{"vulnerability": "cve-2024-1013", "sightings": [{"uuid": "907c938c-2d5d-4cd7-aaa6-7304292c0e51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10131", "type": "seen", "source": "https://t.me/cvedetector/8350", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10131 - InfiniFlow RCE via User-Controlled Class Instantiation\", \n  \"Content\": \"CVE ID : CVE-2024-10131 \nPublished : Oct. 19, 2024, 4:15 a.m. | 39\u00a0minutes ago \nDescription : The `add_llm` function in `llm_app.py` in infiniflow/ragflow version 0.11.0 contains a remote code execution (RCE) vulnerability. The function uses user-supplied input `req['llm_factory']` and `req['llm_name']` to dynamically instantiate classes from various model dictionaries. This approach allows an attacker to potentially execute arbitrary code due to the lack of comprehensive input validation or sanitization. An attacker could provide a malicious value for 'llm_factory' that, when used as an index to these model dictionaries, results in the execution of arbitrary code. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T07:07:52.000000Z"}, {"uuid": "521ea1a1-2435-46fb-90c6-bda3df455ab0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1013", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8802", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-1013\n\ud83d\udd25 CVSS Score: 7.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while big-endian architectures can be broken.\n\ud83d\udccf Published: 2024-03-18T10:53:02.506Z\n\ud83d\udccf Modified: 2025-03-26T04:56:32.152Z\n\ud83d\udd17 References:\n1. https://access.redhat.com/security/cve/CVE-2024-1013\n2. https://bugzilla.redhat.com/show_bug.cgi?id=2260823\n3. https://github.com/lurcher/unixODBC/pull/157", "creation_timestamp": "2025-03-26T05:24:40.000000Z"}, {"uuid": "872b78e4-149f-4acc-8f11-43fac698ab86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10134", "type": "seen", "source": "https://t.me/cvedetector/8358", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10134 - ESAFENET CDG SQL Injection - Remote Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-10134 \nPublished : Oct. 19, 2024, 10:15 a.m. | 36\u00a0minutes ago \nDescription : A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is the function connectLogout of the file /com/esafenet/servlet/ajax/MultiServerAjax.java. The manipulation of the argument servername leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T12:59:09.000000Z"}, {"uuid": "56bea772-1c7d-490d-b302-e4d877a68190", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10133", "type": "seen", "source": "https://t.me/cvedetector/8356", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10133 - ESAfENET CDG 5 SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10133 \nPublished : Oct. 19, 2024, 9:15 a.m. | 36\u00a0minutes ago \nDescription : A vulnerability has been found in ESAFENET CDG 5 and classified as critical. Affected by this vulnerability is the function updateNetSecPolicyPriority of the file /com/esafenet/servlet/ajax/NetSecPolicyAjax.java. The manipulation of the argument id/frontId leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T12:08:57.000000Z"}, {"uuid": "86fdf652-8362-4f5a-b99e-d4408b996867", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10130", "type": "seen", "source": "https://t.me/cvedetector/8344", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10130 - Tenda AC8 Stack-Based Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-10130 \nPublished : Oct. 18, 2024, 10:15 p.m. | 39\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the argument rebootTime leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T01:16:38.000000Z"}, {"uuid": "e8bbffa5-9539-4893-a39f-69e61431c314", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1013", "type": "seen", "source": "https://t.me/ctinow/210411", "content": "https://ift.tt/JkAfbFm\nCVE-2024-1013", "creation_timestamp": "2024-03-18T11:58:44.000000Z"}, {"uuid": "cff30ca8-5534-4b67-a32a-9c19e00b1d8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10139", "type": "seen", "source": "https://t.me/cvedetector/8363", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10139 - Code-projects Pharmacy Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10139 \nPublished : Oct. 19, 2024, 2:15 p.m. | 43\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add_new_supplier.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T17:09:56.000000Z"}, {"uuid": "bf804ba2-8930-4278-8b9c-f1d65fe8b80c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10137", "type": "seen", "source": "https://t.me/cvedetector/8362", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10137 - Code-projects Pharmacy Management System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-10137 \nPublished : Oct. 19, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /manage_medicine.php?action=delete. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T16:19:49.000000Z"}, {"uuid": "eab82229-6f2f-4df4-a029-cb72e665edf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10138", "type": "seen", "source": "https://t.me/cvedetector/8361", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10138 - Code-projects Pharmacy Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10138 \nPublished : Oct. 19, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /add_new_purchase.php?action=is_supplier. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T16:19:48.000000Z"}, {"uuid": "d31f8ffb-da77-4d20-9459-0a80ad8071e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10135", "type": "seen", "source": "https://t.me/cvedetector/8360", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10135 - ESA FENET CDG SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10135 \nPublished : Oct. 19, 2024, 12:15 p.m. | 19\u00a0minutes ago \nDescription : A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects the function actionDelNetSecConfig of the file /com/esafenet/servlet/netSec/NetSecConfigService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T14:39:31.000000Z"}, {"uuid": "fb1e0d12-112a-46e0-9f46-ae44d006ddf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10136", "type": "seen", "source": "https://t.me/cvedetector/8359", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10136 - Code-projects Pharmacy Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-10136 \nPublished : Oct. 19, 2024, 12:15 p.m. | 19\u00a0minutes ago \nDescription : A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /manage_invoice.php. The manipulation of the argument invoice_number leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-19T14:39:30.000000Z"}, {"uuid": "a5e0e827-a18d-46de-9832-a4cdbd4d05e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10134", "type": "seen", "source": "https://t.me/HackerArsenal/565", "content": "\u203c\ufe0f CVE-2024-10134 \u203c\ufe0f\n\nA vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is the function connectLogout of the file comesafenetservletajaxMultiServerAjax.java. The manipulation of the argument servername leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"National Vulnerability Database\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity_CVEs", "creation_timestamp": "2024-10-19T15:27:50.000000Z"}, {"uuid": "c9ec3589-a6e1-425a-9fc7-829bef7dfc73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10133", "type": "seen", "source": "https://t.me/HackerArsenal/564", "content": "\u203c\ufe0f CVE-2024-10133 \u203c\ufe0f\n\nA vulnerability has been found in ESAFENET CDG 5 and classified as critical. Affected by this vulnerability is the function updateNetSecPolicyPriority of the file comesafenetservletajaxNetSecPolicyAjax.java. The manipulation of the argument idfrontId leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"National Vulnerability Database\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity_CVEs", "creation_timestamp": "2024-10-19T15:27:50.000000Z"}, {"uuid": "031ba2a3-a0cd-479d-b4ba-c8e5f73ab522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1013", "type": "seen", "source": "https://t.me/ctinow/210447", "content": "https://ift.tt/01nyAbf\nCVE-2024-1013", "creation_timestamp": "2024-03-18T12:27:02.000000Z"}]}