{"vulnerability": "cve-2020-2490", "sightings": [{"uuid": "ef801409-41cb-4614-9366-9ee76d253cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24901", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3lj5d66dqzy2t", "content": "", "creation_timestamp": "2025-02-27T07:03:09.293365Z"}, {"uuid": "bae96dda-eda1-48d2-ba9c-015cbbf42e7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24901", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lj6s2542zw2v", "content": "", "creation_timestamp": "2025-02-27T21:02:00.652868Z"}, {"uuid": "fa824bca-719a-4a9c-b3ab-e6d80fedec0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24901", "type": "seen", "source": "MISP/24306fae-b16b-4478-9297-d2973cdb583c", "content": "", "creation_timestamp": "2025-08-22T14:52:23.000000Z"}, {"uuid": "d002fb7d-e4c4-495a-8c25-357835dd26aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24908", "type": "seen", "source": "https://t.me/cibsecurity/23845", "content": "\u203c CVE-2020-24908 \u203c\n\nCheckmk before 1.6.0p17 allows local users to obtain SYSTEM privileges via a Trojan horse shell script in the %PROGRAMDATA%\\checkmk\\agent\\local directory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-19T12:51:06.000000Z"}, {"uuid": "a8cca3cd-4d0a-4a92-9949-a2d82b5ca2b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24901", "type": "seen", "source": "https://t.me/cibsecurity/21734", "content": "\u203c CVE-2020-24901 \u203c\n\nThe default installation of Krpano Panorama Viewer version <=1.20.8 is vulnerable to Reflected XSS due to insecure remote js load in file viewer/krpano.html, parameter plugin[test].url.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-07T16:40:29.000000Z"}, {"uuid": "79c66605-72d5-4d3f-89a8-e76dd372fe60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24902", "type": "seen", "source": "https://t.me/cibsecurity/21732", "content": "\u203c CVE-2020-24902 \u203c\n\nQuixplorer <=2.4.1 is vulnerable to reflected cross-site scripting (XSS) caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-07T16:40:28.000000Z"}, {"uuid": "a27894f3-74af-4614-8b95-3a20a7a8d643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24900", "type": "seen", "source": "https://t.me/cibsecurity/21744", "content": "\u203c CVE-2020-24900 \u203c\n\nThe default installation of Krpano Panorama Viewer version <=1.20.8 is prone to Reflected XSS due to insecure XML load in file /viewer/krpano.html, parameter xml.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-07T16:40:41.000000Z"}, {"uuid": "c17ac710-bb98-4308-9d13-e3f187f673c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-24903", "type": "seen", "source": "https://t.me/cibsecurity/21742", "content": "\u203c CVE-2020-24903 \u203c\n\nCute Editor for ASP.NET 6.4 is vulnerable to reflected cross-site scripting (XSS) caused by improper validation of user supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-07T16:40:39.000000Z"}]}