{"vulnerability": "cve-2024-1220", "sightings": [{"uuid": "9bc794fc-55d2-4860-8568-3fdf68bf7d00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113615570697901377", "content": "", "creation_timestamp": "2024-12-08T05:33:48.010759Z"}, {"uuid": "0050df2e-69b6-4a9a-90f5-07c5771288fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113618202280680817", "content": "", "creation_timestamp": "2024-12-08T16:43:02.635448Z"}, {"uuid": "531ec4bb-7377-4ca6-aebd-fa77ee012cd8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-12209.yaml", "content": "", "creation_timestamp": "2024-12-09T19:05:38.000000Z"}, {"uuid": "3b6b120f-e5cc-4838-ac2a-a89b9aa9c925", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12201", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113638584197862849", "content": "", "creation_timestamp": "2024-12-12T07:06:26.120314Z"}, {"uuid": "28f0e677-ea7b-447a-9676-36414bbabeb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12200", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-24-1710/", "content": "", "creation_timestamp": "2024-12-19T05:00:00.000000Z"}, {"uuid": "b532f5f1-9309-4f7b-8067-6ad1d6e4d2d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12204", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfgta4aycc2r", "content": "", "creation_timestamp": "2025-01-11T04:03:46.274864Z"}, {"uuid": "3f499dec-c311-4a83-9235-60ffc3b0bbd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12202", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113785878746373359", "content": "", "creation_timestamp": "2025-01-07T07:25:24.255460Z"}, {"uuid": "baab97c9-77f1-4e8d-8ba0-85a9d1915662", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12208", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf4vgqnudb2m", "content": "", "creation_timestamp": "2025-01-07T05:16:37.872950Z"}, {"uuid": "0e6c49f1-c898-42c4-9501-1c445847bf16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12206", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfckgqhamc2i", "content": "", "creation_timestamp": "2025-01-09T11:15:44.861961Z"}, {"uuid": "108691fc-c07f-4141-87fc-2e3c1a30d01f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12202", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf57hegfve22", "content": "", "creation_timestamp": "2025-01-07T08:15:55.952653Z"}, {"uuid": "184caa20-6551-411b-94a8-d2827f3d40e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12202", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf57hegfve22", "content": "", "creation_timestamp": "2025-01-07T08:15:55.955699Z"}, {"uuid": "57582be6-6b45-483d-9462-5d3f8ba3add1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12207", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf4vgoccj42i", "content": "", "creation_timestamp": "2025-01-07T05:16:35.249442Z"}, {"uuid": "2bef896a-dd2d-4bea-a60d-5204f7e0f63b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://infosec.exchange/users/random_robbie/statuses/113783263021420100", "content": "", "creation_timestamp": "2025-01-06T20:20:09.785213Z"}, {"uuid": "1e0c0233-cadd-4260-ada6-485d99efdb3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12206", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113798223191041662", "content": "", "creation_timestamp": "2025-01-09T11:44:44.155495Z"}, {"uuid": "0bd083a5-6d57-41a9-94c2-f2667b27562b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12202", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113786206156595654", "content": "", "creation_timestamp": "2025-01-07T08:48:38.582110Z"}, {"uuid": "3031178d-6cc3-470d-b354-61af0219875c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12204", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113807419152458754", "content": "", "creation_timestamp": "2025-01-11T02:43:23.159200Z"}, {"uuid": "2fc5baf1-17a7-4826-b0d1-b84922f6a805", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12204", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfgqkix3v62m", "content": "", "creation_timestamp": "2025-01-11T03:15:54.518536Z"}, {"uuid": "4cb24648-4723-4e01-be40-321787571d14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12205", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113790854151442414", "content": "", "creation_timestamp": "2025-01-08T04:30:41.469353Z"}, {"uuid": "e2cdf97e-e740-48c1-8683-9e6ad7e2b7e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12205", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf7ftn3rfu2i", "content": "", "creation_timestamp": "2025-01-08T05:15:29.613357Z"}, {"uuid": "134e6ee5-f245-482f-bf9e-46b12d441c43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12205", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf7h4ou33n2k", "content": "", "creation_timestamp": "2025-01-08T05:38:32.381824Z"}, {"uuid": "e81772fe-f7a6-4bb4-b1f9-c34300051047", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12203", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113842412560283053", "content": "", "creation_timestamp": "2025-01-17T07:02:40.154540Z"}, {"uuid": "de6826cb-b0df-486b-bca1-83168930f01d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12203", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfwaqy4j4e2b", "content": "", "creation_timestamp": "2025-01-17T07:15:46.381671Z"}, {"uuid": "f01d54e8-1688-46f5-b3a0-9f84cb5b852a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12203", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfwc2dmrth2e", "content": "", "creation_timestamp": "2025-01-17T07:38:55.781464Z"}, {"uuid": "b325de5c-ccd4-4217-b59a-85f4c4f13e6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3likodqzbx425", "content": "", "creation_timestamp": "2025-02-19T21:02:37.895931Z"}, {"uuid": "91a323ca-eaea-46ff-b518-d64ed05dd2eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12208", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/304", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12208\n\ud83d\udd39 Description: The Backup and Restore WordPress \u2013 Backup Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.50. This is due to missing or incorrect nonce validation on the ajax_queue_manual_backup() function. This makes it possible for unauthenticated attackers to trigger backups via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\ud83d\udccf Published: 2025-01-07T04:22:21.646Z\n\ud83d\udccf Modified: 2025-01-07T04:22:21.646Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/e461a04b-6456-4930-b3e7-0f808825aa6b?source=cve\n2. https://wordpress.org/plugins/wp-backitup/", "creation_timestamp": "2025-01-07T04:36:52.000000Z"}, {"uuid": "064887bd-e4df-4959-95bb-d34457c2f54a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-03-17)", "content": "", "creation_timestamp": "2025-03-17T00:00:00.000000Z"}, {"uuid": "b56e3c79-2d73-4948-b739-70dc08afda9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1220", "type": "seen", "source": "https://t.me/itsec_news/4183", "content": "\u200b\u26a1\ufe0f\u041c\u043e\u0445\u0430 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2024-1220, \u0447\u0440\u0435\u0432\u0430\u0442\u0443\u044e \u043e\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0430\n\n\ud83d\udcac\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Moxa \u043f\u043e\u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u0438\u043b\u0430 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u043e\u0432 Positive Technologies \u0437\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u043e\u043f\u0430\u0441\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0431\u0435\u0441\u043f\u0440\u043e\u0432\u043e\u0434\u043d\u044b\u0445 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0440\u0435\u043e\u0431\u0440\u0430\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u0445 \u043b\u0438\u043d\u0435\u0439\u043a\u0438 NPort. \u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043a\u0430\u043a CVE-2024-1220 , \u044d\u0442\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0432\u044b\u0441\u043e\u043a\u0443\u044e \u043e\u0446\u0435\u043d\u043a\u0443 8,2 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS \u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430\u0445.\n\n\u041f\u0440\u0435\u043e\u0431\u0440\u0430\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 NPort W2150a \u0438 W2250a \u043f\u0440\u0435\u0434\u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u044b \u0434\u043b\u044f \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432, \u0441\u0447\u0435\u0442\u0447\u0438\u043a\u043e\u0432 \u0438 \u0434\u0430\u0442\u0447\u0438\u043a\u043e\u0432 \u043a \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438 \u043f\u043e Wi-Fi. \u0422\u0430\u043a\u0438\u0435 \u0431\u0435\u0441\u043f\u0440\u043e\u0432\u043e\u0434\u043d\u044b\u0435 \u043a\u043e\u043c\u043c\u0443\u043d\u0438\u043a\u0430\u0446\u0438\u0438 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u044b \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433\u0430 \u0438 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u0435\u043c, \u0440\u0430\u0441\u043f\u043e\u043b\u043e\u0436\u0435\u043d\u043d\u044b\u043c \u043d\u0430 \u0434\u0432\u0438\u0436\u0443\u0449\u0438\u0445\u0441\u044f \u043e\u0431\u044a\u0435\u043a\u0442\u0430\u0445 \u0438\u043b\u0438 \u0432 \u0430\u0433\u0440\u0435\u0441\u0441\u0438\u0432\u043d\u044b\u0445 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0435\u043d\u043d\u044b\u0445 \u0441\u0440\u0435\u0434\u0430\u0445.\n\n\u041a\u0430\u043a \u043f\u043e\u044f\u0441\u043d\u0438\u043b \u0412\u043b\u0430\u0434\u0438\u043c\u0438\u0440 \u0420\u0430\u0437\u043e\u0432, \u044d\u043a\u0441\u043f\u0435\u0440\u0442 \u0438\u0437 \u0433\u0440\u0443\u043f\u043f\u044b \u0430\u043d\u0430\u043b\u0438\u0437\u0430 \u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u043e\u0441\u0442\u0438 \u0432\u0435\u0431-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0439 Positive Technologies, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u043b\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0431\u0435\u0437 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u0432\u0441\u0435\u0433\u043e \u0437\u0430 \u043e\u0434\u0438\u043d \u0437\u0430\u043f\u0440\u043e\u0441 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u043e\u043b\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u043f\u0440\u0435\u043e\u0431\u0440\u0430\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c Moxa. \u0414\u0430\u043b\u0435\u0435 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u0439 \u043c\u043e\u0433 \u0431\u044b \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u043a\u043e\u043c\u0430\u043d\u0434\u044b \u043d\u0430 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u0435 \u043a \u043f\u0440\u0435\u043e\u0431\u0440\u0430\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044e \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u044b \u0438 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u043d\u0430\u0440\u0443\u0448\u0430\u044f \u0448\u0442\u0430\u0442\u043d\u043e\u0435 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0432.\n\n\u041f\u043e\u0441\u043b\u0435 \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u044f \u0432\u0435\u043d\u0434\u043e\u0440\u0430 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043f\u043e\u043b\u0438\u0442\u0438\u043a\u0438 \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0433\u043e \u0440\u0430\u0437\u0433\u043b\u0430\u0448\u0435\u043d\u0438\u044f \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Moxa \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0448\u0438\u0432\u043a\u0438, \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0449\u0435\u0435 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432\u043e \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0435\u043c \u041f\u041e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432 \u0432\u0435\u0440\u0441\u0438\u0438 2.3. \u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u043d\u0430\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u044e\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0435\u043e\u0431\u0440\u0430\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438.\n\n\u0421\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u0447\u0435\u0441\u0442\u0432\u043e \u043c\u0435\u0436\u0434\u0443 \u044d\u043a\u0441\u043f\u0435\u0440\u0442\u0430\u043c\u0438 Positive Technologies \u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 Moxa \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442\u0441\u044f \u043d\u0435 \u043f\u0435\u0440\u0432\u044b\u0439 \u0433\u043e\u0434. \u0412 2019 \u0433\u043e\u0434\u0443 \u0431\u043b\u0430\u0433\u043e\u0434\u0430\u0440\u044f \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f\u043c \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u043e\u0432 PT \u0431\u044b\u043b\u0438 \u0437\u0430\u043a\u0440\u044b\u0442\u044b \u0431\u043e\u043b\u0435\u0435 \u0434\u0435\u0441\u044f\u0442\u043a\u0430 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0445 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u0432 \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 Ethernet-\u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u0430\u0445 \u0432\u0435\u043d\u0434\u043e\u0440\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u043b\u0438 \u0431\u044b \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u044c \u0441\u0435\u0442\u0435\u0432\u043e\u0435 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0435 \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u043e\u0432 \u0410\u0421\u0423 \u0422\u041f.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2024-03-11T17:14:20.000000Z"}, {"uuid": "503ae965-d000-4360-9bf8-f444c3311dfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12207", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/323", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12207\n\ud83d\udd39 Description: The Toggles Shortcode and Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018content\u2019 parameter in all versions up to, and including, 1.14 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.\n\ud83d\udccf Published: 2025-01-07T04:22:13.206Z\n\ud83d\udccf Modified: 2025-01-07T04:22:13.206Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/755c8863-33c2-47aa-880a-0ef8b2d594a3?source=cve\n2. https://plugins.trac.wordpress.org/browser/toggles-shortcode-and-widget/trunk/include/otw_components/otw_shortcode/shortcodes/otw_shortcode_content_toggle.class.php#L246", "creation_timestamp": "2025-01-07T04:39:06.000000Z"}, {"uuid": "d0e20837-524d-4c93-bcaf-7a69ffb404a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12202", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/365", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12202\n\ud83d\udd39 Description: The Croma Music plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'ironMusic_ajax' function in all versions up to, and including, 3.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.\n\ud83d\udccf Published: 2025-01-07T07:22:33.123Z\n\ud83d\udccf Modified: 2025-01-07T07:22:33.123Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/4ce8e0f1-5a7b-41a3-81d0-7fd12c9da6d9?source=cve\n2. https://croma.irontemplates.com/lowtempo/wp-content/themes/croma/changelog.txt", "creation_timestamp": "2025-01-07T07:37:00.000000Z"}, {"uuid": "ffe10344-5f28-4b89-a562-9c22fc40b0a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12205", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/641", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12205\n\ud83d\udd39 Description: The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF E Slider Widget in all versions up to, and including, 2.2.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\ud83d\udccf Published: 2025-01-08T04:17:58.274Z\n\ud83d\udccf Modified: 2025-01-08T04:17:58.274Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/45c6c041-91b0-4abe-ba72-ec1251651fdb?source=cve\n2. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3215859%40themesflat-addons-for-elementor&new=3215859%40themesflat-addons-for-elementor&sfp_email=&sfph_mail=", "creation_timestamp": "2025-01-08T04:38:42.000000Z"}, {"uuid": "40000e2b-e067-4420-9e7f-dd2bfbe89718", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://t.me/CyberBulletin/1711", "content": "\u26a1\ufe0fCVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise.\n\n#CyberBulletin", "creation_timestamp": "2024-12-08T11:24:47.000000Z"}, {"uuid": "87b70668-dfd7-4acf-90e6-12d4f1b5bbae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12206", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/946", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12206\n\ud83d\udd39 Description: The WordPress Header Builder Plugin \u2013 Pearl plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.8. This is due to missing or incorrect nonce validation on the stm_header_builder page. This makes it possible for unauthenticated attackers to delete arbitrary headers via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\ud83d\udccf Published: 2025-01-09T11:10:57.161Z\n\ud83d\udccf Modified: 2025-01-09T11:10:57.161Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/4de0d05f-2f51-4fea-9520-ff07a882d95e?source=cve\n2. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3218670%40pearl-header-builder&new=3218670%40pearl-header-builder&sfp_email=&sfph_mail=", "creation_timestamp": "2025-01-09T12:16:33.000000Z"}, {"uuid": "54655f67-e9b8-4781-9311-28be6652e8b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12204", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1259", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12204\n\ud83d\udd39 Description: The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in the class-cx-rest.php file in all versions up to, and including, 1.3.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create 100% off coupons, delete posts, delete leads, and update coupon statuses.\n\ud83d\udccf Published: 2025-01-11T02:20:55.309Z\n\ud83d\udccf Modified: 2025-01-11T02:20:55.309Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/e52d8b5e-727f-474a-a255-c24033db17d8?source=cve\n2. https://plugins.trac.wordpress.org/changeset/3219466/coupon-x-discount-pop-up/trunk/inc/class-cx-rest.php", "creation_timestamp": "2025-01-11T03:04:06.000000Z"}, {"uuid": "498b53e1-f57e-4812-b86c-4957bdfea131", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12203", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2101", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-12203\n\ud83d\udd39 Description: The RSS Icon Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018link_color\u2019 parameter in all versions up to, and including, 5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.\n\ud83d\udccf Published: 2025-01-17T07:01:29.571Z\n\ud83d\udccf Modified: 2025-01-17T07:01:29.571Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/fbd8fec7-c95a-4c03-ac0d-894a54906863?source=cve\n2. https://plugins.trac.wordpress.org/browser/rss-icon-widget/trunk/rss-icon-widget.php#L83\n3. https://plugins.trac.wordpress.org/browser/rss-icon-widget/trunk/rss-icon-widget.php#L195", "creation_timestamp": "2025-01-17T07:56:35.000000Z"}, {"uuid": "f1a3b47a-4b2f-4518-80d3-ac4c2c2cf7fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1220", "type": "seen", "source": "https://t.me/ics_cert/821", "content": "\u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0645\u0628\u062f\u0644 \u0647\u0627\u06cc \u0628\u06cc \u0633\u06cc\u0645 \u0635\u0646\u0639\u062a\u06cc Moxa\n\n\u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0645\u0628\u062f\u0644\u200c\u0647\u0627\u06cc NPort W2150A \u0648 W2250A \u06a9\u0634\u0641 \u0634\u062f - \u0627\u06cc\u0646 \u062f\u0633\u062a\u06af\u0627\u0647\u200c\u0647\u0627 \u0628\u0647 \u0634\u0645\u0627 \u0627\u0645\u06a9\u0627\u0646 \u0645\u06cc\u200c\u062f\u0647\u0646\u062f \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647\u200c\u0647\u0627\u06cc \u0635\u0646\u0639\u062a\u06cc\u060c \u0645\u062a\u0631 \u0648 \u0633\u0646\u0633\u0648\u0631\u0647\u0627 \u0631\u0627 \u0628\u0647 \u06cc\u06a9 \u0634\u0628\u06a9\u0647 Wi-Fi \u0645\u062d\u0644\u06cc \u0645\u062a\u0635\u0644 \u06a9\u0646\u06cc\u062f. Moxa \u062a\u062d\u062a \u062e\u0637 \u0645\u0634\u06cc \u0627\u0641\u0634\u0627\u06cc \u0645\u0633\u0626\u0648\u0644\u0627\u0646\u0647 \u062e\u0648\u062f \u0627\u0632 \u0627\u06cc\u0646 \u062a\u0647\u062f\u06cc\u062f \u0645\u0637\u0644\u0639 \u0634\u062f\u0647 \u0627\u0633\u062a \u0648 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631\u06cc \u0631\u0627 \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a.\n\n\ud83e\udd77 \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0627\u06cc\u0646 \u062a\u062c\u0647\u06cc\u0632\u0627\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u06a9\u0627\u0645\u0644 \u062f\u0627\u0634\u062a\u0647 \u0628\u0627\u0634\u062f. \u06cc\u06a9 \u062f\u0631\u062e\u0648\u0627\u0633\u062a \u0648\u06cc\u0698\u0647 \u0628\u0631\u0627\u06cc \u0627\u06cc\u0646 \u06a9\u0627\u0631 \u06a9\u0627\u0641\u06cc \u0627\u0633\u062a. \u0628\u06a9\u060c \u0645\u062a\u062e\u0635\u0635 \u062f\u0631 \u06af\u0631\u0648\u0647 \u062a\u062d\u0644\u06cc\u0644 \u0627\u0645\u0646\u06cc\u062a \u0628\u0631\u0646\u0627\u0645\u0647 \u0647\u0627\u06cc \u06a9\u0627\u0631\u0628\u0631\u062f\u06cc \u0648\u0628 \u06af\u0641\u062a: \u0628\u0627 \u06a9\u0646\u062a\u0631\u0644 \u0645\u0628\u062f\u0644 \u0647\u0627\u060c \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u062f\u0633\u062a\u0648\u0631\u0627\u062a\u06cc \u0631\u0627 \u0628\u0647 \u06a9\u0646\u062a\u0631\u0644 \u06a9\u0646\u0646\u062f\u0647 \u0647\u0627\u06cc \u0635\u0646\u0639\u062a\u06cc \u0645\u062a\u0635\u0644 \u0648 \u0633\u0627\u06cc\u0631 \u062a\u062c\u0647\u06cc\u0632\u0627\u062a \u0627\u0631\u0633\u0627\u0644 \u06a9\u0646\u062f \u06a9\u0647 \u0645\u0645\u0644\u0648 \u0627\u0632 \u0627\u062e\u062a\u0644\u0627\u0644 \u06cc\u0627 \u062a\u063a\u06cc\u06cc\u0631 \u062f\u0631 \u0631\u0648\u0646\u062f \u0641\u0646\u0627\u0648\u0631\u06cc \u062e\u0648\u0627\u0647\u062f \u0628\u0648\u062f.\n\n\u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2024-1220 (BDU:2024-01811) \u0627\u0645\u062a\u06cc\u0627\u0632 CVSS v3.1 8.2 \u0631\u0627 \u062f\u0631\u06cc\u0627\u0641\u062a \u06a9\u0631\u062f \u06a9\u0647 \u0628\u0627 \u0633\u0637\u062d \u0634\u062f\u062a \u0628\u0627\u0644\u0627\u06cc\u06cc \u0645\u0637\u0627\u0628\u0642\u062a \u062f\u0627\u0631\u062f. \u0628\u0631\u0627\u06cc \u0631\u0641\u0639 \u0622\u0646\u060c \u0628\u0627\u06cc\u062f \u0622\u062e\u0631\u06cc\u0646 \u0646\u0633\u062e\u0647 \u0633\u06cc\u0633\u062a\u0645 \u0639\u0627\u0645\u0644 \u0631\u0627 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f.\n\n\ud83d\udca1 \u0686\u0646\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u062a\u0648\u0633\u0637 \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u062f\u0627\u062e\u0644\u06cc \u06cc\u0627 \u0638\u0627\u0647\u0631\u0627\u064b \u0645\u0647\u0645\u0627\u0646\u200c\u0647\u0627\u06cc \u0634\u0631\u06a9\u062a - \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u062b\u0627\u0644\u060c \u0634\u0631\u06a9\u0627 \u06cc\u0627 \u0627\u0641\u0631\u0627\u062f \u062f\u0631 \u0645\u0635\u0627\u062d\u0628\u0647\u200c\u0647\u0627 \u0645\u0648\u0631\u062f \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0642\u0631\u0627\u0631 \u06af\u06cc\u0631\u062f. \u062f\u0631 \u0628\u0631\u062e\u06cc \u0645\u0648\u0627\u0631\u062f\u060c \u0627\u06cc\u0646 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0647\u0627\u062c\u0645\u0627\u0646\u06cc \u0628\u0627 \u0622\u0646\u062a\u0646 \u0647\u0627\u06cc \u0642\u062f\u0631\u062a\u0645\u0646\u062f \u0628\u0631\u0627\u06cc \u062a\u0642\u0648\u06cc\u062a \u0633\u06cc\u06af\u0646\u0627\u0644 \u0628\u06cc \u0633\u06cc\u0645 \u0648 \u062d\u0645\u0644\u0647 \u0628\u0647 \u0634\u0631\u06a9\u062a \u0627\u0632 \u062e\u0627\u0631\u062c \u0627\u0632 \u0645\u062d\u06cc\u0637 \u0641\u06cc\u0632\u06cc\u06a9\u06cc \u0628\u0627\u0634\u062f.\n\n\u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c \u0628\u0631\u0627\u06cc \u0647\u0645\u0647 \u0686\u0646\u06cc\u0646 \u062d\u0645\u0644\u0627\u062a\u06cc\u060c \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0647\u0645\u0686\u0646\u0627\u0646 \u0628\u0627\u06cc\u062f \u0646\u0642\u0627\u0637 \u062f\u0633\u062a\u0631\u0633\u06cc \u0631\u0627 \u06a9\u0647 \u0645\u0628\u062f\u0644\u200c\u0647\u0627\u06cc Moxa \u0628\u0647 \u0622\u0646\u0647\u0627 \u0645\u062a\u0635\u0644 \u0647\u0633\u062a\u0646\u062f\u060c \u0647\u06a9 \u06a9\u0646\u0646\u062f \u06cc\u0627 \u0648\u0627\u0631\u062f \u0628\u062e\u0634 \u0634\u0628\u06a9\u0647 \u0645\u062d\u0644\u06cc \u0634\u0648\u0646\u062f \u06a9\u0647 \u0627\u0632 \u0622\u0646\u062c\u0627 \u0642\u0627\u0628\u0644 \u062f\u0633\u062a\u0631\u0633\u06cc \u0647\u0633\u062a\u0646\u062f.\n\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\n\u0627\u062f\u0645\u06cc\u0646:\nhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert", "creation_timestamp": "2024-03-12T16:09:25.000000Z"}, {"uuid": "27f66dc7-18df-4713-acdf-8ac74ea84522", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12203", "type": "seen", "source": "https://t.me/cvedetector/15691", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12203 - \"WordPress RSS Icon Widget Stored Cross-Site Scripting Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-12203 \nPublished : Jan. 17, 2025, 7:15 a.m. | 42\u00a0minutes ago \nDescription : The RSS Icon Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018link_color\u2019 parameter in all versions up to, and including, 5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-17T09:16:02.000000Z"}, {"uuid": "fb111cde-348a-4690-beb5-06c2c6d1e9e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12206", "type": "seen", "source": "https://t.me/cvedetector/14844", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12206 - WordPress Pearl Header Builder CSRF\", \n  \"Content\": \"CVE ID : CVE-2024-12206 \nPublished : Jan. 9, 2025, 11:15 a.m. | 22\u00a0minutes ago \nDescription : The WordPress Header Builder Plugin \u2013 Pearl plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.8. This is due to missing or incorrect nonce validation on the stm_header_builder page. This makes it possible for unauthenticated attackers to delete arbitrary headers via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-09T12:44:58.000000Z"}, {"uuid": "09773236-7818-4aec-b7e2-9bd35b211ece", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12202", "type": "seen", "source": "https://t.me/cvedetector/14495", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12202 - Croma Music Plugin for WordPress Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-12202 \nPublished : Jan. 7, 2025, 8:15 a.m. | 20\u00a0minutes ago \nDescription : The Croma Music plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'ironMusic_ajax' function in all versions up to, and including, 3.6. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T09:41:17.000000Z"}, {"uuid": "a3385118-0da4-4344-8e4b-06cc0d74ca1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12208", "type": "seen", "source": "https://t.me/cvedetector/14462", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12208 - WordPress Backup Plugin CSRF\", \n  \"Content\": \"CVE ID : CVE-2024-12208 \nPublished : Jan. 7, 2025, 5:15 a.m. | 40\u00a0minutes ago \nDescription : The Backup and Restore WordPress \u2013 Backup Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.50. This is due to missing or incorrect nonce validation on the ajax_queue_manual_backup() function. This makes it possible for unauthenticated attackers to trigger backups via a forged request granted they can trick a site administrator into performing an action such as clicking on a link. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T07:10:24.000000Z"}, {"uuid": "cb2d4d24-8b61-41f1-b0c7-c1d303ffea3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12207", "type": "seen", "source": "https://t.me/cvedetector/14461", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12207 - \"WordPress Toggles Shortcode and Widget Stored XSS\"\", \n  \"Content\": \"CVE ID : CVE-2024-12207 \nPublished : Jan. 7, 2025, 5:15 a.m. | 40\u00a0minutes ago \nDescription : The Toggles Shortcode and Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018content\u2019 parameter in all versions up to, and including, 1.14 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level access, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T07:10:23.000000Z"}, {"uuid": "4c9d7823-403d-41d8-a14f-b8cdd1f6e65a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12205", "type": "seen", "source": "https://t.me/cvedetector/14654", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12205 - \"Themesflat Addons for Elementor Stored Cross-Site Scripting Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-12205 \nPublished : Jan. 8, 2025, 5:15 a.m. | 21\u00a0minutes ago \nDescription : The Themesflat Addons For Elementor plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the TF E Slider Widget in all versions up to, and including, 2.2.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T06:37:08.000000Z"}, {"uuid": "11293226-a80c-4429-aca5-f7fe9d8b1593", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12204", "type": "seen", "source": "https://t.me/cvedetector/15031", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12204 - WooCommerce Coupon X Unauthenticated Access Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-12204 \nPublished : Jan. 11, 2025, 3:15 a.m. | 28\u00a0minutes ago \nDescription : The Coupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups plugin for WordPress is vulnerable to unauthorized access due to missing capability checks on several functions in the class-cx-rest.php file in all versions up to, and including, 1.3.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to create 100% off coupons, delete posts, delete leads, and update coupon statuses. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-11T04:53:26.000000Z"}, {"uuid": "273f134a-67f0-41d7-987e-f1e43bf6bcb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12201", "type": "seen", "source": "https://t.me/cvedetector/12748", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12201 - WordPress Hash Form Drag & Drop Form Builder Missing Capability Check Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-12201 \nPublished : Dec. 12, 2024, 7:15 a.m. | 33\u00a0minutes ago \nDescription : The Hash Form \u2013 Drag & Drop Form Builder plugin for WordPress is vulnerable to unauthorized access due to a missing capability check when creating form styles in all versions up to, and including, 1.2.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to create new form styles. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-12T08:48:51.000000Z"}, {"uuid": "02356267-33d0-4e92-a38f-a380605eb562", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://t.me/cvedetector/12330", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12209 - \"WP Umbrella: Remote File Execution via arbitrary file inclusion\"\", \n  \"Content\": \"CVE ID : CVE-2024-12209 \nPublished : Dec. 8, 2024, 6:15 a.m. | 22\u00a0minutes ago \nDescription : The WP Umbrella: Update Backup Restore & Monitoring plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 2.17.0 via the 'filename' parameter of the 'umbrella-restore' action. This makes it possible for unauthenticated attackers to include and execute arbitrary files on the server, allowing the execution of any PHP code in those files. This can be used to bypass access controls, obtain sensitive data, or achieve code execution in cases where images and other \u201csafe\u201d file types can be uploaded and included. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-08T07:45:18.000000Z"}, {"uuid": "3ec1cae5-0da1-47c0-8a45-d7b6f09abdd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11600", "content": "#exploit\n1. A Practical Guide to PrintNightmare in 2024 (updated\u00a0Oct 5)\nhttps://itm4n.github.io/printnightmare-exploitation\n]-> PnP bypass\n\n2. CVE-2024-12209:\nWP Umbrella Unauthenticated LFI\nhttps://github.com/Nxploited/CVE-2024-12209\n\n3. CVE-2024-30085:\nWindows 11 23H2 EoP\nhttps://ssd-disclosure.com/ssd-advisory-cldflt-heap-based-overflow-pe", "creation_timestamp": "2024-12-24T17:57:48.000000Z"}, {"uuid": "b7a76eb7-ed86-4782-8eca-340609cd0470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "published-proof-of-concept", "source": "https://t.me/HackerArsenal/768", "content": "#exploit\n1. A Practical Guide to PrintNightmare in 2024 (updated\u00a0Oct 5)\nhttps://itm4n.github.io/printnightmare-exploitation\n]-> PnP bypass\n\n2. CVE-2024-12209:\nWP Umbrella Unauthenticated LFI\nhttps://github.com/Nxploited/CVE-2024-12209\n\n3. CVE-2024-30085:\nWindows 11 23H2 EoP\nhttps://ssd-disclosure.com/ssd-advisory-cldflt-heap-based-overflow-pe", "creation_timestamp": "2024-12-24T12:49:11.000000Z"}, {"uuid": "3f4b481f-1b5f-4e03-8c0f-2fce3d03a773", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1220", "type": "seen", "source": "https://t.me/ctinow/200972", "content": "https://ift.tt/udOV1iy\nCVE-2024-1220", "creation_timestamp": "2024-03-06T03:31:28.000000Z"}, {"uuid": "e238465a-f68b-4b2b-832d-4e26935b91fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-1220", "type": "seen", "source": "https://t.me/ctinow/200971", "content": "https://ift.tt/udOV1iy\nCVE-2024-1220", "creation_timestamp": "2024-03-06T03:26:07.000000Z"}, {"uuid": "28c122cb-b9c5-47da-8d06-7f7af86c1340", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "published-proof-of-concept", "source": "https://t.me/ckeArsenal/245", "content": "https://github.com/Nxploited/CVE-2024-12209\n\nUnauthenticated Local File Inclusion\n#github #exploit", "creation_timestamp": "2024-12-24T11:45:43.000000Z"}, {"uuid": "4119efcb-700f-41e0-86a7-b57e0a8d01f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://t.me/CyberBulletin/26733", "content": "\u26a1\ufe0fCVE-2024-12209 (CVSS 9.8): WP Umbrella Plugin Vulnerability Exposes 30,000 Websites to Compromise.\n\n#CyberBulletin", "creation_timestamp": "2024-12-08T11:24:46.000000Z"}, {"uuid": "c080985c-1bcf-4d48-877c-77fd75c67214", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12200", "type": "seen", "source": "https://t.me/cvedetector/13110", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-12200 - Autodesk Navisworks Out-of-Bounds Write Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-12200 \nPublished : Dec. 17, 2024, 4:15 p.m. | 19\u00a0minutes ago \nDescription : A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Write vulnerability. A malicious actor can leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process. \nSeverity: 7.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T17:36:59.000000Z"}, {"uuid": "2e1645b3-7d5d-4256-9733-14ab88eb0f8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-12209", "type": "seen", "source": "https://t.me/suboxone_chatroom/1577", "content": "#exploit\n1. A Practical Guide to PrintNightmare in 2024 (updated\u00a0Oct 5)\nhttps://itm4n.github.io/printnightmare-exploitation\n]-> PnP bypass\n\n2. CVE-2024-12209:\nWP Umbrella Unauthenticated LFI\nhttps://github.com/Nxploited/CVE-2024-12209\n\n3. CVE-2024-30085:\nWindows 11 23H2 EoP\nhttps://ssd-disclosure.com/ssd-advisory-cldflt-heap-based-overflow-pe", "creation_timestamp": "2025-01-27T07:07:44.000000Z"}]}