local Business Addons Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49667 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in NervyThemes Local Business Addons For Elementor allows Stored XSS.This issue affects Local Business Addons For Elementor: from n/a through 1.1.5. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:10.000000Z"}, {"uuid": "3fedb570-5cf9-48c9-a8db-f7f8d78ff38a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49665", "type": "seen", "source": "https://t.me/cvedetector/9296", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49665 - Web Bricks Addons for Elementor XPath Injection\", \n  \"Content\": \"CVE ID : CVE-2024-49665 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Web Bricks Web Bricks Addons for Elementor allows Stored XSS.This issue affects Web Bricks Addons for Elementor: from n/a through 1.1.1. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:10.000000Z"}, {"uuid": "c0b0e490-ac99-4ef8-97eb-a73726f6ccc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49664", "type": "seen", "source": "https://t.me/cvedetector/9295", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49664 - Chatplusjp Reflected Cross-site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49664 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in allows Reflected XSS.This issue affects chatplusjp: from n/a through 1.02. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:09.000000Z"}, {"uuid": "9cf4ed8b-6747-419a-8cda-59efa0e44a95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49663", "type": "seen", "source": "https://t.me/cvedetector/9294", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49663 - Elena Zhyvohliad uCAT \u2013 Next Story Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-49663 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Elena Zhyvohliad uCAT \u2013 Next Story allows Reflected XSS.This issue affects uCAT \u2013 Next Story: from n/a through 2.0.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:08.000000Z"}, {"uuid": "ac83d6ad-019a-4549-ae3f-94c47a95913d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49662", "type": "seen", "source": "https://t.me/cvedetector/9293", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49662 - Webgensis Simple Load More Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-49662 \nPublished : Oct. 29, 2024, 12:15 p.m. | 33\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webgensis Simple Load More allows Reflected XSS.This issue affects Simple Load More: from n/a through 1.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T13:56:07.000000Z"}, {"uuid": "4163209d-784f-4688-a371-73ff5166b7aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49668", "type": "published-proof-of-concept", "source": "Telegram/6nHZWxLgwgyMKwZNY4CCS-Ob_vaAl5iyDjwJ0alABpjsTxw", "content": "", "creation_timestamp": "2025-03-23T16:00:12.000000Z"}, {"uuid": "bed3871d-e14e-4fb9-ab32-4f25e4f3b1c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-49668", "type": "seen", "source": "https://t.me/cvedetector/8718", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-49668 - Verbalize WP Unrestricted File Upload RCE\", \n  \"Content\": \"CVE ID : CVE-2024-49668 \nPublished : Oct. 23, 2024, 4:15 p.m. | 43\u00a0minutes ago \nDescription : Unrestricted Upload of File with Dangerous Type vulnerability in Admin Verbalize WP Upload a Web Shell to a Web Server.This issue affects Verbalize WP: from n/a through 1.0. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-23T19:04:03.000000Z"}, {"uuid": "e55f79b2-0b6d-427e-a1cf-59ab26c0f383", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4966", "type": "seen", "source": "Telegram/H0O3NzlEk6jrQ_WWMTPcRwDeK7heQTdD3zdxOJbdZIkAWbjt", "content": "", "creation_timestamp": "2025-02-14T09:46:59.000000Z"}]}