{"vulnerability": "cve-2024-3877", "sightings": [{"uuid": "0ec00eb3-2832-4d7d-8040-17f82a0b4782", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38778", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler5ukiluu22", "content": "", "creation_timestamp": "2025-01-02T13:15:34.385391Z"}, {"uuid": "b6011bec-2efd-4792-8581-5e189fc65b6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38778", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lercqlcpma2h", "content": "", "creation_timestamp": "2025-01-02T14:42:53.143630Z"}, {"uuid": "98047fc4-4e50-4e01-b425-6095652610d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38770", "type": "seen", "source": "https://t.me/cvedetector/2282", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38770 - Revmakx WP Time Capsule Privilege Escalation Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-38770 \nPublished : Aug. 1, 2024, 9:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Privilege Management vulnerability in Revmakx Backup and Staging by WP Time Capsule allows Privilege Escalation, Authentication Bypass.This issue affects Backup and Staging by WP Time Capsule: from n/a through 1.22.20. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-01T23:47:38.000000Z"}, {"uuid": "eface9a4-758c-4d16-b868-44adff2cf4e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38778", "type": "seen", "source": "https://t.me/cvedetector/14143", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38778 - Epsiloncool WP Fast Total Search CSRF Attack\", \n  \"Content\": \"CVE ID : CVE-2024-38778 \nPublished : Jan. 2, 2025, 1:15 p.m. | 39\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in Epsiloncool WP Fast Total Search.This issue affects WP Fast Total Search: from n/a through 1.69.234. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T15:05:27.000000Z"}, {"uuid": "edc1dbd0-9961-4469-9571-25c9dbfedfac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38776", "type": "seen", "source": "https://t.me/cvedetector/2336", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38776 - Martin Gibson WP GoToWebinar CSRF and XSS\", \n  \"Content\": \"CVE ID : CVE-2024-38776 \nPublished : Aug. 2, 2024, 8:15 a.m. | 20\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in Martin Gibson WP GoToWebinar allows Cross-Site Scripting (XSS).This issue affects WP GoToWebinar: from n/a through 15.7. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-02T10:40:27.000000Z"}, {"uuid": "e32f3dca-3649-4348-b384-0fae5bab5f51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38772", "type": "seen", "source": "https://t.me/cvedetector/2279", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38772 - Crocoblock JetWidgets for Elementor and WooCommerce: Path Traversal\", \n  \"Content\": \"CVE ID : CVE-2024-38772 \nPublished : Aug. 1, 2024, 9:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Crocoblock JetWidgets for Elementor and WooCommerce allows PHP Local File Inclusion.This issue affects JetWidgets for Elementor and WooCommerce: from n/a through 1.1.7. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-01T23:47:32.000000Z"}, {"uuid": "1ab3fe51-69e5-4a57-9971-9248fee23c04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38775", "type": "seen", "source": "https://t.me/cvedetector/2278", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38775 - WebAppick CTX Feed Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38775 \nPublished : Aug. 1, 2024, 9:15 p.m. | 26\u00a0minutes ago \nDescription : Improper Privilege Management vulnerability in WebAppick CTX Feed allows Privilege Escalation.This issue affects CTX Feed: from n/a through 6.5.6. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-01T23:47:31.000000Z"}, {"uuid": "b88b55db-c086-4e07-a22f-3b9a36a7cb5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-38773", "type": "seen", "source": "https://t.me/cvedetector/1429", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38773 - FormLift for Infusionsoft Web Forms SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-38773 \nPublished : July 22, 2024, 11:15 a.m. | 21\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Adrian Tobey FormLift for Infusionsoft Web Forms allows Blind SQL Injection.This issue affects FormLift for Infusionsoft Web Forms: from n/a through 7.5.17. \nSeverity: 9.3 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-22T13:38:31.000000Z"}]}