{"vulnerability": "CVE-2024-3968", "sightings": [{"uuid": "833cd493-4b46-4246-8cfe-fa508a97f15f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39689", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/7889", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aDO NOT FORK, DEPLOY, OR USE FOR ANYTHING BUT LEARNING. These requirements are vulnerable to CVE-2024-39689\nURL\uff1ahttps://github.com/roy-aladin/InfraTest\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-07-06T17:34:07.000000Z"}, {"uuid": "c83a2772-e484-4fd1-9bfd-67ee11d3234e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39680", "type": "seen", "source": "https://t.me/cvedetector/1131", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39680 - \"WordPress Cooked CSRF Recipe for Disaster\"\", \n  \"Content\": \"CVE ID : CVE-2024-39680 \nPublished : July 18, 2024, 1:15 a.m. | 42\u00a0minutes ago \nDescription : Cooked is a recipe plugin for WordPress. The Cooked plugin for WordPress is vulnerable to Cross-Site Request Forgery (CSRF) in versions up to, and including, 1.7.15.4 due to missing or incorrect nonce validation on the AJAX action handler. This vulnerability could allow an attacker to trick users into performing an action they didn't intend to perform under their current authentication. This issue has been addressed in release version 1.8.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-18T04:15:32.000000Z"}, {"uuid": "e1a2ef82-11ae-449e-a080-4db9a31b3493", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39689", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3936", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39689\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Certifi 2024.07.04 removes root certificates from \"GLOBALTRUST\" from the root store. These are in the process of being removed from Mozilla's trust store.\n\nGLOBALTRUST's root certificates are being removed pursuant to an investigation which identified \"long-running and unresolved compliance issues\". Conclusions of Mozilla's investigation can be found [here]( https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI).\n\ud83d\udccf Published: 2024-07-05T20:06:40Z\n\ud83d\udccf Modified: 2025-02-11T22:38:18Z\n\ud83d\udd17 References:\n1. https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc\n2. https://nvd.nist.gov/vuln/detail/CVE-2024-39689\n3. https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463\n4. https://github.com/certifi/python-certifi\n5. https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI\n6. https://security.netapp.com/advisory/ntap-20241206-0001", "creation_timestamp": "2025-02-11T23:11:32.000000Z"}, {"uuid": "0b574332-35c8-4899-910b-801b74314ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39689", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4516", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39689\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2024-07-05T19:15:10.247\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463\n2. https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc\n3. https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI\n4. https://github.com/certifi/python-certifi/commit/bd8153872e9c6fc98f4023df9c2deaffea2fa463\n5. https://github.com/certifi/python-certifi/security/advisories/GHSA-248v-346w-9cwc\n6. https://groups.google.com/a/mozilla.org/g/dev-security-policy/c/XpknYMPO8dI\n7. https://security.netapp.com/advisory/ntap-20241206-0001/", "creation_timestamp": "2025-02-15T01:10:32.000000Z"}, {"uuid": "b53138f1-1dd5-4374-b3d4-db99347ec575", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39685", "type": "seen", "source": "https://t.me/cvedetector/1463", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39685 - Bert-VITS2 Arbitrary Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39685 \nPublished : July 22, 2024, 4:15 p.m. | 16\u00a0minutes ago \nDescription : Bert-VITS2 is the VITS2 Backbone with multilingual bert. User input supplied to the data_dir variable is used directly in a command executed with subprocess.run(cmd, shell=True) in the resample function, which leads to arbitrary command execution. This affects fishaudio/Bert-VITS2 2.3 and earlier. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T18:40:15.000000Z"}, {"uuid": "cf2c69a8-8a3d-4f14-8720-96cc2f57e9cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39686", "type": "seen", "source": "https://t.me/cvedetector/1465", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39686 - Bert-VITS2 OS Command Injection\", \n  \"Content\": \"CVE ID : CVE-2024-39686 \nPublished : July 22, 2024, 4:15 p.m. | 16\u00a0minutes ago \nDescription : Bert-VITS2 is the VITS2 Backbone with multilingual bert. User input supplied to the data_dir variable is used directly in a command executed with subprocess.run(cmd, shell=True) in the bert_gen function, which leads to arbitrary command execution. This affects fishaudio/Bert-VITS2 2.3 and earlier. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T18:40:17.000000Z"}, {"uuid": "855d5096-5bc6-41dd-a1ef-09311fbf4587", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39688", "type": "seen", "source": "https://t.me/cvedetector/1464", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39688 - Bert-VITS2 Console Arbitrary File Write\", \n  \"Content\": \"CVE ID : CVE-2024-39688 \nPublished : July 22, 2024, 4:15 p.m. | 16\u00a0minutes ago \nDescription : Bert-VITS2 is the VITS2 Backbone with multilingual bert. User input supplied to the data_dir variable is concatenated with other folders and used to open a new file in the generate_config function, which leads to a limited file write. The issue allows for writing /config/config.json file in arbitrary directory on the server. If a given directory path doesn\u2019t exist, the application will return an error, so this vulnerability could also be used to gain information about existing directories on the server. This affects fishaudio/Bert-VITS2 2.3 and earlier. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T18:40:16.000000Z"}, {"uuid": "3e7190ad-a80d-4e21-acaf-6ffc5641b55b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39684", "type": "seen", "source": "https://t.me/cvedetector/433", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39684 - Tencent RapidJSON is vulnerable to privilege escal\", \n  \"Content\": \"CVE ID : CVE-2024-39684 \nPublished : July 9, 2024, 7:15 p.m. | 35\u00a0minutes ago \nDescription : Tencent RapidJSON is vulnerable to privilege escalation due to an integer overflow in the `GenericReader::ParseNumber()` function of `include/rapidjson/reader.h` when parsing JSON text from a stream. An attacker needs to send the victim a crafted file which needs to be opened; this triggers the integer overflow vulnerability (when the file is parsed), leading to elevation of privilege. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T21:55:32.000000Z"}, {"uuid": "9ef4acba-7b29-4d9c-8bc7-346e11965505", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39687", "type": "seen", "source": "https://t.me/cvedetector/126", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39687 - Fedify is a TypeScript library for building federa\", \n  \"Content\": \"CVE ID : CVE-2024-39687 \nPublished : July 5, 2024, 6:15 p.m. | 33\u00a0minutes ago \nDescription : Fedify is a TypeScript library for building federated server apps powered by ActivityPub and other standards. At present, when Fedify needs to retrieve an object or activity from a remote activitypub server, it makes a HTTP request to the `@id` or other resources present within the activity it has received from the web. This activity could reference an `@id` that points to an internal IP address, allowing an attacker to send request to resources internal to the fedify server's network. This applies to not just resolution of documents containing activities or objects, but also to media URLs as well. Specifically this is a Server Side Request Forgery attack. Users should upgrade to Fedify version 0.9.2, 0.10.1, or 0.11.1 to receive a patch for this issue. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-05T20:51:41.000000Z"}, {"uuid": "186a76a4-d8c1-4f3d-984d-ea15b8307e65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39681", "type": "seen", "source": "https://t.me/cvedetector/1132", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39681 - Cooked for WordPress Cross-Site Request Forgery Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39681 \nPublished : July 18, 2024, 1:15 a.m. | 42\u00a0minutes ago \nDescription : Cooked is a recipe plugin for WordPress. The Cooked plugin for WordPress is vulnerable to Cross-Site Request Forgery (CSRF) in versions up to, and including, 1.7.15.4 due to missing or incorrect nonce validation on the AJAX action handler. This vulnerability could allow an attacker to trick users into performing an action they didn't intend to perform under their current authentication. This issue has been addressed in release version 1.8.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-18T04:15:33.000000Z"}, {"uuid": "2aef8a88-c11d-467e-8d9f-143c3c548c06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39682", "type": "seen", "source": "https://t.me/cvedetector/1129", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39682 - WordPress Cooked Plugin HTML Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39682 \nPublished : July 18, 2024, 1:15 a.m. | 42\u00a0minutes ago \nDescription : Cooked is a recipe plugin for WordPress. The Cooked plugin for WordPress is vulnerable to HTML Injection in versions up to, and including, 1.7.15.4 due to insufficient input sanitization and output escaping. This vulnerability allows authenticated attackers with contributor-level access and above to inject arbitrary HTML in pages that will be shown whenever a user accesses a compromised page. This issue has been addressed in release version 1.8.0. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-18T04:15:30.000000Z"}, {"uuid": "faeff052-ccf6-4532-8258-d46d47dc6836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39681", "type": "seen", "source": "Telegram/UpZeEN1jhqQahkBCBxClUateA5hna8JecTxMwhABwsLaWpsD", "content": "", "creation_timestamp": "2025-02-14T09:47:01.000000Z"}, {"uuid": "7442929d-ea8f-4d4a-b3ad-c7d9d1a327eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39680", "type": "seen", "source": "Telegram/dKZyyxQaaYDOnfdTcgIDd2VDEXCLJfRpj_dAy-7yHujAqfxf", "content": "", "creation_timestamp": "2025-02-14T09:47:00.000000Z"}]}