https://vulnerability.circl.lu/sightings/feed 2026-05-05T11:27:25.795645+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/5bb7cf0d-48ad-497a-aeec-32722546b495/export 2026-05-05T11:27:26.171742+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "5bb7cf0d-48ad-497a-aeec-32722546b495", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39907", "type": "seen", "source": "https://t.me/cvedetector/1155", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-39907 - Panel SQL Injection Vulnerability: RCE Through Unfiltered File Writes\", \n \"Content\": \"CVE ID : CVE-2024-39907 \nPublished : July 18, 2024, 4:15 p.m. | 39\u00a0minutes ago \nDescription : 1Panel is a web-based linux server management control panel. There are many sql injections in the project, and some of them are not well filtered, leading to arbitrary file writes, and ultimately leading to RCEs. These sql injections have been resolved in version 1.10.12-tls. Users are advised to upgrade. There are no known workarounds for these issues. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"18 Jul 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-18T19:18:04.000000Z"} 2024-07-18T19:18:04+00:00 https://vulnerability.circl.lu/sighting/9afa80fc-c96c-4754-bad7-3ba53e8d4942/export 2026-05-05T11:27:26.171626+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "9afa80fc-c96c-4754-bad7-3ba53e8d4942", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39907", "type": "published-proof-of-concept", "source": "https://t.me/HackingInsights/7005", "content": "\u200aCVE-2024-39907 (CVSS 9.8): SQLi Flaw Exposes 1Panel Users to Remote Takeover, PoC Published\n\nhttps://securityonline.info/cve-2024-39907-cvss-9-8-sqli-flaw-exposes-1panel-users-to-remote-takeover-poc-published/", "creation_timestamp": "2024-07-23T10:41:54.000000Z"} 2024-07-23T10:41:54+00:00 https://vulnerability.circl.lu/sighting/0deb8621-edfb-47a0-8ca4-17a79e5722c7/export 2026-05-05T11:27:26.171511+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "0deb8621-edfb-47a0-8ca4-17a79e5722c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39907", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2834", "content": "https://github.com/1Panel-dev/1Panel/security/advisories/GHSA-5grx-v727-qmq6\n\ncve-2024-39907\n#github #poc", "creation_timestamp": "2024-07-23T17:20:16.000000Z"} 2024-07-23T17:20:16+00:00 https://vulnerability.circl.lu/sighting/a0d59c65-9759-4dfc-8145-904ea583cbf6/export 2026-05-05T11:27:26.171348+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "a0d59c65-9759-4dfc-8145-904ea583cbf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39907", "type": "published-proof-of-concept", "source": "https://t.me/Kelvinseccommunity/592", "content": "#exploit\n1. CVE-2024-40348:\nUnauth directory traversal in Bazaar 1.4.3\nhttps://github.com/bigb0x/CVE-2024-40348\n\n2. CVE-2024-39907:\nSQLi in Linux 1Panel\nhttps://github.com/1Panel-dev/1Panel/security/advisories/GHSA-5grx-v727-qmq6", "creation_timestamp": "2024-07-26T05:11:20.000000Z"} 2024-07-26T05:11:20+00:00 https://vulnerability.circl.lu/sighting/d8f273f2-1902-425b-971f-02854188ef6f/export 2026-05-05T11:27:26.169528+00:00 Automation user http://vulnerability.circl.lu/user/automation {"uuid": "d8f273f2-1902-425b-971f-02854188ef6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39907", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10884", "content": "#exploit\n1. CVE-2024-40348:\nUnauth directory traversal in Bazaar 1.4.3\nhttps://github.com/bigb0x/CVE-2024-40348\n\n2. CVE-2024-39907:\nSQLi in Linux 1Panel\nhttps://github.com/1Panel-dev/1Panel/security/advisories/GHSA-5grx-v727-qmq6", "creation_timestamp": "2024-07-27T12:01:41.000000Z"} 2024-07-27T12:01:41+00:00