{"vulnerability": "CVE-2024-1131", "sightings": [{"uuid": "7eb1fab5-2423-4107-9644-3de9578e2346", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11318", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113504292200493476", "content": "", "creation_timestamp": "2024-11-18T13:54:12.891114Z"}, {"uuid": "b7c41f79-9d06-46f6-9429-8f31ae25d524", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11319", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113503849027831122", "content": "", "creation_timestamp": "2024-11-18T12:01:30.556123Z"}, {"uuid": "96090eed-a37d-4f04-b68e-24ea8f4fdc1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11312", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502598540431462", "content": "", "creation_timestamp": "2024-11-18T06:43:29.938469Z"}, {"uuid": "0bb0558d-0f42-4cf3-a126-d4e9d181d261", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11310", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502485363718330", "content": "", "creation_timestamp": "2024-11-18T06:14:42.948061Z"}, {"uuid": "260c1c61-2201-4d9f-a4d5-336689b1347d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11311", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502541864078960", "content": "", "creation_timestamp": "2024-11-18T06:29:05.013165Z"}, {"uuid": "d0022f8c-1e81-4488-af36-b64a344d5aed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11315", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502637834127072", "content": "", "creation_timestamp": "2024-11-18T06:53:29.232101Z"}, {"uuid": "17074e3a-3bd4-4609-a412-1171a33ec143", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11311", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113502638150438334", "content": "", "creation_timestamp": "2024-11-18T06:53:33.927866Z"}, {"uuid": "598919f6-63b4-4a41-8177-17a073d37b18", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11313", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502598555392298", "content": "", "creation_timestamp": "2024-11-18T06:43:30.260832Z"}, {"uuid": "97c8857d-168c-4f61-b396-86f52bb61234", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11314", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502598569628543", "content": "", "creation_timestamp": "2024-11-18T06:43:30.936228Z"}, {"uuid": "152475e4-1dc5-4288-af14-c4bed8224ae9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11317", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113600310424048169", "content": "", "creation_timestamp": "2024-12-05T12:52:54.840807Z"}, {"uuid": "f57fd22c-bdd1-4d69-b7fc-0b932ac33230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11316", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113600229603745233", "content": "", "creation_timestamp": "2024-12-05T12:32:21.616042Z"}, {"uuid": "782c03e8-e6b7-4ec5-a2a0-6cb4e2437278", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11316", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-007-01", "content": "", "creation_timestamp": "2025-01-07T11:00:00.000000Z"}, {"uuid": "d5171532-05cb-432c-96aa-02441c23eef0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11317", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-007-01", "content": "", "creation_timestamp": "2025-01-07T11:00:00.000000Z"}, {"uuid": "ad9aa56b-974d-4133-96c6-f4d509cc5a31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11318", "type": "seen", "source": "MISP/1c5c38d6-3401-41ac-be0e-4cf361fa6f51", "content": "", "creation_timestamp": "2025-09-25T00:36:29.000000Z"}, {"uuid": "24eba491-10a9-4b95-861a-0305277df226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11319", "type": "seen", "source": "MISP/1c5c38d6-3401-41ac-be0e-4cf361fa6f51", "content": "", "creation_timestamp": "2025-09-25T00:36:29.000000Z"}, {"uuid": "953237f4-11f1-4135-ac3b-b639bf5c85ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1131", "type": "seen", "source": "MISP/1c5c38d6-3401-41ac-be0e-4cf361fa6f51", "content": "", "creation_timestamp": "2025-09-25T00:36:29.000000Z"}, {"uuid": "8938eeee-c51a-4936-8e5b-edc3798a900f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11311", "type": "seen", "source": "https://t.me/cvedetector/11297", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11311 - TRCore DVC Path Traversal File Upload RCE\", \n  \"Content\": \"CVE ID : CVE-2024-11311 \nPublished : Nov. 18, 2024, 7:15 a.m. | 34\u00a0minutes ago \nDescription : The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T09:01:22.000000Z"}, {"uuid": "989fd81e-ca4c-4b8d-8460-c84a0c9fa9cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11318", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9165", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aA Local Privilege Escalation poc scipts for CVE-2024-48990, CVE-2024-48991, CVE-2024-48992, CVE-2024-10224, and CVE-2024-11003\nURL\uff1ahttps://github.com/xthalach/CVE-2024-11318\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-11-24T22:11:52.000000Z"}, {"uuid": "14f527b5-def0-455e-96b5-f8708f25c455", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11312", "type": "seen", "source": "https://t.me/cvedetector/11296", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11312 - TRCore DVC Path Traversal and Arbitrary Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-11312 \nPublished : Nov. 18, 2024, 7:15 a.m. | 34\u00a0minutes ago \nDescription : The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T09:01:18.000000Z"}, {"uuid": "591fe525-f9f6-4977-a783-23750ebb8938", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11314", "type": "seen", "source": "https://t.me/cvedetector/11295", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11314 - TRCore DVC Path Traversal and Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11314 \nPublished : Nov. 18, 2024, 7:15 a.m. | 34\u00a0minutes ago \nDescription : The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T09:01:18.000000Z"}, {"uuid": "846bdce6-add6-4d29-8351-4326588165e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11319", "type": "seen", "source": "https://t.me/cvedetector/11332", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11319 - \"Django-cms Cross-Site Scripting (XSS)\"\", \n  \"Content\": \"CVE ID : CVE-2024-11319 \nPublished : Nov. 18, 2024, 12:15 p.m. | 39\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in django CMS Association django-cms allows Cross-Site Scripting (XSS).This issue affects django-cms: 3.11.7, 3.11.8, 4.1.2, 4.1.3. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T14:02:40.000000Z"}, {"uuid": "f56fe8ab-1d1c-4048-9e5f-6c0869d89317", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11313", "type": "seen", "source": "https://t.me/cvedetector/11294", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11313 - TRCore DVC Path Traversal RCE\", \n  \"Content\": \"CVE ID : CVE-2024-11313 \nPublished : Nov. 18, 2024, 7:15 a.m. | 34\u00a0minutes ago \nDescription : The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T09:01:17.000000Z"}, {"uuid": "459c5987-16ca-46e2-b77d-3b925746c7d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11315", "type": "seen", "source": "https://t.me/cvedetector/11293", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11315 - TRCore DVC Path Traversal Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-11315 \nPublished : Nov. 18, 2024, 7:15 a.m. | 34\u00a0minutes ago \nDescription : The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T09:01:16.000000Z"}, {"uuid": "9cdc87fc-3ca6-4405-a7ac-d0927add3545", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11310", "type": "seen", "source": "https://t.me/cvedetector/11291", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11310 - TRCore Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11310 \nPublished : Nov. 18, 2024, 6:15 a.m. | 36\u00a0minutes ago \nDescription : The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T08:11:08.000000Z"}, {"uuid": "c7c28309-dbf7-4505-b831-bab358b9a956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11318", "type": "seen", "source": "https://t.me/cvedetector/11335", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-11318 - AbsysNet IDOR Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-11318 \nPublished : Nov. 18, 2024, 2:15 p.m. | 22\u00a0minutes ago \nDescription : An IDOR (Insecure Direct Object Reference) vulnerability has been discovered in AbsysNet, affecting version 2.3.1. This vulnerability could allow a remote attacker to obtain the session of an unauthenticated user by brute-force attacking the session identifier on the \"/cgi-bin/ocap/\" endpoint. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T15:42:49.000000Z"}, {"uuid": "7d1a061f-c209-4c9b-a059-82f80b3090b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-11318", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/1614", "content": "https://github.com/xthalach/CVE-2024-11318", "creation_timestamp": "2024-12-02T01:56:50.000000Z"}]}