{"vulnerability": "cve-2024-52002", "sightings": [{"uuid": "6d0692e4-004a-4265-9601-451dc59bb72a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-52002", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9576", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aThis repository contains exploits for iTOP CVE-2024-52002, 52000, 31998, 31448 that involve CSRF+XSS chaining to get RCE\nURL\uff1ahttps://github.com/Harshit-Mashru/iTop-CVEs-exploit\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2024-12-23T20:02:12.000000Z"}, {"uuid": "841f950a-bb77-4f03-a3a5-874aebe7f589", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-52002", "type": "seen", "source": "https://t.me/cvedetector/10245", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52002 - Combodo iTop CSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-52002 \nPublished : Nov. 8, 2024, 11:15 p.m. | 19\u00a0minutes ago \nDescription : Combodo iTop is a simple, web based IT Service Management tool. Several url endpoints are subject to a Cross-Site Request Forgery (CSRF) vulnerability. Please refer to the linked GHSA for the complete list. This issue has been addressed in version 3.2.0 and all users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T00:44:27.000000Z"}]}