https://vulnerability.circl.lu/sightings/feed 2026-05-04T14:48:20.281835+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/d08aca5b-a588-46ad-8009-4df20c260a57/export 2026-05-04T14:48:20.637667+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "d08aca5b-a588-46ad-8009-4df20c260a57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24926", "type": "seen", "source": "https://t.me/ctinow/182960", "content": "https://ift.tt/uiW6pEx\nCVE-2024-24926", "creation_timestamp": "2024-02-12T09:21:27.000000Z"} 2024-02-12T09:21:27+00:00 https://vulnerability.circl.lu/sighting/ad875dd3-d308-4134-8ad3-9720a115d9d5/export 2026-05-04T14:48:20.637584+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "ad875dd3-d308-4134-8ad3-9720a115d9d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24926", "type": "seen", "source": "https://t.me/ctinow/198777", "content": "https://ift.tt/HbcuMFO\nCVE-2024-24926 | UnitedThemes Brooklyn Theme up to 4.9.7.6 on WordPress deserialization", "creation_timestamp": "2024-03-03T15:21:55.000000Z"} 2024-03-03T15:21:55+00:00 https://vulnerability.circl.lu/sighting/1ad95d1a-8aa9-4161-9d1d-15bce081929d/export 2026-05-04T14:48:20.637494+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "1ad95d1a-8aa9-4161-9d1d-15bce081929d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24926", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9372", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aVulnerabilidad CVE-2024-24926 afecta al tema Brooklyn de WordPress\nURL\uff1ahttps://github.com/moften/CVE-2024-24926\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-10T19:16:32.000000Z"} 2024-12-10T19:16:32+00:00 https://vulnerability.circl.lu/sighting/589fade5-1094-4f99-a1b9-09871f8d2f6c/export 2026-05-04T14:48:20.637397+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "589fade5-1094-4f99-a1b9-09871f8d2f6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24926", "type": "published-proof-of-concept", "source": "https://t.me/four_rays/24", "content": "\u0421\u043d\u043e\u0432\u0430 Wordpress, \u0441\u043d\u043e\u0432\u0430 \u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044f \u0434\u0430\u043d\u043d\u044b\u0445\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-24926 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u043e\u0431\u044a\u0435\u043a\u0442\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0449\u0438\u0439 \u0442\u0435\u043c\u0443 WordPress Brooklyn (\u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u043e 4.9.7.6). \u041f\u043e\u0442\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0434\u0430\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043a\u043e\u0434\u0430.\n\nCWE-502\n\nCVSS 7,5 (\u0432\u044b\u0441\u043e\u043a\u0438\u0439)\n\n\u041d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u043c \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c\u0441\u044f!\n\nPoC \u0443\u0436\u0435 \u043c\u043e\u0436\u043d\u043e \u043d\u0430\u0439\u0442\u0438 \u043d\u0430 \u043f\u0440\u043e\u0441\u0442\u043e\u0440\u0430\u0445 github. \u041f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u043c \u043f\u043e\u043b\u0435\u0437\u043d\u0443\u044e \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443, \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u0443\u044e \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438:\ndata=O:15:\"MaliciousObject\":1:{s:3:\"cmd\";s:14:\"system('whoami')\n\n\u041c\u0435\u0445\u0430\u043d\u0438\u0437\u043c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0441\u0445\u043e\u0436 \u0441 CVE-2024-52433, \u0435\u0434\u0438\u043d\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0435 \u0440\u0430\u0437\u043b\u0438\u0447\u0438\u0435 \u2014 \u044d\u0442\u043e \u0440\u0430\u0441\u043f\u043e\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u043f\u043e\u043b\u0435\u0437\u043d\u043e\u0439 \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0438.\n\n\u0415\u0441\u043b\u0438 \u0432\u044b \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0435 WordPress Brooklyn, \u0442\u043e \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0441\u043e\u0432\u0435\u0442\u0443\u0435\u043c \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u0442\u044c POST-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u0441 body, \u0441\u043e\u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u043c \u0440\u0435\u0433\u0443\u043b\u044f\u0440\u043d\u043e\u043c\u0443 \u0432\u044b\u0440\u0430\u0436\u0435\u043d\u0438\u044e:\nO:\\d+:\\\"[a-zA-Z0-9_-]+\\\":\\d+:(\\{s:\\d+:\\\"[a-zA-Z0-9_-]+\\\";(a|s|i|b|O):\\d+|{})", "creation_timestamp": "2024-12-11T15:01:35.000000Z"} 2024-12-11T15:01:35+00:00 https://vulnerability.circl.lu/sighting/52f6e0c1-ee1e-44e2-b2cb-96af144f25db/export 2026-05-04T14:48:20.637264+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "52f6e0c1-ee1e-44e2-b2cb-96af144f25db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24926", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9387", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aVulnerabilidad CVE-2024-24926 afecta al tema Brooklyn de WordPress\nURL\uff1ahttps://github.com/TalatumLabs/CVE-2024-0012_CVE-2024-9474_PoC\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-11T18:14:58.000000Z"} 2024-12-11T18:14:58+00:00 https://vulnerability.circl.lu/sighting/6f95344a-17c0-4f82-88ce-0193e148922e/export 2026-05-04T14:48:20.634178+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "6f95344a-17c0-4f82-88ce-0193e148922e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-24926", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9389", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aVulnerabilidad CVE-2024-24926 afecta al tema Brooklyn de WordPress\nURL\uff1ahttps://github.com/D3N14LD15K/CVE-2024-11680_PoC_Exploit\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-11T23:50:46.000000Z"} 2024-12-11T23:50:46+00:00