{"vulnerability": "CVE-2024-1125", "sightings": [{"uuid": "ab894cc8-1ad9-4a7b-b3c3-e4d11fafa8b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11250", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488202379524464", "content": "", "creation_timestamp": "2024-11-15T17:42:21.691137Z"}, {"uuid": "22a3425a-0ccc-4a20-9ead-0c79a08167fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11256", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488636379761796", "content": "", "creation_timestamp": "2024-11-15T19:32:44.005948Z"}, {"uuid": "3a1d2e89-5c93-4f0c-b921-647f1330f16f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11257", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488636395302532", "content": "", "creation_timestamp": "2024-11-15T19:32:44.385272Z"}, {"uuid": "c66d0d7c-f055-4397-a664-11282ec5b3aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11259", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488766530113871", "content": "", "creation_timestamp": "2024-11-15T20:05:50.093649Z"}, {"uuid": "00dc7d28-cb9f-45cd-b144-949d8b081eff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11250", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488187855034580", "content": "", "creation_timestamp": "2024-11-15T17:38:40.130972Z"}, {"uuid": "ce07e5b9-efb6-435f-a802-ce6d5beea2b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11258", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488766514977825", "content": "", "creation_timestamp": "2024-11-15T20:05:50.050190Z"}, {"uuid": "ed2a82dc-48ef-4134-825f-c90779ba1a11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11251", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488279841242833", "content": "", "creation_timestamp": "2024-11-15T18:02:03.673034Z"}, {"uuid": "1a0d31a5-523a-4b82-85bb-6f7b65134d70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11252", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113570317831125518", "content": "", "creation_timestamp": "2024-11-30T05:45:24.740248Z"}, {"uuid": "b8ee5863-a2f8-4573-bca5-a28b950f76eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11254", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113671721663188781", "content": "", "creation_timestamp": "2024-12-18T03:33:43.687630Z"}, {"uuid": "33cce336-0075-4796-929c-94f3fe2f346e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11253", "type": "seen", "source": "https://t.me/cvedetector/20027", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11253 - Zyxel DNSServer Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11253 \nPublished : March 11, 2025, 2:15 a.m. | 1\u00a0hour, 27\u00a0minutes ago \nDescription : A post-authentication command injection vulnerability in the \"DNSServer\u201d parameter of the diagnostic function in the Zyxel VMG8825-T50K firmware version V5.50(ABOM.8.5)C0 and earlier could allow an authenticated attacker with administrator privileges to execute operating system (OS) commands on a vulnerable device. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T05:05:01.000000Z"}, {"uuid": "21e06932-61f2-46bd-bd13-db196a1476dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11253", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk3ey3d3mp2h", "content": "", "creation_timestamp": "2025-03-11T05:55:24.327433Z"}, {"uuid": "14293902-f278-42df-bc82-1634c2c5bf41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11252", "type": "seen", "source": "https://t.me/cvedetector/11679", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11252 - The Social Sharing Plugin \u2013 Sassy Social Share plu\", \n  \"Content\": \"CVE ID : CVE-2024-11252 \nPublished : Nov. 30, 2024, 6:15 a.m. | 6\u00a0hours, 20\u00a0minutes ago \nDescription : The Social Sharing Plugin \u2013 Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateor_mastodon_share parameter in all versions up to, and including, 3.3.69 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-30T14:04:19.000000Z"}, {"uuid": "a76e6fe9-6266-436e-bcfe-510e3c745834", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11254", "type": "seen", "source": "https://t.me/cvedetector/13152", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11254 - AMP for WP \u2013 Accelerated Mobile Pages WordPress Reflected Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11254 \nPublished : Dec. 18, 2024, 4:15 a.m. | 43\u00a0minutes ago \nDescription : The AMP for WP \u2013 Accelerated Mobile Pages plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the disqus_name parameter in all versions up to, and including, 1.1.1 due to insufficient input validation. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T06:09:49.000000Z"}, {"uuid": "1424f76b-7bde-4e10-a04c-8c48a2ccac29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11256", "type": "seen", "source": "https://t.me/cvedetector/11181", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11256 - \"1000 Projects Portfolio Management System MCA SQL Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-11256 \nPublished : Nov. 15, 2024, 8:15 p.m. | 23\u00a0minutes ago \nDescription : A vulnerability was found in 1000 Projects Portfolio Management System MCA 1.0 and classified as critical. This issue affects some unknown processing of the file /login.php. The manipulation of the argument username leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T21:39:23.000000Z"}, {"uuid": "095e7d45-4a2c-4e21-bc1f-3f9c60207a73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11257", "type": "seen", "source": "https://t.me/cvedetector/11178", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11257 - 1000 Projects Beauty Parlour Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11257 \nPublished : Nov. 15, 2024, 8:15 p.m. | 23\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in 1000 Projects Beauty Parlour Management System 1.0. This affects an unknown part of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T21:39:18.000000Z"}, {"uuid": "0f6f4668-9cb6-4230-a56d-29bb1259032b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11258", "type": "seen", "source": "https://t.me/cvedetector/11179", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11258 - \"1000 Projects Beauty Parlour Management System SQL Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-11258 \nPublished : Nov. 15, 2024, 8:15 p.m. | 23\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in 1000 Projects Beauty Parlour Management System 1.0. This vulnerability affects unknown code of the file /admin/index.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T21:39:18.000000Z"}, {"uuid": "05cb6076-ceeb-4e66-84b2-e94954c18ad6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11259", "type": "seen", "source": "https://t.me/cvedetector/11177", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11259 - Farmacia Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11259 \nPublished : Nov. 15, 2024, 8:15 p.m. | 23\u00a0minutes ago \nDescription : A vulnerability, which was classified as problematic, has been found in code-projects Farmacia 1.0. This issue affects some unknown processing of the file /fornecedores.php. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 3.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T21:39:17.000000Z"}, {"uuid": "5473edd2-55a2-40c3-aead-35ce2dde1c4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1125", "type": "seen", "source": "https://t.me/ctinow/203820", "content": "https://ift.tt/1Io5bTk\nCVE-2024-1125", "creation_timestamp": "2024-03-09T08:26:52.000000Z"}, {"uuid": "fe5a6bd1-7030-4173-b51c-c03be1282772", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1125", "type": "seen", "source": "https://t.me/ctinow/203814", "content": "https://ift.tt/1Io5bTk\nCVE-2024-1125", "creation_timestamp": "2024-03-09T08:26:44.000000Z"}]}