{"vulnerability": "cve-2024-4477", "sightings": [{"uuid": "9d4b9e48-b90d-4785-b91c-f451d684be78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44771", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113822434675262534", "content": "", "creation_timestamp": "2025-01-13T18:22:01.720696Z"}, {"uuid": "a32d3ceb-3103-4d5e-82fd-36b0a3bba510", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44771", "type": "seen", "source": "https://bsky.app/profile/gothburz.bsky.social/post/3lfptifn5vy2h", "content": "", "creation_timestamp": "2025-01-14T18:02:21.082660Z"}, {"uuid": "78b491d3-c58f-420d-a80e-da25232e1803", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44776", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8701", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-44776\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to redirect users to a malicious site via a crafted URL.\n\ud83d\udccf Published: 2024-08-29T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-25T16:10:43.727Z\n\ud83d\udd17 References:\n1. http://vtiger.com\n2. https://packetstormsecurity.com/files/180461/vTiger-CRM-7.4.0-Open-Redirection.html", "creation_timestamp": "2025-03-25T16:25:05.000000Z"}, {"uuid": "14771c09-0c18-4cf1-8500-aeedd8196a84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44771", "type": "seen", "source": "https://t.me/cvedetector/15167", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44771 - BigId PrivacyPortal Cross Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-44771 \nPublished : Jan. 13, 2025, 7:15 p.m. | 43\u00a0minutes ago \nDescription : BigId PrivacyPortal v179 is vulnerable to Cross Site Scripting (XSS) via the \"Label\" field in the Report template function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T21:15:27.000000Z"}, {"uuid": "96db2ec0-40d0-4454-9ec9-8d43f3a3c69f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44776", "type": "seen", "source": "https://t.me/cvedetector/4439", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44776 - vTiger CRM Open Redirect Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44776 \nPublished : Aug. 29, 2024, 6:15 p.m. | 44\u00a0minutes ago \nDescription : An Open Redirect vulnerability in the page parameter of vTiger CRM v7.4.0 allows attackers to redirect users to a malicious site via a crafted URL. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T21:14:39.000000Z"}, {"uuid": "b7293822-f8ae-47ee-94c3-30604ab23c56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44778", "type": "seen", "source": "https://t.me/cvedetector/4438", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44778 - vTiger CRM Reflected Cross-Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-44778 \nPublished : Aug. 29, 2024, 6:15 p.m. | 44\u00a0minutes ago \nDescription : A reflected cross-site scripting (XSS) vulnerability in the parent parameter in the index page of vTiger CRM 7.4.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T21:14:38.000000Z"}, {"uuid": "764f9b66-af1d-4c8b-a730-ddb7c14dc11d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44779", "type": "seen", "source": "https://t.me/cvedetector/4436", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44779 - vTiger CRM Reflected Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-44779 \nPublished : Aug. 29, 2024, 6:15 p.m. | 44\u00a0minutes ago \nDescription : A reflected cross-site scripting (XSS) vulnerability in the viewname parameter in the index page of vTiger CRM 7.4.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T21:14:36.000000Z"}, {"uuid": "a987b1b0-b45b-47cc-9d1f-3f8822362b7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-44777", "type": "seen", "source": "https://t.me/cvedetector/4435", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-44777 - vTiger CRM XSS vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-44777 \nPublished : Aug. 29, 2024, 6:15 p.m. | 44\u00a0minutes ago \nDescription : A reflected cross-site scripting (XSS) vulnerability in the tag parameter in the index page of vTiger CRM 7.4.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-29T21:14:36.000000Z"}]}