{"vulnerability": "CVE-2024-5697", "sightings": [{"uuid": "cb798296-636b-4499-885e-340fd2c1d3c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56971", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqnozl53l2p", "content": "", "creation_timestamp": "2025-01-27T19:16:32.072615Z"}, {"uuid": "e5d7c13e-e994-4c13-bfe5-50bde588d491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56972", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqnp4azer2t", "content": "", "creation_timestamp": "2025-01-27T19:16:34.903870Z"}, {"uuid": "722e47de-f1c0-491c-8a49-d38a0d3059af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56971", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113902109943035205", "content": "", "creation_timestamp": "2025-01-27T20:04:29.887936Z"}, {"uuid": "c8df9860-aee4-47ed-a92f-71a3ee2f6315", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56972", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113902109977072384", "content": "", "creation_timestamp": "2025-01-27T20:04:30.417311Z"}, {"uuid": "ffe44a04-f2ba-41c2-b753-90b0a57682d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56971", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgqzly27u32k", "content": "", "creation_timestamp": "2025-01-27T22:49:40.145059Z"}, {"uuid": "27998af1-4938-46ab-9520-7a0fcf64787e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56973", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3li5lyqut422g", "content": "", "creation_timestamp": "2025-02-14T16:15:59.487842Z"}, {"uuid": "c881aa03-c3c0-471a-b8c0-7c97c858aa4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56975", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9468", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-56975\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: InvoicePlane (all versions tested as of December 2024) v.1.6.11 and before contains a remote code execution vulnerability in the upload_file method of the Upload controller.\n\ud83d\udccf Published: 2025-03-28T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-28T20:56:09.720Z\n\ud83d\udd17 References:\n1. https://github.com/InvoicePlane/InvoicePlane/pull/1166\n2. https://github.com/InvoicePlane/InvoicePlane/pull/1127", "creation_timestamp": "2025-03-28T21:28:57.000000Z"}, {"uuid": "e1185455-538c-4270-b4f1-1c92991165d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56971", "type": "seen", "source": "https://t.me/cvedetector/16510", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56971 - Zhiyuan Yuedu Shuqi Novel iOS Information Disclosure Leak\", \n  \"Content\": \"CVE ID : CVE-2024-56971 \nPublished : Jan. 27, 2025, 7:15 p.m. | 1\u00a0hour, 33\u00a0minutes ago \nDescription : An issue in Zhiyuan Yuedu (Guangzhou) Literature Information Technology Co., Ltd Shuqi Novel iOS 5.3.8 allows attackers to access sensitive user information via supplying a crafted link. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-27T21:52:04.000000Z"}, {"uuid": "ef932e23-4b4a-42a1-aa66-2d4aea14bd0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56975", "type": "seen", "source": "https://t.me/cvedetector/21483", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56975 - InvoicePlane Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-56975 \nPublished : March 28, 2025, 9:15 p.m. | 1\u00a0hour, 31\u00a0minutes ago \nDescription : InvoicePlane (all versions tested as of December 2024) v.1.6.11 and before contains a remote code execution vulnerability in the upload_file method of the Upload controller. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-29T00:27:02.000000Z"}, {"uuid": "304f784c-8575-402e-b923-5f5c36ef1006", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56973", "type": "seen", "source": "Telegram/juaZS_V_8XY1Z0DgWiTO5Y949vI7i3OH-YaOcNwZ4kiEFGxu", "content": "", "creation_timestamp": "2025-03-02T11:45:38.000000Z"}, {"uuid": "79121793-ab31-4ebb-9fdc-5edb4853112b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-56972", "type": "seen", "source": "https://t.me/cvedetector/16511", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-56972 - Midea Group Co., Ltd Midea Home iOS Link Leak\", \n  \"Content\": \"CVE ID : CVE-2024-56972 \nPublished : Jan. 27, 2025, 7:15 p.m. | 1\u00a0hour, 33\u00a0minutes ago \nDescription : An issue in Midea Group Co., Ltd Midea Home iOS 9.3.12 allows attackers to access sensitive user information via supplying a crafted link. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-27T21:52:05.000000Z"}]}