{"vulnerability": "cve-2024-47878", "sightings": [{"uuid": "f5c99eeb-8cb0-47bf-b2be-053655b7d930", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-47878", "type": "seen", "source": "https://t.me/cvedetector/8860", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-47878 - OpenRefine Unvalidated Script Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-47878 \nPublished : Oct. 24, 2024, 9:15 p.m. | 36\u00a0minutes ago \nDescription : OpenRefine is a free, open source tool for working with messy data. Prior to version 3.8.3, the `/extension/gdata/authorized` endpoint includes the `state` GET parameter verbatim in a `\",\n  \"Detection Date\": \"24 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-25T00:21:38.000000Z"}, {"uuid": "5e7ddb16-5b45-4e1d-b9e5-1cfd87fad6d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-47878", "type": "published-proof-of-concept", "source": "https://github.com/OpenRefine/OpenRefine/security/advisories/GHSA-pw3x-c5vp-mfc3", "content": "", "creation_timestamp": "2024-10-24T06:01:01.000000Z"}]}