{"vulnerability": "cve-2024-10958", "sightings": [{"uuid": "c6941728-c270-42b1-90b6-12594323de81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10958", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113458727343148206", "content": "", "creation_timestamp": "2024-11-10T12:46:28.487887Z"}, {"uuid": "404f2aab-13ca-4681-a894-20dda5ffd63c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10958", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113459014691733654", "content": "", "creation_timestamp": "2024-11-10T13:59:32.796178Z"}, {"uuid": "69daf256-61f2-4dfa-abae-1a23aea040fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10958", "type": "seen", "source": "https://t.me/cvedetector/10427", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-10958 - \"WordPress Photo Album Plus Shortcode Execution Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-10958 \nPublished : Nov. 10, 2024, 1:15 p.m. | 38\u00a0minutes ago \nDescription : The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 . This is due to the software allowing users to execute an action that does not properly validate a value before running do_shortcode. This makes it possible for unauthenticated attackers to execute arbitrary shortcodes. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-10T15:00:37.000000Z"}, {"uuid": "9431d5c3-0f78-47d7-b7b6-cd6ac754a725", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10958", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/742", "content": "https://github.com/reinh3rz/CVE-2024-10958-WPPA-Exploit", "creation_timestamp": "2024-11-22T10:05:08.000000Z"}, {"uuid": "c4443cd6-f0d1-4e20-aaaa-931308c8d7d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-10958", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/1581", "content": "https://github.com/reinh3rz/CVE-2024-10958-WPPA-Exploit", "creation_timestamp": "2024-12-02T01:56:49.000000Z"}]}