{"vulnerability": "cve-2024-5347", "sightings": [{"uuid": "8348ebaa-d03f-428b-a66a-3d7e1f1eb643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53472", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113600938615938462", "content": "", "creation_timestamp": "2024-12-05T15:32:39.990439Z"}, {"uuid": "7659ab06-f2a0-4613-b2ec-e2c26cecdd92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53470", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113601083861723748", "content": "", "creation_timestamp": "2024-12-05T16:09:36.420787Z"}, {"uuid": "6e1216bc-87ca-46f4-89cb-61919424da25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53477", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113585278918940922", "content": "", "creation_timestamp": "2024-12-02T21:10:12.043903Z"}, {"uuid": "cb3cc02e-2f0e-4b28-b131-41602640dea6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53473", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113613832658577033", "content": "", "creation_timestamp": "2024-12-07T22:11:52.601297Z"}, {"uuid": "e76a36de-8987-446b-b24b-145d05545f7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53476", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113726313564055948", "content": "", "creation_timestamp": "2024-12-27T18:57:10.383465Z"}, {"uuid": "5d79ddc2-484f-4917-989f-946e39cffd24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53476", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lecp6sux6425", "content": "", "creation_timestamp": "2024-12-27T19:15:36.920498Z"}, {"uuid": "35518142-0bd6-464e-905c-13a43e9a7c21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53476", "type": "seen", "source": "MISP/dd71e3c5-20f7-409a-8bcc-8df3cd8022a7", "content": "", "creation_timestamp": "2025-09-03T13:30:06.000000Z"}, {"uuid": "8e6ca1ae-2bf7-4606-a7f9-5908124940c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53476", "type": "seen", "source": "https://t.me/cvedetector/13792", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53476 - Adobe SimplCommerce Inventory Bypass Race Condition Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53476 \nPublished : Dec. 27, 2024, 7:15 p.m. | 45\u00a0minutes ago \nDescription : A race condition vulnerability in SimplCommerce at commit 230310c8d7a0408569b292c5a805c459d47a1d8f allows attackers to bypass inventory restrictions by simultaneously submitting purchase requests from multiple accounts for the same product. This can lead to overselling when stock is limited, as the system fails to accurately track inventory under high concurrency, resulting in potential loss and unfulfilled orders. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-27T21:02:34.000000Z"}, {"uuid": "c1ba53b0-2f5e-47d2-864b-9242aec488cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53473", "type": "seen", "source": "https://t.me/cvedetector/12329", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53473 - WeGIA Password Change Permission Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-53473 \nPublished : Dec. 7, 2024, 11:15 p.m. | 38\u00a0minutes ago \nDescription : WeGIA 3.2.0 before 3998672 does not verify permission to change a password. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-08T01:04:22.000000Z"}, {"uuid": "34445cd3-8bd9-4b59-b499-b1046dbaf867", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53472", "type": "seen", "source": "https://t.me/cvedetector/12120", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53472 - WeGIA v3.2.0 was discovered to contain a Cross-Sit\", \n  \"Content\": \"CVE ID : CVE-2024-53472 \nPublished : Dec. 5, 2024, 4:15 p.m. | 35\u00a0minutes ago \nDescription : WeGIA v3.2.0 was discovered to contain a Cross-Site Request Forgery (CSRF). \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-05T17:52:20.000000Z"}, {"uuid": "e9a1ec5e-a4f5-4c91-af9e-c2f64d0344ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53471", "type": "seen", "source": "https://t.me/cvedetector/12119", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53471 - Multiple stored cross-site scripting (XSS) vulnera\", \n  \"Content\": \"CVE ID : CVE-2024-53471 \nPublished : Dec. 5, 2024, 4:15 p.m. | 35\u00a0minutes ago \nDescription : Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/meio_pagamento.php of WeGIA v3.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the id or name parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-05T17:52:19.000000Z"}, {"uuid": "32fc8379-b5c1-45f5-9847-82a889106662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53470", "type": "seen", "source": "https://t.me/cvedetector/12118", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53470 - Multiple stored cross-site scripting (XSS) vulnera\", \n  \"Content\": \"CVE ID : CVE-2024-53470 \nPublished : Dec. 5, 2024, 4:15 p.m. | 35\u00a0minutes ago \nDescription : Multiple stored cross-site scripting (XSS) vulnerabilities in the component /configuracao/gateway_pagamento.php of WeGIA v3.2.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the id or name parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-05T17:52:18.000000Z"}, {"uuid": "f001fe1e-d8e2-474a-9c26-d2eaf1a1b04a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53477", "type": "seen", "source": "https://t.me/cvedetector/11821", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53477 - JFinal CMS Deserialization Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53477 \nPublished : Dec. 2, 2024, 9:15 p.m. | 39\u00a0minutes ago \nDescription : JFinal CMS 5.1.0 is vulnerable to Command Execution via unauthorized execution of deserialization in the file ApiForm.java \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-02T22:56:27.000000Z"}]}