{"vulnerability": "cve-2019-1751", "sightings": [{"uuid": "38c1f924-9681-4e48-b3bf-d034eff3ac6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-17512", "type": "seen", "source": "https://t.me/ctinow/168701", "content": "https://ift.tt/kZsUzit\nCVE-2019-17512 | D-Link DIR-412 A1-1.14WW log_clear.php act=clear/logtype=sysact improper authentication", "creation_timestamp": "2024-01-16T09:31:43.000000Z"}, {"uuid": "c147d296-6177-4ed1-afff-9fe4028eebdb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-17515", "type": "seen", "source": "https://t.me/ctinow/183853", "content": "https://ift.tt/eUji6mO\nCVE-2019-17515 | CleanTalk cleantalk-spam-protect Plugin up to 5.127.3 on WordPress inc/cleantalk-users.php till Reflected cross site scripting (ID 2172333)", "creation_timestamp": "2024-02-13T15:06:42.000000Z"}, {"uuid": "868e9090-605d-47be-bb1a-b8567270fb6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-17513", "type": "seen", "source": "https://t.me/ctinow/168840", "content": "https://ift.tt/65uMxJC\nCVE-2019-17513 | Ratpack up to 1.7.4 Netty Library DefaultHttpHeaders Control Character input validation", "creation_timestamp": "2024-01-16T15:11:25.000000Z"}, {"uuid": "55bcb465-285d-43c2-911d-dc34a22ccd2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-17510", "type": "seen", "source": "https://t.me/cibsecurity/37684", "content": "\u203c CVE-2021-46315 \u203c\n\nRemote Command Execution (RCE) vulnerability exists in HNAP1/control/SetWizardConfig.php in D-Link Router DIR-846 DIR846A1_FW100A43.bin and DIR846enFW100A53DLA-Retail.bin. Malicoius users can use this vulnerability to use \"\\ \" or backticks in the shell metacharacters in the ssid0 or ssid1 parameters to cause arbitrary command execution. Since CVE-2019-17510 vulnerability has not been patched and improved www/hnap1/control/setwizardconfig.php, can also use line breaks and backquotes to bypass.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-18T00:37:40.000000Z"}, {"uuid": "85930679-ba0a-499f-a23a-29ce5e168844", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-17511", "type": "seen", "source": "https://t.me/ctinow/164341", "content": "https://ift.tt/LG06k4A\nCVE-2019-17511 | D-Link DIR-412 A1-1.14WW Web Interface log_get.php improper authentication", "creation_timestamp": "2024-01-08T14:07:27.000000Z"}, {"uuid": "9eeff9e3-7f4b-4f19-b0c5-4c9ebd7dd297", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-17517", "type": "seen", "source": "https://t.me/VulnerabilityNews/18136", "content": "u'Bluetooth devices does not properly restrict the L2CAP payload length allowing users in radio range to cause a buffer overflow via a crafted Link Layer packet(Equivalent to CVE-2019-17060,CVE-2019-17061 and CVE-2019-17517 in Sweyntooth paper)' in Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music in AR9344\nPublished at: November 02, 2020 at 08:15AM\nView on website", "creation_timestamp": "2020-11-02T12:46:31.000000Z"}]}