{"vulnerability": "CVE-2024-1000", "sightings": [{"uuid": "c2186a78-cf73-4e36-8521-55aa32fd7351", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10007", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113443694305327790", "content": "", "creation_timestamp": "2024-11-07T21:03:22.368265Z"}, {"uuid": "c9967c45-eef3-44bd-90fb-bf5e8b1ec27c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10001", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgw3xdd5pt2g", "content": "", "creation_timestamp": "2025-01-29T23:15:02.328979Z"}, {"uuid": "a5a444d3-6b6e-4d71-be53-bbeaccf2712f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10001", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113913080346918193", "content": "", "creation_timestamp": "2025-01-29T18:34:25.060055Z"}, {"uuid": "e420f800-7ff7-4512-9464-a17840b39bf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10001", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgvolcmq6n2f", "content": "", "creation_timestamp": "2025-01-29T19:15:40.049599Z"}, {"uuid": "870434e2-2208-4c1d-baff-dd9b10685e1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10005", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1144", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10005\n\ud83d\udd39 Description: A vulnerability was identified in Consul and Consul Enterprise (\u201cConsul\u201d) such that using URL paths in L7 traffic intentions could bypass HTTP request path-based access rules.\n\ud83d\udccf Published: 2024-10-30T21:19:22.576Z\n\ud83d\udccf Modified: 2025-01-10T13:06:39.935Z\n\ud83d\udd17 References:\n1. https://discuss.hashicorp.com/t/hcsec-2024-22-consul-l7-intentions-vulnerable-to-url-path-bypass", "creation_timestamp": "2025-01-10T14:06:33.000000Z"}, {"uuid": "342cf50f-527b-40fc-874e-2e55c67524af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10006", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1143", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10006\n\ud83d\udd39 Description: A vulnerability was identified in Consul and Consul Enterprise (\u201cConsul\u201d) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules.\n\ud83d\udccf Published: 2024-10-30T21:20:37.011Z\n\ud83d\udccf Modified: 2025-01-10T13:06:41.296Z\n\ud83d\udd17 References:\n1. https://discuss.hashicorp.com/t/hcsec-2024-23-consul-l7-intentions-vulnerable-to-headers-bypass", "creation_timestamp": "2025-01-10T14:06:31.000000Z"}, {"uuid": "be678c6b-b1fa-40fe-a988-f6fe7a6b46d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10005", "type": "seen", "source": "https://t.me/cvedetector/9479", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10005 - Consul Path Bypassing L7 HTTP Request Access Rule Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10005 \nPublished : Oct. 30, 2024, 10:15 p.m. | 37\u00a0minutes ago \nDescription : A vulnerability was identified in Consul and Consul Enterprise (\u201cConsul\u201d) such that using URL paths in L7 traffic intentions could bypass HTTP request path-based access rules. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-31T00:13:55.000000Z"}, {"uuid": "a17f3b9b-37f2-4ceb-a4a2-ed095a280fe0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10001", "type": "seen", "source": "https://t.me/cvedetector/16697", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10001 - GitHub Enterprise Server Code Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10001 \nPublished : Jan. 29, 2025, 7:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : A Code Injection vulnerability was identified in GitHub Enterprise Server that allowed attackers to inject malicious code into the query selector via the identity property in the message handling function. This\u00a0enabled the exfiltration of sensitive data by manipulating the DOM, including authentication tokens.\u00a0To execute the attack, the victim must be logged into GitHub and interact with the attacker controlled malicious webpage containing the hidden iframe.\u00a0This vulnerability occurs due to an improper sequence of validation, where the origin check occurs after accepting the user-controlled\u00a0identity property.\u00a0This vulnerability affected all versions of GitHub Enterprise Server prior to 3.11.16, 3.12.10, 3.13.5, 3.14.2, and 3.15.0. This vulnerability was reported via the GitHub Bug Bounty program. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-29T21:32:21.000000Z"}, {"uuid": "6de0fc2d-35a8-4db0-95b6-4c0d348b8408", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10001", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3409", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10001\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A Code Injection vulnerability was identified in GitHub Enterprise Server that allowed attackers to inject malicious code into the query selector via the identity property in the message handling function. This\u00a0enabled the exfiltration of sensitive data by manipulating the DOM, including authentication tokens.\u00a0To execute the attack, the victim must be logged into GitHub and interact with the attacker controlled malicious webpage containing the hidden iframe.\u00a0This vulnerability occurs due to an improper sequence of validation, where the origin check occurs after accepting the user-controlled\u00a0identity property.\u00a0This vulnerability affected all versions of GitHub Enterprise Server prior to 3.11.16, 3.12.10, 3.13.5, 3.14.2, and 3.15.0. This vulnerability was reported via the GitHub Bug Bounty program.\n\ud83d\udccf Published: 2025-01-29T21:31:24Z\n\ud83d\udccf Modified: 2025-01-29T21:31:24Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-10001\n2. https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.17\n3. https://docs.github.com/en/enterprise-server@3.12/admin/release-notes#3.12.11\n4. https://docs.github.com/en/enterprise-server@3.13/admin/release-notes#3.13.6\n5. https://docs.github.com/en/enterprise-server@3.14/admin/release-notes#3.14.3\n6. https://docs.github.com/en/enterprise-server@3.15/admin/release-notes#3.15.0", "creation_timestamp": "2025-01-29T22:10:59.000000Z"}, {"uuid": "7a1c92cf-b86d-42b6-adcd-1031165a7ab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10009", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17001", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-10009\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Melapress File Monitor WordPress plugin before 2.1.0 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks\n\ud83d\udccf Published: 2025-05-15T20:06:39.335Z\n\ud83d\udccf Modified: 2025-05-20T16:16:16.662Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/c2b1f9f4-d5f3-4975-afd1-50eaf193e2ab/", "creation_timestamp": "2025-05-20T16:40:45.000000Z"}, {"uuid": "9ef93f64-d5ba-45e5-a06e-0cb974393789", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10008", "type": "seen", "source": "https://t.me/cvedetector/9245", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10008 - Masteriyo LMS WordPress Plugin Role Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10008 \nPublished : Oct. 29, 2024, 6:15 a.m. | 42\u00a0minutes ago \nDescription : The Masteriyo LMS \u2013 eLearning and Online Course Builder for WordPress plugin for WordPress is vulnerable to unauthorized user profile modification due to missing authorization checks on the /wp-json/masteriyo/v1/users/$id REST API endpoint in all versions up to, and including, 1.13.3. This makes it possible for authenticated attackers, with student-level access and above, to modify the roles of arbitrary users. As a result, attackers can escalate their privileges to the Administrator and demote existing administrators to students. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T08:04:36.000000Z"}, {"uuid": "c3d717d8-993d-4e8f-988c-1f8312d05382", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10000", "type": "seen", "source": "https://t.me/cvedetector/9244", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10000 - Masteriyo LMS - WordPress Stored Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-10000 \nPublished : Oct. 29, 2024, 6:15 a.m. | 42\u00a0minutes ago \nDescription : The Masteriyo LMS \u2013 eLearning and Online Course Builder for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the question's content parameter in all versions up to, and including, 1.13.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with student-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-29T08:04:36.000000Z"}, {"uuid": "40040925-59dc-4748-81c9-618783da256c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10006", "type": "seen", "source": "https://t.me/cvedetector/9478", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10006 - \"Consul HTTP Header Bypass\"\", \n  \"Content\": \"CVE ID : CVE-2024-10006 \nPublished : Oct. 30, 2024, 10:15 p.m. | 37\u00a0minutes ago \nDescription : A vulnerability was identified in Consul and Consul Enterprise (\u201cConsul\u201d) such that using Headers in L7 traffic intentions could bypass HTTP header based access rules. \nSeverity: 8.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-31T00:13:55.000000Z"}, {"uuid": "fcbb47a8-cf6c-4984-8fc1-592862409dca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10002", "type": "seen", "source": "https://t.me/cvedetector/8592", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10002 - Rover IDX WordPress Authentication Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10002 \nPublished : Oct. 22, 2024, 5:15 a.m. | 33\u00a0minutes ago \nDescription : The Rover IDX plugin for WordPress is vulnerable to Authentication Bypass in versions up to, and including, 3.0.0.2905. This is due to insufficient validation and capability check on the 'rover_idx_refresh_social_callback' function. This makes it possible for authenticated attackers, with subscriber-level permissions and above, to log in to administrator. The vulnerability is partially patched in version 3.0.0.2905 and fully patched in version 3.0.0.2906. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-22T07:55:37.000000Z"}, {"uuid": "1c198de2-b966-465f-a65c-13c8c9bbece9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10007", "type": "seen", "source": "https://t.me/cvedetector/10128", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10007 - GitHub Enterprise Server Arbitrary Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10007 \nPublished : Nov. 7, 2024, 9:15 p.m. | 22\u00a0minutes ago \nDescription : A path collision and arbitrary code execution vulnerability was identified in GitHub Enterprise Server that allowed container escape and privilege escalation to root via the ghe-firejail path. This vulnerability affected all versions of GitHub Enterprise prior to 3.15 and was fixed in versions 3.14.3, 3.13.6, 3.12.11, and 3.11.17. This vulnerability was reported via the GitHub Bug Bounty program. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-07T22:47:37.000000Z"}, {"uuid": "580f7cde-a791-4b5e-b56a-4470c02bc9e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10003", "type": "seen", "source": "https://t.me/cvedetector/8591", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10003 - Rover IDX WordPress Cross-Site Request Forgery (CSRF) and Unauthorized Data Access\", \n  \"Content\": \"CVE ID : CVE-2024-10003 \nPublished : Oct. 22, 2024, 5:15 a.m. | 33\u00a0minutes ago \nDescription : The Rover IDX plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on multiple functions in all versions up to, and including, 3.0.0.2903. This makes it possible for authenticated attackers, with subscriber-level access and above, to add, modify, or delete plugin options. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-22T07:55:36.000000Z"}, {"uuid": "54fb3826-070e-4f7a-be83-de6974248107", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1000", "type": "seen", "source": "https://t.me/ctinow/175310", "content": "https://ift.tt/dEFbS3s\nCVE-2024-1000", "creation_timestamp": "2024-01-29T15:26:25.000000Z"}, {"uuid": "43615ae5-25e5-4616-993f-7f52f996df57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1000", "type": "seen", "source": "https://t.me/ctinow/189422", "content": "https://ift.tt/j2vEz3Y\nCVE-2024-1000 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setTracerouteCfg command stack-based overflow", "creation_timestamp": "2024-02-21T10:11:33.000000Z"}, {"uuid": "ec8020a5-7a07-432b-9933-d847219e5ce1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1000", "type": "seen", "source": "https://t.me/ctinow/177359", "content": "https://ift.tt/PfniHpk\nCVE-2024-1000 Exploit", "creation_timestamp": "2024-02-01T08:16:27.000000Z"}, {"uuid": "d8da884d-ab23-48ba-9b17-baf331268074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10004", "type": "seen", "source": "https://t.me/cvedetector/7983", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10004 - Firefox for iOS SSL Indicator Forgery\", \n  \"Content\": \"CVE ID : CVE-2024-10004 \nPublished : Oct. 15, 2024, 10:15 p.m. | 44\u00a0minutes ago \nDescription : Opening an external link to an HTTP website when Firefox iOS was previously closed and had an HTTPS tab open could in some cases result in the padlock icon showing an HTTPS indicator incorrectly This vulnerability affects Firefox for iOS < 131.2. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-16T01:18:44.000000Z"}]}