{"vulnerability": "cve-2024-5709", "sightings": [{"uuid": "54d6b14b-66e8-4c6e-b60c-961d267776ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57099", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhetrfhlmu24", "content": "", "creation_timestamp": "2025-02-04T19:58:29.434986Z"}, {"uuid": "808252af-71d9-4101-aea6-0c1557d2b4af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57098", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhetrfl5yb2f", "content": "", "creation_timestamp": "2025-02-04T19:58:30.026427Z"}, {"uuid": "7400dc25-2ab2-4cd3-a5fa-a0591365b67d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57097", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113941758520768830", "content": "", "creation_timestamp": "2025-02-03T20:07:39.184759Z"}, {"uuid": "b6460ad1-ad57-46e0-b279-c7c513e5df58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57097", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhceck54hs2j", "content": "", "creation_timestamp": "2025-02-03T20:16:24.811130Z"}, {"uuid": "e7ca1231-cfec-4a24-ae4f-9f29bd8e36f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57098", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhcecmgr7j2t", "content": "", "creation_timestamp": "2025-02-03T20:16:27.428471Z"}, {"uuid": "6a8459b7-31f6-4424-a168-cb6d7e6ce1ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57099", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhcecp7baj2t", "content": "", "creation_timestamp": "2025-02-03T20:16:30.323402Z"}, {"uuid": "0ce057c6-1ab7-46a4-bb7d-61803f08ad5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57095", "type": "seen", "source": "https://gist.github.com/wjlin0/ff3ee8afb8f8001faff89bbc03805605", "content": "", "creation_timestamp": "2025-01-24T16:37:59.000000Z"}, {"uuid": "53b4e08e-dd96-47fd-934b-cbee3cb5d02f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57099", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113946638149281952", "content": "", "creation_timestamp": "2025-02-04T16:48:36.870686Z"}, {"uuid": "979f7bfc-3411-4993-8561-c0c735ae1e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57098", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113946638088629147", "content": "", "creation_timestamp": "2025-02-04T16:48:37.294602Z"}, {"uuid": "5cc24e37-92f5-4c50-97c9-1297a0fbad95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57095", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3005", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57095\n\ud83d\udd39 Description: SQL injection vulnerability in Go-CMS v.1.1.10 allows a remote attacker to execute arbitrary code via a crafted payload.\n\ud83d\udccf Published: 2025-01-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-24T19:46:35.010Z\n\ud83d\udd17 References:\n1. https://github.com/Xi-Yuer/GO-CMS/issues/6\n2. https://gist.github.com/wjlin0/ff3ee8afb8f8001faff89bbc03805605", "creation_timestamp": "2025-01-24T20:04:49.000000Z"}, {"uuid": "de6d6c99-3cae-4a14-b204-575f5d3c9ec5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57098", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lhekj5czhi2t", "content": "", "creation_timestamp": "2025-02-04T17:12:49.513887Z"}, {"uuid": "eb0e65cc-7b3c-45a2-bc90-1049c0ffafc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57099", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lhekj5mvui2t", "content": "", "creation_timestamp": "2025-02-04T17:12:50.341297Z"}, {"uuid": "7fb36f82-1ae6-4904-909e-aa243d586cdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57095", "type": "seen", "source": "https://t.me/cvedetector/16344", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57095 - Go-CMS SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57095 \nPublished : Jan. 24, 2025, 8:15 p.m. | 40\u00a0minutes ago \nDescription : SQL injection vulnerability in Go-CMS v.1.1.10 allows a remote attacker to execute arbitrary code via a crafted payload. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-24T21:56:25.000000Z"}, {"uuid": "3042089d-c80e-4034-a3a8-7cb43cba9348", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57096", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16403", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57096\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in wps office before v.19302 allows a local attacker to obtain sensitive information via a crafted file.\n\ud83d\udccf Published: 2025-05-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-14T19:59:07.012Z\n\ud83d\udd17 References:\n1. https://github.com/paokuwansui/wps_exp/blob/main/README", "creation_timestamp": "2025-05-14T20:32:33.000000Z"}, {"uuid": "0b49507d-b0c3-45e2-82f6-40dffac13af4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57098", "type": "seen", "source": "https://t.me/cvedetector/17105", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57098 - Moss SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57098 \nPublished : Feb. 3, 2025, 8:15 p.m. | 22\u00a0minutes ago \nDescription : Moss v0.1.3 version has an SQL injection vulnerability that allows attackers to inject carefully designed payloads into the order parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-03T22:00:03.000000Z"}, {"uuid": "5c48cce2-a566-4678-909c-13885e71cfdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5709", "type": "seen", "source": "https://t.me/cvedetector/2540", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5709 - WordPress WPBakery Visual Composer Local File Inclusion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-5709 \nPublished : Aug. 6, 2024, 6:15 a.m. | 44\u00a0minutes ago \nDescription : The WPBakery Visual Composer plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 7.7 via the 'layout_name' parameter. This makes it possible for authenticated attackers, with Author-level access and above, and with post permissions granted by an Administrator, to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other \u201csafe\u201d file types can be uploaded and included. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-06T09:09:11.000000Z"}, {"uuid": "e1682a3e-d39c-4ecb-bbdc-bba97918e78c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57097", "type": "seen", "source": "https://t.me/cvedetector/17111", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57097 - ClassCMS XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57097 \nPublished : Feb. 3, 2025, 8:15 p.m. | 22\u00a0minutes ago \nDescription : ClassCMS 4.8 is vulnerable to Cross Site Scripting (XSS) in class/admin/channel.php. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-03T22:00:11.000000Z"}, {"uuid": "78c1de4e-e936-4d42-bbd3-ee8b14d3d026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57099", "type": "seen", "source": "https://t.me/cvedetector/17106", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57099 - ClassCMS Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57099 \nPublished : Feb. 3, 2025, 8:15 p.m. | 22\u00a0minutes ago \nDescription : ClassCMS v4.8 has a code execution vulnerability. Attackers can exploit this vulnerability by constructing a payload in the classview parameter of the model management feature, allowing them to execute arbitrary code and potentially take control of the server. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-03T22:00:04.000000Z"}]}