{"vulnerability": "CVE-2024-1042", "sightings": [{"uuid": "abc8cd57-e519-418c-a396-2af5e63b602f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10426", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:57.000000Z"}, {"uuid": "e2440134-9a58-4fbf-a0b7-09b0be41604e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10426", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:32.000000Z"}, {"uuid": "3edef398-18da-4243-b09e-1e1e47f9ae91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10429", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:31.000000Z"}, {"uuid": "614ab211-ad0b-4168-b4d9-6605d4571cf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10428", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:32.000000Z"}, {"uuid": "13427f60-1bff-4e4f-a40f-09647ff7bc8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10429", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:57.000000Z"}, {"uuid": "6d9ed09e-9607-4b69-b986-f91b2134e042", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10428", "type": "seen", "source": "https://t.me/cvedetector/9068", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10428 - WAVLINK Wireless Router DHCP Gateway Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10428 \nPublished : Oct. 27, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been rated as critical. This issue affects the function set_ipv6 of the file firewall.cgi. The manipulation of the argument dhcpGateway leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T22:35:39.000000Z"}, {"uuid": "6fbbd1a2-9b8f-4bd9-8e2e-d000f24b1c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10428", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:57.000000Z"}, {"uuid": "03b3ec39-5e1d-43c7-9cc8-3fc5f06fc568", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10422", "type": "seen", "source": "https://t.me/cvedetector/9061", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10422 - SourceCodester Attendance and Payroll System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10422 \nPublished : Oct. 27, 2024, 6:15 p.m. | 44\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, has been found in SourceCodester Attendance and Payroll System 1.0. This issue affects some unknown processing of the file /admin/overtime_add.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T20:05:06.000000Z"}, {"uuid": "6c894f9c-605d-4011-8847-b2324cd06d27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10421", "type": "seen", "source": "https://t.me/cvedetector/9060", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10421 - SourceCodester Attendance and Payroll System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10421 \nPublished : Oct. 27, 2024, 5:15 p.m. | 44\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in SourceCodester Attendance and Payroll System 1.0. This vulnerability affects unknown code of the file /admin/overtime_row.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T19:14:55.000000Z"}, {"uuid": "cc8cf7be-7623-4c75-990a-e795af7b6ac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10429", "type": "seen", "source": "https://t.me/cvedetector/9067", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10429 - WAVLINK Wireless Routers IPv6 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10429 \nPublished : Oct. 27, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. Affected is the function set_ipv6 of the file internet.cgi. The manipulation of the argument IPv6OpMode/IPv6IPAddr/IPv6WANIPAddr/IPv6GWAddr leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T22:35:39.000000Z"}, {"uuid": "1da486d6-d734-4e5f-8385-f4daa54f502d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10427", "type": "seen", "source": "https://t.me/cvedetector/9066", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10427 - Codezips Pet Shop Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10427 \nPublished : Oct. 27, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /deleteanimal.php. The manipulation of the argument t1 leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The initial researcher advisory mentions the parameter \"refno\" to be affected. But further inspection indicates that the name of the affected parameter is \"t1\". \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T21:45:28.000000Z"}, {"uuid": "35d0a2f3-daa1-42cb-8f99-fe5edd4ba2c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10426", "type": "seen", "source": "https://t.me/cvedetector/9065", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10426 - Codezips Pet Shop Management System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-10426 \nPublished : Oct. 27, 2024, 8:15 p.m. | 27\u00a0minutes ago \nDescription : A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /animalsadd.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The initial researcher advisory mentions the parameter \"refno\" to be affected. But further inspection indicates that the name of the affected parameter is \"id\". \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T21:45:28.000000Z"}, {"uuid": "72cb818d-3875-43c6-9bf1-7c806a7e6e9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10424", "type": "seen", "source": "https://t.me/cvedetector/9063", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10424 - Project Worlds Student Project Allocation System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10424 \nPublished : Oct. 27, 2024, 7:15 p.m. | 35\u00a0minutes ago \nDescription : A vulnerability has been found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /student/project_selection/remove_project.php of the component Project Selection Page. The manipulation of the argument no leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T20:55:17.000000Z"}, {"uuid": "bbed5bf4-05bb-43e0-88ea-b45617e78283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10425", "type": "seen", "source": "https://t.me/cvedetector/9064", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10425 - Project Worlds Student Project Allocation System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10425 \nPublished : Oct. 27, 2024, 7:15 p.m. | 35\u00a0minutes ago \nDescription : A vulnerability was found in Project Worlds Student Project Allocation System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /student/project_selection/move_up_project.php of the component Project Selection Page. The manipulation of the argument up leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T20:55:18.000000Z"}, {"uuid": "7df334ad-963f-412d-94ba-bb5b9bcf89b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10423", "type": "seen", "source": "https://t.me/cvedetector/9062", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10423 - \"Project Worlds Student Project Allocation System SQL Injection\"\", \n  \"Content\": \"CVE ID : CVE-2024-10423 \nPublished : Oct. 27, 2024, 6:15 p.m. | 44\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in Project Worlds Student Project Allocation System 1.0. Affected is an unknown function of the file /student/project_selection/project_selection.php of the component Project Selection Page. The manipulation of the argument project_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T20:05:07.000000Z"}, {"uuid": "542f35be-0899-493d-97df-ec0ff4727b66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10420", "type": "seen", "source": "https://t.me/cvedetector/9059", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10420 - SourceCodester Attendance and Payroll System Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10420 \nPublished : Oct. 27, 2024, 4:15 p.m. | 42\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in SourceCodester Attendance and Payroll System 1.0. This affects the function upload of the file /marimar/guest/update.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-27T18:24:44.000000Z"}]}