{"vulnerability": "cve-2024-31974", "sightings": [{"uuid": "5bbfc0db-829f-414f-9fe0-70d178aaf44a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/7324", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-31974\nURL\uff1ahttps://github.com/absholi7ly/WordPress-XStore-theme-SQL-Injection\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-05-17T04:20:11.000000Z"}, {"uuid": "1a7b673a-7425-42b4-a1c9-c6e8aa890b3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "seen", "source": "https://t.me/GithubRedTeam/7323", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-31974\nURL\uff1ahttps://github.com/actuator/com.solarized.firedown\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-05-17T02:17:45.000000Z"}, {"uuid": "ba0a652a-9218-4c06-8d6f-8016c8d0b523", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/CyberDilara/175", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-17T14:12:01.000000Z"}, {"uuid": "17d10e2a-a5c4-4966-b71e-836fdda04682", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/GhostPrincess/14707", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-14T07:04:20.000000Z"}, {"uuid": "a3aa6cf5-578b-4f37-9049-e365f80cef74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/7959", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-14T06:58:10.000000Z"}, {"uuid": "7592b5ef-5807-4f1e-9ddd-3770e3cbcdc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/GhostPrincess/21986", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-14T07:04:20.000000Z"}, {"uuid": "879fdc03-5ab0-4b93-a04c-5881663eb815", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3281", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-14T07:04:38.000000Z"}, {"uuid": "ed645379-b805-4cc2-a6d4-90e2629092d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/GrayHatsHack/6728", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-14T06:58:10.000000Z"}, {"uuid": "41ad9b76-452d-4823-b998-fcce46a496c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/androidMalware/2235", "content": "Android Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974", "creation_timestamp": "2024-06-24T15:29:02.000000Z"}, {"uuid": "21cf33cb-6bc9-4fcd-8aac-9626040eec68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-31974", "type": "published-proof-of-concept", "source": "https://t.me/GhostClanInt/25050", "content": "Tools - Hackers Factory\n\nCollection of OPSEC Tradecraft and TTPs for Red Team Operations\n\nhttps://github.com/WesleyWong420/OPSEC-Tradecraft\n\nAndroid Firedown Browser app allows a remote attacker to execute arbitrary JavaScript code via an implicit intent (CVE-2024-31974)\n\nhttps://github.com/actuator/com.solarized.firedown/blob/main/CVE-2024-31974\n\nPS4 PPPwn Exploit: Using Android DroidPPPwn app it is possible to jailbreak PS4\n\nInfo: https://wololo.net/2024/05/28/ps4-pppwn-exploit-droidpppwn-port-to-android-phones-version-1-1/\n\nDroidPPPwn: https://github.com/deviato/DroidPPPwn\n\nNew dalvik bytecode disassembler and graph view\n\nBlog: https://margin.re/2024/05/dalvik-disassembly/\n\nGithub: https://github.com/MarginResearch/dalvik\n\n\u5b8c\u5168\u514d\u8d39\u5f00\u6e90\uff0c\u57fa\u4e8e AIOHTTP \u6a21\u5757\u5b9e\u73b0\uff1aTikTok \u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u539f\u58f0\uff1b\u6296\u97f3\u4e3b\u9875/\u89c6\u9891/\u56fe\u96c6/\u6536\u85cf/\u76f4\u64ad/\u539f\u58f0/\u5408\u96c6/\u8bc4\u8bba/\u8d26\u53f7/\u641c\u7d22/\u70ed\u699c\u6570\u636e\u91c7\u96c6\u5de5\u5177 \n\nhttps://github.com/JoeanAmier/TikTokDownloader\n\nALL IN ONE Hacking Tool For Hackers\n\nhttps://github.com/Z4nzu/hackingtool\n\nIncident Response Projects for Beginners\n\nHands-on projects designed to enhance your\u00a0 cybersecurity skills:\n\n- Phishing Attack Investigation\n- Malware Analysis and Containment\n- Network Intrusion Detection and Response\n- DDoS Attack Detection and Response\n\nhttps://github.com/0xrajneesh/Incident-Response-Projects-for-Beginners\n\nNetwork Pentesting Mindmap \n\n- Traffic Hijacking\n- MiTM Attacks\n- Dynamic IGP Routing\n- Configuration Exfiltration\n- DoS\n- NAC/802.1X Bypassing\n- GRE Pivoting\n- Cisco EEM for hiding user\n- Authentication Cracking\n- Information Gathering\n- Cisco Passwords\n- VLAN Bypassing\n\nhttps://github.com/casterbyte/NetworkNightmare/tree/main\n\n#HackersFactory", "creation_timestamp": "2024-06-14T06:58:25.000000Z"}]}