{"vulnerability": "CVE-2024-9186", "sightings": [{"uuid": "8c51848b-901e-4377-ba2d-e78d6e467ca3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-9186", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113479826497723963", "content": "", "creation_timestamp": "2024-11-14T06:12:16.070928Z"}, {"uuid": "a501fe09-1430-453b-945d-e86862fa7c0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-9186", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-9186.yaml", "content": "", "creation_timestamp": "2024-11-28T01:31:01.000000Z"}, {"uuid": "8eea2735-760b-4ab6-9b55-c1f493385a96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-9186", "type": "seen", "source": "https://t.me/cvedetector/10907", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-9186 - \"FunnelKit WooCommerce SQL Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-9186 \nPublished : Nov. 14, 2024, 6:15 a.m. | 40\u00a0minutes ago \nDescription : The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit WordPress plugin before 3.3.0 does not sanitize and escape the bwfan-track-id  parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-14T08:17:20.000000Z"}]}