https://vulnerability.circl.lu/sightings/feedMost recent sightings.2026-05-09T11:22:03.381292+00:00Vulnerability-Lookupinfo@circl.lupython-feedgenContains only the most 10 recent sightings.https://vulnerability.circl.lu/sighting/da5500c8-7cdd-4497-a054-87aab06b3145/exportda5500c8-7cdd-4497-a054-87aab06b31452026-05-09T11:22:03.773098+00:00Automation userhttp://vulnerability.circl.lu/user/automation{"uuid": "da5500c8-7cdd-4497-a054-87aab06b3145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-9507", "type": "seen", "source": "https://t.me/cvedetector/7664", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-9507 - Bit Form WordPress Contact Form Arbitrary File Read Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-9507 \nPublished : Oct. 11, 2024, 1:15 p.m. | 36\u00a0minutes ago \nDescription : The Contact Form by Bit Form: Multi Step Form, Calculation Contact Form, Payment Contact Form & Custom Contact Form builder plugin for WordPress is vulnerable to arbitrary file read in all versions up to, and including, 2.15.2 due to improper input validation within the iconUpload function. This makes it possible for authenticated attackers, with Administrator-level access and above, to leverage a PHP filter chain attack and read the contents of arbitrary files on the server, which can contain sensitive information. \nSeverity: 4.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"11 Oct 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-11T16:10:39.000000Z"}2024-10-11T16:10:39+00:00