{"vulnerability": "cve-2024-3011", "sightings": [{"uuid": "5976e4bb-6f8c-493c-b690-0e929a6e827a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30115", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14184", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-30115\n\ud83d\udd25 CVSS Score: 6.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N)\n\ud83d\udd39 Description: Insufficient sanitization policy in HCL Leap\nallows client-side script injection in the deployed application through the\nHTML widget.\n\ud83d\udccf Published: 2025-04-30T21:14:20.204Z\n\ud83d\udccf Modified: 2025-04-30T21:14:20.204Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120722", "creation_timestamp": "2025-04-30T22:14:21.000000Z"}, {"uuid": "21b3f234-7402-406b-b8be-ea2187e96e8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30115", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo37f5ngpt2n", "content": "", "creation_timestamp": "2025-05-01T01:56:13.031523Z"}, {"uuid": "9518f315-92bb-4514-8100-50c17033e246", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30114", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13283", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-30114\n\ud83d\udd25 CVSS Score: 3.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:N)\n\ud83d\udd39 Description: Insufficient sanitization in HCL Leap allows\nclient-side script injection in the authoring environment.\n\ud83d\udccf Published: 2025-04-24T16:22:09.455Z\n\ud83d\udccf Modified: 2025-04-24T16:22:09.455Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0119900", "creation_timestamp": "2025-04-24T17:06:33.000000Z"}, {"uuid": "e90ad5df-c5ef-4387-8370-d968f16eab6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30113", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13282", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-30113\n\ud83d\udd25 CVSS Score: 6.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N)\n\ud83d\udd39 Description: Insufficient sanitization policy in HCL Leap\nallows client-side script injection in the deployed application through the\nHTML widget.\n\ud83d\udccf Published: 2025-04-24T16:23:21.236Z\n\ud83d\udccf Modified: 2025-04-24T16:23:21.236Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0119900", "creation_timestamp": "2025-04-24T17:06:32.000000Z"}, {"uuid": "765bc4ce-b4ea-4b9d-87ab-e79626b47aa7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30113", "type": "seen", "source": "https://t.me/cvedetector/23701", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-30113 - HCL Leap Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-30113 \nPublished : April 24, 2025, 5:15 p.m. | 1\u00a0hour, 17\u00a0minutes ago \nDescription : Insufficient sanitization policy in HCL Leap  \nallows client-side script injection in the deployed application through the  \nHTML widget. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-24T20:35:38.000000Z"}, {"uuid": "07a0f5ea-c525-4d9c-9350-e485b79fb3b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30114", "type": "seen", "source": "https://t.me/cvedetector/23698", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-30114 - HCL Leap Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-30114 \nPublished : April 24, 2025, 5:15 p.m. | 1\u00a0hour, 17\u00a0minutes ago \nDescription : Insufficient sanitization in HCL Leap allows  \nclient-side script injection in the authoring environment. \nSeverity: 3.7 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-24T20:35:33.000000Z"}, {"uuid": "21133ffb-3330-44e5-9f91-a7e26925dbaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30117", "type": "seen", "source": "https://t.me/cvedetector/7871", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-30117 - Apache Impersonation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-30117 \nPublished : Oct. 14, 2024, 11:15 p.m. | 34\u00a0minutes ago \nDescription : A dynamic search for a prerequisite library could allow the possibility for an attacker to replace the correct file under some circumstances. \nSeverity: 2.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-15T01:53:02.000000Z"}, {"uuid": "78b38e74-1521-4640-8ca0-2af2e20a023b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30115", "type": "seen", "source": "https://t.me/cvedetector/24169", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-30115 - HCL Leap Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-30115 \nPublished : April 30, 2025, 10:15 p.m. | 1\u00a0hour, 52\u00a0minutes ago \nDescription : Insufficient sanitization policy in HCL Leap  \nallows client-side script injection in the deployed application through the  \nHTML widget. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T02:17:29.000000Z"}, {"uuid": "2e456266-069e-4f02-9031-efbbd23e5e12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-30118", "type": "seen", "source": "https://t.me/cvedetector/7534", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-30118 - HCL Connections Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-30118 \nPublished : Oct. 9, 2024, 8:15 p.m. | 44\u00a0minutes ago \nDescription : HCL Connections is vulnerable to an information disclosure vulnerability which could allow a user to obtain sensitive information they are not entitled to because of improperly handling the request data. \nSeverity: 3.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-09T23:11:22.000000Z"}]}