https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 07 May 2026 11:50:03 +0000 https://vulnerability.circl.lu/sighting/2cb9b02f-804b-4d31-be77-8ae049d09b9e/export {"uuid": "2cb9b02f-804b-4d31-be77-8ae049d09b9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7906", "type": "seen", "source": "https://t.me/cvedetector/3444", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-7906 - DedeBIZ Unrestricted File Upload Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-7906 \nPublished : Aug. 18, 2024, 2:15 p.m. | 18\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in DedeBIZ 6.3.0. This vulnerability affects the function get_mime_type of the file /admin/dialog/select_images_post.php of the component Attachment Settings. The manipulation of the argument upload leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"18 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-18T16:36:08.000000Z"} {"uuid": "2cb9b02f-804b-4d31-be77-8ae049d09b9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-7906", "type": "seen", "source": "https://t.me/cvedetector/3444", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2024-7906 - DedeBIZ Unrestricted File Upload Vulnerability\", \n \"Content\": \"CVE ID : CVE-2024-7906 \nPublished : Aug. 18, 2024, 2:15 p.m. | 18\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in DedeBIZ 6.3.0. This vulnerability affects the function get_mime_type of the file /admin/dialog/select_images_post.php of the component Attachment Settings. The manipulation of the argument upload leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. NOTE: The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"18 Aug 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-18T16:36:08.000000Z"} https://vulnerability.circl.lu/sighting/2cb9b02f-804b-4d31-be77-8ae049d09b9e/export Sun, 18 Aug 2024 16:36:08 +0000