{"vulnerability": "cve-2024-4044", "sightings": [{"uuid": "d2980475-cbce-4a40-a259-a808d490e812", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40443", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113477289852591261", "content": "", "creation_timestamp": "2024-11-13T19:27:09.769814Z"}, {"uuid": "a3d06850-e038-472b-a12f-4fc64509dd25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40446", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnfxbnjwip2r", "content": "", "creation_timestamp": "2025-04-22T15:05:06.165215Z"}, {"uuid": "dc3b5fef-13bc-4b0d-820b-310608d424cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40445", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnfxbodkrj2b", "content": "", "creation_timestamp": "2025-04-22T15:05:07.237204Z"}, {"uuid": "eb727487-2a9b-47bd-bd64-bd54e865c12a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40446", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114388534917212203", "content": "", "creation_timestamp": "2025-04-23T17:48:46.357849Z"}, {"uuid": "06dfc173-dbe8-4d19-b4ee-385f92cdee49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40443", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/8986", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-40443 - A SQL Injection vulnerability in Computer Laboratory Management System v1.0 allows attackers to execute arbitrary SQL commands \nURL\uff1ahttps://github.com/Yuma-Tsushima07/CVE-2024-40443\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-11-10T17:37:37.000000Z"}, {"uuid": "30d18421-360a-4f1e-9b5d-ee44c486272d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40443", "type": "seen", "source": "https://t.me/cvedetector/10873", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40443 - Simple Laboratory Management System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-40443 \nPublished : Nov. 13, 2024, 8:15 p.m. | 39\u00a0minutes ago \nDescription : SQL Injection vulnerability in Simple Laboratory Management System using PHP and MySQL v.1.0 allows a remote attacker to cause a denial of service via the delete_users function in the Useres.php \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-13T22:15:23.000000Z"}, {"uuid": "22933d3e-8f44-46bf-a7f8-28925422bbbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40446", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13055", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40446\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in forkosh Mime Tex before v.1.77 allows an attacker to execute arbitrary code via a crafted script\n\ud83d\udccf Published: 2025-04-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-23T14:51:22.252Z\n\ud83d\udd17 References:\n1. https://youtu.be/S3cmZkWIi6o\n2. https://github.com/TaiYou-TW/CVE-2024-40445_CVE-2024-40446/", "creation_timestamp": "2025-04-23T15:04:44.000000Z"}, {"uuid": "585e5c01-a565-4c00-afbb-73e407610e15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40445", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13055", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40446\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in forkosh Mime Tex before v.1.77 allows an attacker to execute arbitrary code via a crafted script\n\ud83d\udccf Published: 2025-04-22T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-23T14:51:22.252Z\n\ud83d\udd17 References:\n1. https://youtu.be/S3cmZkWIi6o\n2. https://github.com/TaiYou-TW/CVE-2024-40445_CVE-2024-40446/", "creation_timestamp": "2025-04-23T15:04:44.000000Z"}, {"uuid": "8d20b744-e713-4e95-a2aa-e3172ae4a422", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40446", "type": "seen", "source": "https://t.me/cvedetector/23525", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40446 - Forkosh Mime Tex Script Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-40446 \nPublished : April 22, 2025, 2:15 p.m. | 1\u00a0hour, 45\u00a0minutes ago \nDescription : An issue in forkosh Mime Tex before v.1.77 allows an attacker to execute arbitrary code via a crafted script \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T18:24:19.000000Z"}, {"uuid": "f72e4843-51dc-438d-8163-e0a025e424fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40443", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7413", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-40443\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SQL Injection vulnerability in Simple Laboratory Management System using PHP and MySQL v.1.0 allows a remote attacker to cause a denial of service via the delete_users function in the Useres.php\n\ud83d\udccf Published: 2024-11-13T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-13T13:37:45.487Z\n\ud83d\udd17 References:\n1. https://gist.github.com/Yuma-Tsushima07/32bb887b791fec5c805557bedfec55c7\n2. https://github.com/Yuma-Tsushima07/CVE-2024-40443", "creation_timestamp": "2025-03-13T13:44:56.000000Z"}, {"uuid": "aef33631-2e06-4a15-a1a7-44100e88213c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40445", "type": "seen", "source": "https://t.me/cvedetector/23524", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40445 - Forkosh Mime Tex Directory Traversal Arbitrary Code Execution\", \n  \"Content\": \"CVE ID : CVE-2024-40445 \nPublished : April 22, 2025, 2:15 p.m. | 1\u00a0hour, 45\u00a0minutes ago \nDescription : Directory Traversal vulnerability in forkosh Mime Tex before v.1.77 allows an attacker to execute arbitrary code via a crafted file upload \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T18:24:18.000000Z"}, {"uuid": "790c2310-fc56-4ad8-b827-566a7bb6ebc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40441", "type": "seen", "source": "https://t.me/cvedetector/6197", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40441 - \"Doccano Privilege Escalation Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-40441 \nPublished : Sept. 23, 2024, 5:15 p.m. | 17\u00a0minutes ago \nDescription : An issue in Doccano Open source annotation tools for machine learning practitioners v.1.8.4 and Doccano Auto Labeling Pipeline module to annotate a document automatically v.0.1.23 allows a remote attacker to escalate privileges via the model_attribs parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-23T19:39:56.000000Z"}, {"uuid": "ddf08483-76a2-44bc-a00e-9cd13ffabfc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40442", "type": "seen", "source": "https://t.me/cvedetector/6196", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-40442 - Doccano Remote Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-40442 \nPublished : Sept. 23, 2024, 5:15 p.m. | 17\u00a0minutes ago \nDescription : An issue in Doccano Open source annotation tools for machine learning practitioners v.1.8.4 and Doccano Auto Labeling Pipeline module to annotate a document automatically v.0.1.23 allows a remote attacker to escalate privileges via a crafted REST Request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-23T19:39:55.000000Z"}, {"uuid": "fae3fb84-a216-42b0-9bc0-33c1d726e2aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40446", "type": "published-proof-of-concept", "source": "Telegram/8GX73CileDjt-fkeOz6fewNGCcvBWqpXxTS3DIKV10F-pe4", "content": "", "creation_timestamp": "2025-04-21T23:00:12.000000Z"}, {"uuid": "27a49294-521f-4530-9ccd-08c1f0b9bf80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-40445", "type": "published-proof-of-concept", "source": "Telegram/8GX73CileDjt-fkeOz6fewNGCcvBWqpXxTS3DIKV10F-pe4", "content": "", "creation_timestamp": "2025-04-21T23:00:12.000000Z"}]}