{"vulnerability": "CVE-2024-57546", "sightings": [{"uuid": "095a9646-602e-480d-aa7b-6062b35b18b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57546", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgr32oeemw2n", "content": "", "creation_timestamp": "2025-01-27T23:15:41.580328Z"}, {"uuid": "cef8145f-e59e-4944-aed0-7c23a0e51dc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57546", "type": "seen", "source": "https://gist.github.com/h4ckr4v3n/afbb87b5a05f283dbee705709c2769eb", "content": "", "creation_timestamp": "2025-01-24T06:39:44.000000Z"}, {"uuid": "87e04d1e-35fb-4ff7-9d9b-3423334816e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2024-57546", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/f16e4486-bb1e-424d-9c5e-24cd9c0be4c1", "content": "", "creation_timestamp": "2025-01-24T07:54:26.591700Z"}, {"uuid": "d44e9054-407c-4f26-b8e0-59989c81e80f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57546", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3190", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57546\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in CMSimple v.5.16 allows a remote attacker to obtain sensitive information via a crafted script to the validate link function.\n\ud83d\udccf Published: 2025-01-28T00:32:15Z\n\ud83d\udccf Modified: 2025-01-28T00:32:15Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-57546\n2. https://gist.github.com/h4ckr4v3n/afbb87b5a05f283dbee705709c2769eb\n3. https://github.com/h4ckr4v3n/cmsimple5.16_research/blob/main/CMSimple%205.16%20Validate%20links%20SSRF.md", "creation_timestamp": "2025-01-28T01:08:16.000000Z"}, {"uuid": "f0b93c33-e593-4fc9-a639-bd1b21219705", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57546", "type": "seen", "source": "https://t.me/cvedetector/16556", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57546 - CMSimple SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-57546 \nPublished : Jan. 27, 2025, 11:15 p.m. | 1\u00a0hour, 45\u00a0minutes ago \nDescription : An issue in CMSimple v.5.16 allows a remote attacker to obtain sensitive information via a crafted script to the validate link function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-28T02:04:16.000000Z"}]}