{"vulnerability": "cve-2024-4259", "sightings": [{"uuid": "fd62ed90-b1de-40a7-baef-9218fd9fec13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4259", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7536", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-4259\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N)\n\ud83d\udd39 Description: Improper Privilege Management vulnerability in SAMPA\u015e Holding AKOS (AkosCepVatandasService), SAMPA\u015e Holding AKOS (TahsilatService) allows Collect Data as Provided by Users.This issue affects AKOS (AkosCepVatandasService): before V2.0; AKOS (TahsilatService): before V1.0.7.\n\ud83d\udccf Published: 2024-09-03T13:15:31.501Z\n\ud83d\udccf Modified: 2025-03-14T08:33:26.184Z\n\ud83d\udd17 References:\n1. https://www.usom.gov.tr/bildirim/tr-24-1377", "creation_timestamp": "2025-03-14T08:46:02.000000Z"}, {"uuid": "03e446f5-9d63-4040-a80b-226743398775", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42598", "type": "seen", "source": "https://t.me/cvedetector/3667", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42598 - SeaCMS Arbitrary Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42598 \nPublished : Aug. 20, 2024, 4:15 p.m. | 33\u00a0minutes ago \nDescription : SeaCMS 13.0 has a remote code execution vulnerability. The reason for this vulnerability is that although admin_editplayer.php imposes restrictions on edited files, attackers can still bypass these restrictions and write code, allowing authenticated attackers to exploit the vulnerability to execute arbitrary commands and gain system privileges. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-20T18:48:51.000000Z"}, {"uuid": "ec8dc990-acb2-4cc2-9691-cbde9677e53d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4259", "type": "seen", "source": "https://t.me/cvedetector/4694", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-4259 - SAMPA\u015e Holding AKOS Privilege Escalation Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-4259 \nPublished : Sept. 3, 2024, 2:15 p.m. | 15\u00a0minutes ago \nDescription : Improper Privilege Management vulnerability in SAMPA\u015e Holding AKOS allows Collect Data as Provided by Users.This issue affects AKOS: through 20240902.\u00a0  \n  \nNOTE: The vendor was contacted early about this disclosure but did not respond in any way. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-03T16:38:29.000000Z"}, {"uuid": "a1fcecc2-0707-46e3-9135-50ef6124582e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-42599", "type": "seen", "source": "https://t.me/cvedetector/3953", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-42599 - SeaCMS Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-42599 \nPublished : Aug. 22, 2024, 8:15 p.m. | 28\u00a0minutes ago \nDescription : SeaCMS 13.0 has a remote code execution vulnerability. The reason for this vulnerability is that although admin_files.php imposes restrictions on edited files, attackers can still bypass these restrictions and write code, allowing authenticated attackers to exploit the vulnerability to execute arbitrary commands and gain system privileges. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-22T22:43:58.000000Z"}]}