Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Wed, 06 May 2026 15:45:49 +0000 bf6cc2c8-b160-484b-9d54-9ac8d6c389b3 https://vulnerability.circl.lu/sighting/bf6cc2c8-b160-484b-9d54-9ac8d6c389b3/export {"uuid": "bf6cc2c8-b160-484b-9d54-9ac8d6c389b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45059", "type": "seen", "source": "https://t.me/cvedetector/4358", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45059 - i-Educar SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-45059 \nPublished : Aug. 28, 2024, 9:15 p.m. | 42\u00a0minutes ago \nDescription : i-Educar is free, completely online school management software that allows school secretaries, teachers, coordinators and area managers. In affected versions Creating a SQL query from a concatenation of a user-controlled GET parameter allows an attacker to manipulate the query. Successful exploitation of this flaw allows an attacker to have complete and unrestricted access to the database, with a web user with minimal permissions. This may involve obtaining user information, such as emails, password hashes, etc. This issue has not yet been patched. Users are advised to contact the developer and to coordinate an update schedule. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"28 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T00:19:46.000000Z"} {"uuid": "bf6cc2c8-b160-484b-9d54-9ac8d6c389b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-45059", "type": "seen", "source": "https://t.me/cvedetector/4358", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-45059 - i-Educar SQL Injection\", \n \"Content\": \"CVE ID : CVE-2024-45059 \nPublished : Aug. 28, 2024, 9:15 p.m. | 42\u00a0minutes ago \nDescription : i-Educar is free, completely online school management software that allows school secretaries, teachers, coordinators and area managers. In affected versions Creating a SQL query from a concatenation of a user-controlled GET parameter allows an attacker to manipulate the query. Successful exploitation of this flaw allows an attacker to have complete and unrestricted access to the database, with a web user with minimal permissions. This may involve obtaining user information, such as emails, password hashes, etc. This issue has not yet been patched. Users are advised to contact the developer and to coordinate an update schedule. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"28 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T00:19:46.000000Z"} https://vulnerability.circl.lu/sighting/bf6cc2c8-b160-484b-9d54-9ac8d6c389b3/export Thu, 29 Aug 2024 00:19:46 +0000