{"vulnerability": "cve-2024-1224", "sightings": [{"uuid": "b517fd95-28a5-46a1-a263-e29be4be0fc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12247", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113600938602318829", "content": "", "creation_timestamp": "2024-12-05T15:32:39.866543Z"}, {"uuid": "5beb6a3d-200a-4105-8bb3-8b389ed296c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12249", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfckgynwkp2l", "content": "", "creation_timestamp": "2025-01-09T11:15:53.466197Z"}, {"uuid": "eefd0a52-bb26-450c-9188-4b119c6c8f15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12240", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113826412561947295", "content": "", "creation_timestamp": "2025-01-14T11:13:39.575398Z"}, {"uuid": "e707e569-a7b7-4beb-9b8e-709138da60c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12240", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfp4rlm5zq2f", "content": "", "creation_timestamp": "2025-01-14T11:15:53.201698Z"}, {"uuid": "9c4ba24d-4a78-4008-81e5-8df17c9a2f24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12249", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113798223234461633", "content": "", "creation_timestamp": "2025-01-09T11:44:44.731338Z"}, {"uuid": "dca33950-9dfe-4bb1-9c18-d91904e424dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12240", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfp6tzw45c2e", "content": "", "creation_timestamp": "2025-01-14T11:53:02.972104Z"}, {"uuid": "aba11229-e3dc-4335-b7b9-3fd1294ec9cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12248", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113918699481002958", "content": "", "creation_timestamp": "2025-01-30T18:23:26.084278Z"}, {"uuid": "7e264532-c3e8-485e-9d25-79c4f74f1770", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12248", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lgzycr6lmw2p", "content": "", "creation_timestamp": "2025-01-31T12:20:29.601757Z"}, {"uuid": "cfc39021-97c5-4b8a-a308-191b6059a652", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12248", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113924460735809189", "content": "", "creation_timestamp": "2025-01-31T18:48:39.125996Z"}, {"uuid": "2d0d063d-2676-4bac-b858-d41259ae925b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12248", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lh2xd7id7u25", "content": "", "creation_timestamp": "2025-01-31T21:35:33.703928Z"}, {"uuid": "c5c19c63-3ca6-4261-a6df-e72df601bacb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12248", "type": "seen", "source": "https://bsky.app/profile/yokoi.bsky.social/post/3lh2zfugt3s23", "content": "", "creation_timestamp": "2025-01-31T22:12:52.555503Z"}, {"uuid": "1ed3525c-1a9f-45ce-a68b-fb98fe380b9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113980300172191548", "content": "", "creation_timestamp": "2025-02-10T15:29:20.248834Z"}, {"uuid": "d2893039-12e5-48fa-9388-ea6ff470a1d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhtk5mlo7v2n", "content": "", "creation_timestamp": "2025-02-10T16:16:18.020542Z"}, {"uuid": "76438db4-8f46-4cae-b604-0ee415384b99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhtx7obexr2d", "content": "", "creation_timestamp": "2025-02-10T20:10:08.552983Z"}, {"uuid": "e49a2fe6-0a65-479f-89d3-b25c719b3c9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12242", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulrel2bf2q", "content": "", "creation_timestamp": "2025-02-11T02:17:53.877911Z"}, {"uuid": "57c6cdaf-e698-49b2-8f49-b44ef4621758", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12246", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulrgu7ib2n", "content": "", "creation_timestamp": "2025-02-11T02:17:56.426040Z"}, {"uuid": "847f3353-e38d-4f33-9c9d-431d85e718ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12245", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkei5xivf62n", "content": "", "creation_timestamp": "2025-03-14T20:46:23.544410Z"}, {"uuid": "9fcbb2f4-b9f1-47e2-a551-34099a1f8215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-162-05", "content": "", "creation_timestamp": "2025-06-12T10:00:00.000000Z"}, {"uuid": "9f9dca81-2240-4139-b0c9-fe0480dfa7eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12244", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnkenu6u332g", "content": "", "creation_timestamp": "2025-04-24T09:15:12.524966Z"}, {"uuid": "a4ac5a6d-8c63-47ae-bbb3-9324767af423", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lqzhfgxkqk27", "content": "", "creation_timestamp": "2025-06-07T13:29:44.449170Z"}, {"uuid": "1b92c4ba-3f28-4ce9-98c1-fa457d162cdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12248", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mdj6ccjy5o24", "content": "", "creation_timestamp": "2026-01-28T21:03:00.174485Z"}, {"uuid": "600553fb-bacb-4de8-8b73-b9a7b1c4eebc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://t.me/cvedetector/17578", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12243 - GnuTLS Denial-of-Service Remote Certificate Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12243 \nPublished : Feb. 10, 2025, 4:15 p.m. | 1\u00a0hour, 27\u00a0minutes ago \nDescription : A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-10T18:45:55.000000Z"}, {"uuid": "37e5fff0-b726-4ff9-80d2-edee712b6a92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12249", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/951", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12249\n\ud83d\udd39 Description: The GS Insever Portfolio plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the save_settings() function in all versions up to, and including, 1.4.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update the plugin's CSS settings.\n\ud83d\udccf Published: 2025-01-09T11:10:55.369Z\n\ud83d\udccf Modified: 2025-01-09T11:10:55.369Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/36f3e9be-9a4e-458d-92b3-687afc44696a?source=cve\n2. https://plugins.trac.wordpress.org/browser/gs-instagram-portfolio/tags/1.4.5/admin/includes/Ajax.php\n3. https://plugins.trac.wordpress.org/browser/gs-instagram-portfolio/tags/1.4.5/admin/Backend_Builder.php", "creation_timestamp": "2025-01-09T12:16:56.000000Z"}, {"uuid": "e051905f-9e74-4cfa-9406-1f3f79f63a6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4996", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12243\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.\n\ud83d\udccf Published: 2025-02-10T15:28:10.328Z\n\ud83d\udccf Modified: 2025-02-21T22:02:34.513Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-12243\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2344615\n3. https://gitlab.com/gnutls/libtasn1/-/issues/52", "creation_timestamp": "2025-02-21T22:18:55.000000Z"}, {"uuid": "ccd76c7e-830e-4b28-99dd-d801d49457ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12245", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7942", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12245\n\ud83d\udd25 CVSS Score: 8.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Logout functionality contains a blind SQL injection that can be exploited by unauthenticated attackers.\u00a0Using a time-based blind SQLi technique the attacker can disclose all database contents. Account takeover is a potential outcome depending on the presence or lack thereof entries in certain database tables.\n\ud83d\udccf Published: 2025-03-14T18:11:14.218Z\n\ud83d\udccf Modified: 2025-03-18T17:05:58.045Z\n\ud83d\udd17 References:\n1. https://www.blackduck.com/blog/cyrc-advisory-logicaldoc.html", "creation_timestamp": "2025-03-18T17:48:37.000000Z"}, {"uuid": "401622a4-dd45-410c-9200-4d11f4552072", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12243", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13018", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12243\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1, decoding certain DER-encoded certificate data can take excessive time, leading to increased resource consumption. This flaw allows a remote attacker to send a specially crafted certificate, causing GnuTLS to become unresponsive or slow, resulting in a denial-of-service condition.\n\ud83d\udccf Published: 2025-02-10T15:28:10.328Z\n\ud83d\udccf Modified: 2025-04-23T10:53:56.693Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/errata/RHSA-2025:4051\n2. https://access.redhat.com/security/cve/CVE-2024-12243\n3. https://bugzilla.redhat.com/show_bug.cgi?id=2344615\n4. https://gitlab.com/gnutls/libtasn1/-/issues/52", "creation_timestamp": "2025-04-23T11:20:41.000000Z"}, {"uuid": "5c9fa936-9aff-4385-904e-d9f660b7177c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12244", "type": "seen", "source": "https://t.me/cvedetector/23643", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12244 - GitLab EE Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-12244 \nPublished : April 24, 2025, 8:15 a.m. | 16\u00a0minutes ago \nDescription : An issue has been discovered in access controls could allow users to view certain restricted project information even when related features are disabled in GitLab EE, affecting all versions from 17.7 prior to 17.9.7, 17.10 prior to 17.10.5, and 17.11 prior to 17.11.1. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-24T11:23:12.000000Z"}, {"uuid": "2f4d7809-788e-4998-80d9-8d8559db4850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12245", "type": "seen", "source": "https://t.me/cvedetector/20341", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12245 - Apache Struts Blind SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-12245 \nPublished : March 14, 2025, 6:15 p.m. | 1\u00a0hour, 22\u00a0minutes ago \nDescription : Logout functionality contains a blind SQL injection that can be exploited by unauthenticated attackers.\u00a0Using a time-based blind SQLi technique the attacker can disclose all database contents. Account takeover is a potential outcome depending on the presence or lack thereof entries in certain database tables. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T20:53:52.000000Z"}, {"uuid": "ac548918-9cc2-4c48-a363-9d293f92b1ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12240", "type": "seen", "source": "https://t.me/cvedetector/15247", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12240 - SiteOrigin Page Builder Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12240 \nPublished : Jan. 14, 2025, 11:15 a.m. | 39\u00a0minutes ago \nDescription : The Page Builder by SiteOrigin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the row label parameter in all versions up to, and including, 2.31.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T13:09:11.000000Z"}, {"uuid": "e9f0988a-e991-42a2-b593-bec736274ac1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12247", "type": "seen", "source": "https://t.me/cvedetector/12117", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12247 - Mattermost versions 9.7.x <=<= 9.8.2\", \n  \"Content\": \"CVE ID : CVE-2024-12247 \nPublished : Dec. 5, 2024, 4:15 p.m. | 35\u00a0minutes ago \nDescription : Mattermost versions 9.7.x <=<=<=\nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-05T17:52:17.000000Z"}, {"uuid": "3b0563e6-f209-4fba-bdb5-d34c9c44ef50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1224", "type": "seen", "source": "https://t.me/ctinow/201323", "content": "https://ift.tt/TJdKtZg\nCVE-2024-1224", "creation_timestamp": "2024-03-06T13:31:29.000000Z"}, {"uuid": "4f76a169-2cd5-4a7d-a1e2-3a70704d6422", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1224", "type": "seen", "source": "https://t.me/ctinow/201318", "content": "https://ift.tt/TJdKtZg\nCVE-2024-1224", "creation_timestamp": "2024-03-06T13:31:23.000000Z"}]}