{"vulnerability": "cve-2024-4645", "sightings": [{"uuid": "75bf646b-8612-4ab5-8675-51ed745c5ee2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-46455", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113624766751790332", "content": "", "creation_timestamp": "2024-12-09T20:32:28.462341Z"}, {"uuid": "7747f424-3c0d-47de-9012-fd70a87f208b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46450", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/113840477739106705", "content": "", "creation_timestamp": "2025-01-16T22:50:37.174127Z"}, {"uuid": "04e47cb2-01e8-440f-91d3-3f47742e98ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46450", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfveqjwlys2e", "content": "", "creation_timestamp": "2025-01-16T22:54:26.972184Z"}, {"uuid": "e8b9666e-cd5c-475d-bdb6-b1c7f7464cef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46450", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfvcllnx4a2t", "content": "", "creation_timestamp": "2025-01-16T22:15:52.745811Z"}, {"uuid": "67b1ffba-063b-4d06-a839-629fece978e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46450", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2083", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46450\n\ud83d\udd39 Description: Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi Router Model AC6 v2.0 Firmware v15.03.06.50 allows attackers to bypass authentication via a crafted web request.\n\ud83d\udccf Published: 2025-01-16T00:00:00\n\ud83d\udccf Modified: 2025-01-16T22:08:01.010862\n\ud83d\udd17 References:\n1. https://pastebin.com/BXxTqsZk", "creation_timestamp": "2025-01-16T22:56:41.000000Z"}, {"uuid": "b11756a7-1f35-445e-b4d7-656ec0d880b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46452", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lr74kcumeo2a", "content": "", "creation_timestamp": "2025-06-09T19:31:32.820281Z"}, {"uuid": "4d8770fc-33cb-43ff-9cdc-24dcf3a4e76b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46452", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17769", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-46452\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A Host Header injection vulnerability in the password reset function of VigyBag Open Source Online Shop commit 3f0e21b allows attackers to redirect victim users to a malicious site via a crafted URL.\n\ud83d\udccf Published: 2025-06-09T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-09T19:48:08.036Z\n\ud83d\udd17 References:\n1. https://github.com/codervivek5/VigyBag\n2. https://www.vigybag.com\n3. https://github.com/ch3tanbug/vulnerability-research/tree/main/CVE-2024-46452", "creation_timestamp": "2025-06-09T20:31:24.000000Z"}, {"uuid": "696dfb4d-1ffa-489f-abb3-3872034914ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46451", "type": "seen", "source": "https://t.me/cvedetector/5721", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46451 - TOTOLINK AC1200 T8 Buffer Overflow Vulnerability in setWiFiAclRules\", \n  \"Content\": \"CVE ID : CVE-2024-46451 \nPublished : Sept. 16, 2024, 1:15 p.m. | 41\u00a0minutes ago \nDescription : TOTOLINK AC1200 T8 v4.1.5cu.861_B20230220 has a buffer overflow vulnerability in the setWiFiAclRules function via the desc parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-16T16:11:40.000000Z"}, {"uuid": "5ac3b2ca-1e57-415a-8c8a-153be10823ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46450", "type": "seen", "source": "https://t.me/cvedetector/15658", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46450 - Tenda AC1200 Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-46450 \nPublished : Jan. 16, 2025, 10:15 p.m. | 28\u00a0minutes ago \nDescription : Incorrect access control in Tenda AC1200 Smart Dual-Band WiFi Router Model AC6 v2.0 Firmware v15.03.06.50 allows attackers to bypass authentication via a crafted web request. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T23:46:32.000000Z"}, {"uuid": "65683693-3a73-4b0e-9b1c-f2152b228335", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46455", "type": "seen", "source": "https://t.me/cvedetector/12449", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46455 - \"Unstructured XMLParser XXE Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-46455 \nPublished : Dec. 9, 2024, 9:15 p.m. | 37\u00a0minutes ago \nDescription : unstructured v.0.14.2 and before is vulnerable to XML External Entity (XXE) via the XMLParser. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T23:04:28.000000Z"}, {"uuid": "c2b32ec2-ebd4-4399-b99f-533a00a9e8a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-46453", "type": "seen", "source": "https://t.me/cvedetector/6581", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-46453 - Iq3xcite XSS\", \n  \"Content\": \"CVE ID : CVE-2024-46453 \nPublished : Sept. 27, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : A cross-site scripting (XSS) vulnerability in the component /test/ of iq3xcite v2.31 to v3.05 allows attackers to execute arbitrary web scripts or HTML via a crafted payload. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-28T00:16:12.000000Z"}]}