{"vulnerability": "cve-2024-4399", "sightings": [{"uuid": "1c57e6c8-a818-4fa1-a7d4-2d6acfa6f55d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4399", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-4399.yaml", "content": "", "creation_timestamp": "2025-03-13T03:36:38.000000Z"}, {"uuid": "42b762c5-4b68-41f0-bbbb-5fbb1aea2dff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-4399", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lkbyl6zw4a2s", "content": "", "creation_timestamp": "2025-03-13T21:02:08.487907Z"}, {"uuid": "b2ff779c-c06d-44f8-acd1-05b1065896d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43990", "type": "seen", "source": "https://t.me/cvedetector/6322", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43990 - StylemixThemes Masterstudy LMS Starter Sensitive Information Exposure\", \n  \"Content\": \"CVE ID : CVE-2024-43990 \nPublished : Sept. 25, 2024, 3:15 p.m. | 22\u00a0minutes ago \nDescription : Insertion of Sensitive Information into Log File vulnerability in StylemixThemes Masterstudy LMS Starter.This issue affects Masterstudy LMS Starter: from n/a through 1.1.8. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-25T17:41:09.000000Z"}, {"uuid": "b992380d-2905-4e0d-9e03-be107ad8e675", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43996", "type": "seen", "source": "https://t.me/cvedetector/6169", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43996 - ElementsKit Pro Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43996 \nPublished : Sept. 23, 2024, 1:15 a.m. | 27\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ElementsKit ElementsKit Pro allows PHP Local File Inclusion.This issue affects ElementsKit Pro: from n/a through 3.6.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-23T03:46:28.000000Z"}, {"uuid": "a2ea498b-8cec-40be-a973-ad4b3f77a743", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43999", "type": "seen", "source": "https://t.me/cvedetector/5882", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43999 - Ninja Forms Stored Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-43999 \nPublished : Sept. 18, 2024, 12:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saturday Drive Ninja Forms allows Stored XSS.This issue affects Ninja Forms: from n/a through 3.8.11. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T03:19:46.000000Z"}, {"uuid": "3ffbb9d6-17f7-4279-bc27-a8bd816a7be2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43995", "type": "seen", "source": "https://t.me/cvedetector/5891", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43995 - Posterity Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43995 \nPublished : Sept. 18, 2024, 12:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in sonalsinha21 Posterity allows Stored XSS.This issue affects Posterity: from n/a through 3.6. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T03:19:56.000000Z"}, {"uuid": "cc26a13f-b2f5-4388-b998-c9a99b30f108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43994", "type": "seen", "source": "https://t.me/cvedetector/5890", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43994 - CryoutCreations Kahuna Stored Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-43994 \nPublished : Sept. 18, 2024, 12:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Kahuna allows Stored XSS.This issue affects Kahuna: from n/a through 1.7.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T03:19:55.000000Z"}, {"uuid": "a9baaa15-2bfa-41eb-87b7-ef8026af4275", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43993", "type": "seen", "source": "https://t.me/cvedetector/5889", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43993 - CryoutCreations Liquido Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43993 \nPublished : Sept. 18, 2024, 12:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in CryoutCreations Liquido allows Stored XSS.This issue affects Liquido: from n/a through 1.0.1.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T03:19:54.000000Z"}, {"uuid": "eac242a3-d243-480f-a63b-52ce497541b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43992", "type": "seen", "source": "https://t.me/cvedetector/5888", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43992 - Latepoint LatePoint Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-43992 \nPublished : Sept. 18, 2024, 12:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Latepoint LatePoint allows Stored XSS.This issue affects LatePoint: from n/a through 4.9.91. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T03:19:54.000000Z"}, {"uuid": "4a50d1b5-7da2-4fbe-9619-808d8d6b8e93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43991", "type": "seen", "source": "https://t.me/cvedetector/5887", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-43991 - Hotel Galaxy XSS Injection\", \n  \"Content\": \"CVE ID : CVE-2024-43991 \nPublished : Sept. 18, 2024, 12:15 a.m. | 35\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in webdzier Hotel Galaxy allows Stored XSS.This issue affects Hotel Galaxy: from n/a through 4.4.24. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T03:19:53.000000Z"}, {"uuid": "276a2f63-af8c-4403-96bb-7d260934a483", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-43998", "type": "published-proof-of-concept", "source": "Telegram/QbKsrVZo62SnFgMaF2CMO5HKDx0dEQUP8BMaXCucwzSM5V8", "content": "", "creation_timestamp": "2025-01-20T22:00:06.000000Z"}]}