{"vulnerability": "cve-2024-4404", "sightings": [{"uuid": "856742af-1225-4cb4-9b24-9dfecc20c998", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4723", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-44044\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Oshine Modules allows Reflected XSS. This issue affects Oshine Modules: from n/a through n/a.\n\ud83d\udccf Published: 2025-02-16T22:17:16.036Z\n\ud83d\udccf Modified: 2025-02-16T22:17:16.036Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/oshine-modules/vulnerability/wordpress-oshine-modules-plugin-3-3-8-reflected-cross-site-scripting-xss-vulnerability-2?_s_id=cve", "creation_timestamp": "2025-02-17T00:43:05.000000Z"}, {"uuid": "93894472-578e-4f74-b276-d51595f22923", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114015907473400158", "content": "", "creation_timestamp": "2025-02-16T22:24:45.315291Z"}, {"uuid": "89fe82fd-0775-494d-94fd-5886a6c3a28a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114015925023573005", "content": "", "creation_timestamp": "2025-02-16T22:29:10.242348Z"}, {"uuid": "abe6fbed-8471-4326-b4a9-e2da483da548", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lideenad7e2g", "content": "", "creation_timestamp": "2025-02-16T23:15:26.754510Z"}, {"uuid": "59a1dd51-ef7e-4886-ba87-fde1cca02189", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"}, {"uuid": "bcb18720-b7cb-4f3b-9d7d-7d49d1315404", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "seen", "source": "Telegram/01FvrhYfgj2s-QFTlERpOmUQaaLM2sy6MfVRZ1_s438x90vc", "content": "", "creation_timestamp": "2025-02-17T03:38:40.000000Z"}, {"uuid": "48561f67-c45b-40d0-b085-da035ec701cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44044", "type": "seen", "source": "https://t.me/cvedetector/18215", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44044 - Oshine Modules Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-44044 \nPublished : Feb. 16, 2025, 11:15 p.m. | 1\u00a0hour, 9\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Oshine Modules allows Reflected XSS. This issue affects Oshine Modules: from n/a through n/a. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-17T01:29:39.000000Z"}, {"uuid": "7716fe3e-5c2d-48cc-8bd5-42fbc0ceec01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44045", "type": "seen", "source": "https://t.me/cvedetector/7163", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44045 - Kevon Adonis WP Abstracts Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-44045 \nPublished : Oct. 6, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Kevon Adonis WP Abstracts allows Stored XSS.This issue affects WP Abstracts: from n/a through 2.6.5. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-06T14:53:01.000000Z"}, {"uuid": "8579c406-7f2e-449b-b808-5198dabb220f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44043", "type": "seen", "source": "https://t.me/cvedetector/7162", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44043 - 10Web Photo Gallery Stored Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-44043 \nPublished : Oct. 6, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in 10Web Photo Gallery by 10Web allows Stored XSS.This issue affects Photo Gallery by 10Web: from n/a through 1.8.27. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-06T14:53:01.000000Z"}, {"uuid": "bd26fbb8-ab70-40c1-bfa9-822881e0a1b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44042", "type": "seen", "source": "https://t.me/cvedetector/7161", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44042 - Fahad Mahmood WP Datepicker Stored Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44042 \nPublished : Oct. 6, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Fahad Mahmood WP Datepicker allows Stored XSS.This issue affects WP Datepicker: from n/a through 2.1.1. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-06T14:53:00.000000Z"}, {"uuid": "5ed97690-a921-47c7-b3e0-2b1578f65de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44047", "type": "seen", "source": "https://t.me/cvedetector/5875", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44047 - IDX Broker IMPress Stored Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44047 \nPublished : Sept. 17, 2024, 11:15 p.m. | 15\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in IDX Broker IMPress for IDX Broker allows Stored XSS.This issue affects IMPress for IDX Broker: from n/a through 3.2.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T01:39:28.000000Z"}, {"uuid": "39ddc9cf-981e-4d88-81f1-5c4e20e2097e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44041", "type": "seen", "source": "https://t.me/cvedetector/7165", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44041 - Martin Gibson IdeaPush Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-44041 \nPublished : Oct. 6, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Martin Gibson IdeaPush allows Stored XSS.This issue affects IdeaPush: from n/a through 8.66. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-06T14:53:03.000000Z"}, {"uuid": "9b60ce68-0c2d-48cd-b503-1f9c226f2159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44046", "type": "seen", "source": "https://t.me/cvedetector/7164", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44046 - Themify WooCommerce Product Filter Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44046 \nPublished : Oct. 6, 2024, 12:15 p.m. | 29\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Themify Themify \u2013 WooCommerce Product Filter allows Stored XSS.This issue affects Themify \u2013 WooCommerce Product Filter: from n/a through 1.5.1. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-06T14:53:02.000000Z"}, {"uuid": "ea5a150a-fc2f-4ffd-981a-df6d490dd4ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44040", "type": "seen", "source": "https://t.me/cvedetector/7177", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44040 - Plainware ShiftController Employee Shift Scheduling Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-44040 \nPublished : Oct. 6, 2024, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Plainware ShiftController Employee Shift Scheduling allows Stored XSS.This issue affects ShiftController Employee Shift Scheduling: from n/a through 4.9.64. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-06T15:43:25.000000Z"}, {"uuid": "8e2dd658-8919-477a-9141-7f34f349382e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44048", "type": "seen", "source": "https://t.me/cvedetector/6170", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44048 - WooCommerce Product Carousel Slider & Grid Ultimate Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44048 \nPublished : Sept. 23, 2024, 1:15 a.m. | 27\u00a0minutes ago \nDescription : Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in wpWax Product Carousel Slider & Grid Ultimate for WooCommerce allows PHP Local File Inclusion.This issue affects Product Carousel Slider & Grid Ultimate for WooCommerce: from n/a through 1.9.10. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-23T03:46:28.000000Z"}, {"uuid": "a9bdc319-b223-4951-8237-4c3c1555e041", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44049", "type": "seen", "source": "https://t.me/cvedetector/5866", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44049 - ThemeHunk Gutenberg Blocks Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44049 \nPublished : Sept. 17, 2024, 11:15 p.m. | 15\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in ThemeHunk Gutenberg Blocks \u2013 Unlimited blocks For Gutenberg allows Stored XSS.This issue affects Gutenberg Blocks \u2013 Unlimited blocks For Gutenberg: from n/a through 1.2.7. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-18T01:39:15.000000Z"}]}