{"vulnerability": "CVE-2024-2259", "sightings": [{"uuid": "a3f7be8f-538a-4082-8954-dce4b7fe1b0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22591", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19038", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-22591\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: FlyCms v1.0 contains a Cross-Site Request Forgery (CSRF) vulnerability via /system/user/group_save.\n\ud83d\udccf Published: 2024-01-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-20T18:15:10.713Z\n\ud83d\udd17 References:\n1. https://github.com/ysuzhangbin/cms2/blob/main/1.md", "creation_timestamp": "2025-06-20T18:42:34.000000Z"}, {"uuid": "f619560d-90f6-450b-9f04-efccfbb03ef4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-2259", "type": "seen", "source": "https://t.me/cvedetector/3006", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-2259 - InstaRISPACS Web Interface Reflected Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-2259 \nPublished : Aug. 13, 2024, 11:15 a.m. | 26\u00a0minutes ago \nDescription : This vulnerability exists in InstaRISPACS software due to insufficient validation of user supplied input for the loginTo parameter in user login module of the web interface of the application. A remote attacker could exploit this vulnerability by sending a specially crafted input to the vulnerable parameter to perform reflected Cross Site Scripting (XSS) attacks on the targeted system. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T13:46:13.000000Z"}, {"uuid": "295773ae-fe09-4520-919c-413023640e81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22593", "type": "seen", "source": "https://t.me/ctinow/183076", "content": "https://ift.tt/vsAFDyg\nCVE-2024-22593 | FlyCMS 1.0 add_group_save cross-site request forgery", "creation_timestamp": "2024-02-12T12:36:23.000000Z"}, {"uuid": "2d8b1118-7eb8-4da5-8ff1-ac22292d97bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22591", "type": "seen", "source": "https://t.me/ctinow/183057", "content": "https://ift.tt/0RdoKMl\nCVE-2024-22591 | FlyCMS 1.0 /system/user/group_save cross-site request forgery", "creation_timestamp": "2024-02-12T12:06:31.000000Z"}, {"uuid": "2b89bd45-af6e-4ca9-872d-f86fa8b798b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22591", "type": "seen", "source": "https://t.me/ctinow/170729", "content": "https://ift.tt/ExfqOyJ\nCVE-2024-22591 Exploit", "creation_timestamp": "2024-01-20T21:16:30.000000Z"}, {"uuid": "a5ad260b-b118-4781-89e4-f9ba030c19d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22592", "type": "seen", "source": "https://t.me/ctinow/170728", "content": "https://ift.tt/BeR15vo\nCVE-2024-22592 Exploit", "creation_timestamp": "2024-01-20T21:16:28.000000Z"}, {"uuid": "999a0840-e430-4510-a050-3083ff0885fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-22593", "type": "seen", "source": "https://t.me/ctinow/170727", "content": "https://ift.tt/nr29ovk\nCVE-2024-22593 Exploit", "creation_timestamp": "2024-01-20T21:16:27.000000Z"}]}