{"vulnerability": "cve-2024-5034", "sightings": [{"uuid": "cccf40a1-b64a-448a-8cb7-38726d4994fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50345", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113438023541075562", "content": "", "creation_timestamp": "2024-11-06T21:01:13.434625Z"}, {"uuid": "79fe36b6-7324-4357-a521-53de5705e86a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50340", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113438061792761841", "content": "", "creation_timestamp": "2024-11-06T21:10:56.960850Z"}, {"uuid": "c7a9f000-51df-4312-bc7d-9e3388cfd7de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50341", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113438061807610898", "content": "", "creation_timestamp": "2024-11-06T21:10:57.120704Z"}, {"uuid": "e21914a2-9664-4c81-8f29-fa8b3ee5f60e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50342", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113438061821670222", "content": "", "creation_timestamp": "2024-11-06T21:10:57.410313Z"}, {"uuid": "8b295fc8-6702-4afb-b70b-92d4844fd9e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50343", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113438120822129921", "content": "", "creation_timestamp": "2024-11-06T21:25:57.698913Z"}, {"uuid": "28dfa80e-4d47-4bdd-bd07-b16bd859e91a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpxmijdyb2c", "content": "", "creation_timestamp": "2025-01-14T19:16:13.372726Z"}, {"uuid": "cffe7acc-3ecb-49a6-a4e9-790c278ae708", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://github.blog/open-source/git/git-security-vulnerabilities-announced-5/", "content": "", "creation_timestamp": "2025-01-14T17:04:36.000000Z"}, {"uuid": "19608cc8-0845-4653-a412-34430fe0314e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/top4all.bsky.social/post/3lfptvqqems2k", "content": "", "creation_timestamp": "2025-01-14T18:09:49.632268Z"}, {"uuid": "5418e9df-5f03-4566-a323-2f548c2c252b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfpzwlrpll2i", "content": "", "creation_timestamp": "2025-01-14T19:57:41.515146Z"}, {"uuid": "14cc34fb-13be-4b73-a05a-0fc455f0277f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50345", "type": "seen", "source": "https://bsky.app/profile/anodyne-productions.com/post/3lerdkcuev32u", "content": "", "creation_timestamp": "2025-01-02T14:57:13.402604Z"}, {"uuid": "d97f854c-81c9-4a24-bbb6-8da6bc980630", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/veit-schiele.de/post/3lfsb2aivbk2c", "content": "", "creation_timestamp": "2025-01-15T17:10:21.339398Z"}, {"uuid": "cd06bc82-75fa-4b28-b1f9-8abfcec9d8eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/elhackernet.extwitter.link/post/3lfwlcbf5fs26", "content": "", "creation_timestamp": "2025-01-17T10:24:23.393920Z"}, {"uuid": "386b3ccb-9fc1-41dc-81f8-c6a71dd6b597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3mckor2ajsy26", "content": "", "creation_timestamp": "2026-01-16T18:05:00.803931Z"}, {"uuid": "6c9c22c7-44d3-471d-9948-3d1e7d2d48b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3mckor2flnj2g", "content": "", "creation_timestamp": "2026-01-16T18:05:01.440372Z"}, {"uuid": "9b692dd6-2e75-4ae9-a3fb-9d350940b7ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://bsky.app/profile/linux.activitypub.awakari.com.ap.brid.gy/post/3mckorhe3mff2", "content": "", "creation_timestamp": "2026-01-16T18:05:46.909286Z"}, {"uuid": "b3d214a0-96b1-42da-b983-917a90604cac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "seen", "source": "https://t.me/cvedetector/15345", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50349 - Git Terminal Prompt ANSI Escape Sequence Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50349 \nPublished : Jan. 14, 2025, 7:15 p.m. | 26\u00a0minutes ago \nDescription : Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits `7725b81` and `c903985` which are included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-14T20:42:20.000000Z"}, {"uuid": "3ab4beaa-c853-4b7a-a03f-915ddd497c32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50349", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1589", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50349\n\ud83d\udd39 Description: Git is a fast, scalable, distributed revision control system with an unusually rich command set that provides both high-level operations and full access to internals. When Git asks for credentials via a terminal prompt (i.e. without using any credential helper), it prints out the host name for which the user is expected to provide a username and/or a password. At this stage, any URL-encoded parts have been decoded already, and are printed verbatim. This allows attackers to craft URLs that contain ANSI escape sequences that the terminal interpret to confuse users e.g. into providing passwords for trusted Git hosting sites when in fact they are then sent to untrusted sites that are under the attacker's control. This issue has been patch via commits `7725b81` and `c903985` which are included in release versions v2.48.1, v2.47.1, v2.46.3, v2.45.3, v2.44.3, v2.43.6, v2.42.4, v2.41.3, and v2.40.4. Users are advised to upgrade. Users unable to upgrade should avoid cloning from untrusted URLs, especially recursive clones.\n\ud83d\udccf Published: 2025-01-14T18:43:42.620Z\n\ud83d\udccf Modified: 2025-01-14T18:43:42.620Z\n\ud83d\udd17 References:\n1. https://github.com/git/git/security/advisories/GHSA-hmg8-h7qf-7cxr\n2. https://github.com/git/git/commit/7725b8100ffbbff2750ee4d61a0fcc1f53a086e8\n3. https://github.com/git/git/commit/c903985bf7e772e2d08275c1a95c8a55ab011577", "creation_timestamp": "2025-01-14T19:11:33.000000Z"}, {"uuid": "2e836dd8-4aa5-4273-8d87-2ae5af03fdf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50347", "type": "seen", "source": "https://t.me/cvedetector/9517", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50347 - Laravel Reverb Unauthenticated API Endpoint Exploit\", \n  \"Content\": \"CVE ID : CVE-2024-50347 \nPublished : Oct. 31, 2024, 6:15 p.m. | 46\u00a0minutes ago \nDescription : Laravel Reverb provides a real-time WebSocket communication backend for Laravel applications. Prior to 1.4.0, there is an issue where verification signatures for requests sent to Reverb's Pusher-compatible API were not being verified. This API is used in scenarios such as broadcasting a message from a backend service or for obtaining statistical information (such as number of connections) about a given channel. This issue only affects the Pusher-compatible API endpoints and not the WebSocket connections themselves. In order to exploit this vulnerability, the application ID which, should never be exposed, would need to be known by an attacker. This vulnerability is fixed in 1.4.0. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-31T20:17:03.000000Z"}, {"uuid": "2a0a223e-9317-4f80-b949-d37c8fe22780", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50346", "type": "seen", "source": "https://t.me/cvedetector/9803", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50346 - WebFeed CSRF and UI Spoofing Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50346 \nPublished : Nov. 5, 2024, 12:15 a.m. | 37\u00a0minutes ago \nDescription : WebFeed is a lightweight web feed reader extension for Firefox/Chrome. Multiple HTML injection vulnerabilities in WebFeed can lead to CSRF and UI spoofing attacks. A remote attacker can provide malicious RSS feeds and attract the victim user to visit it using WebFeed. The attacker can then inject malicious HTML into the extension page and fool the victim into sending out HTTP requests to arbitrary sites with the victim's credentials. Users are vulnerable to CSRF attacks when visiting malicious RSS feeds via WebFeed. Unwanted actions could be executed on the user's behalf on arbitrary websites. This issue has been addressed in release version 0.9.2. All users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-05T02:09:20.000000Z"}, {"uuid": "50725e3d-6d32-42c0-a89b-b66a4338f9eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50344", "type": "seen", "source": "https://t.me/cvedetector/9439", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50344 - I, Librarian Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-50344 \nPublished : Oct. 30, 2024, 4:15 p.m. | 38\u00a0minutes ago \nDescription : I, Librarian is an open-source version of a PDF managing SaaS. Supplemental Files are allowed to be viewed in the browser, only if they have a white-listed MIME type. Unfortunately, this logic is broken, thus allowing unsafe files containing Javascript to be executed with the application context. An attacker can exploit this vulnerability by uploading a supplementary file that contains a malicious code or script. This code will then be executed when the file is loaded in the browser. The vulnerability was fixed in version 5.11.2. \nSeverity: 4.6 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T18:22:34.000000Z"}, {"uuid": "2d6ec0d6-8f50-4f14-894a-463891427145", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50348", "type": "seen", "source": "https://t.me/cvedetector/9383", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50348 - InstantCMS Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50348 \nPublished : Oct. 29, 2024, 11:15 p.m. | 23\u00a0minutes ago \nDescription : InstantCMS is a free and open source content management system. In photo upload function in the photo album page there is no input validation taking place. Due to this attackers are able to inject the XSS (Cross Site Scripting) payload and execute. This vulnerability is fixed in 2.16.3. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T00:49:10.000000Z"}, {"uuid": "70694d6f-7143-4a7f-b4e6-e2231b64dce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50342", "type": "seen", "source": "https://t.me/cvedetector/10047", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50342 - Symfony HTTP Client IP/Port Enumeration Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50342 \nPublished : Nov. 6, 2024, 9:15 p.m. | 40\u00a0minutes ago \nDescription : symfony/http-client is a module for the Symphony PHP framework which provides powerful methods to fetch HTTP resources synchronously or asynchronously. When using the `NoPrivateNetworkHttpClient`, some internal information is still leaking during host resolution, which leads to possible IP/port enumeration. As of versions 5.4.46, 6.4.14, and 7.1.7 the `NoPrivateNetworkHttpClient` now filters blocked IPs earlier to prevent such leaks. All users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T23:21:38.000000Z"}, {"uuid": "7e84bd52-aafe-4831-ac41-0614e00db456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50341", "type": "seen", "source": "https://t.me/cvedetector/10046", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50341 - Symfony Security-Bundle Unauthenticated Login Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-50341 \nPublished : Nov. 6, 2024, 9:15 p.m. | 40\u00a0minutes ago \nDescription : symfony/security-bundle is a module for the Symphony PHP framework which provides a tight integration of the Security component into the Symfony full-stack framework. The custom `user_checker` defined on a firewall is not called when Login Programmaticaly with the `Security::login` method, leading to  unwanted login. As of versions 6.4.10, 7.0.10 and 7.1.3 the `Security::login` method now ensure to call the configured `user_checker`. All users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T23:21:37.000000Z"}, {"uuid": "0d6ea488-3cd0-4220-8440-481ee6d4d8cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50340", "type": "seen", "source": "https://t.me/cvedetector/10045", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50340 - Symfony/runtime PHP Directive Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50340 \nPublished : Nov. 6, 2024, 9:15 p.m. | 40\u00a0minutes ago \nDescription : symfony/runtime is a module for the Symphony PHP framework which enables decoupling PHP applications from global state. When the `register_argv_argc` php directive is set to `on` , and users call any URL with a special crafted query string, they are able to change the environment or debug mode used by the kernel when handling the request. As of versions 5.4.46, 6.4.14, and 7.1.7 the `SymfonyRuntime` now ignores the `argv` values for non-SAPI PHP runtimes. All users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T23:21:34.000000Z"}, {"uuid": "e484d1b1-ef61-4991-a378-f0197b4abfc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50345", "type": "seen", "source": "https://t.me/cvedetector/10042", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50345 - Symfony HTTP-Foundation Cross-Site Redirect Vuln\", \n  \"Content\": \"CVE ID : CVE-2024-50345 \nPublished : Nov. 6, 2024, 9:15 p.m. | 40\u00a0minutes ago \nDescription : symfony/http-foundation is a module for the Symphony PHP framework which defines an object-oriented layer for the HTTP specification. The `Request` class, does not parse URI with special characters the same way browsers do. As a result, an attacker can trick a validator relying on the `Request` class to redirect users to another domain. The `Request::create` methods now assert the URI does not contain invalid characters as defined by . This issue has been patched in versions 5.4.46, 6.4.14, and 7.1.7. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T23:21:32.000000Z"}, {"uuid": "2a9f00ea-578b-4603-987c-8c723b33e90b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50343", "type": "seen", "source": "https://t.me/cvedetector/10041", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50343 - Symfony/Validator Regular Expression Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50343 \nPublished : Nov. 6, 2024, 9:15 p.m. | 40\u00a0minutes ago \nDescription : symfony/validator is a module for the Symphony PHP framework which provides tools to validate values. It is possible to trick a `Validator` configured with a regular expression using the `$` metacharacters, with an input ending with `\\n`. Symfony as of versions 5.4.43, 6.4.11, and 7.1.4 now uses the `D` regex modifier to match the entire input. Users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 3.1 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-06T23:21:31.000000Z"}, {"uuid": "f8eaf36d-9bbf-44a7-a1a3-4b5b4228324b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50340", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2372", "content": "CVE-2024-50340 - Adapted EOS Exploit\n*\nCVE-2024-4985 / CVE-2024-9487 - GitHub Enterprise SAML Authentication Bypass exploit", "creation_timestamp": "2024-11-12T04:59:20.000000Z"}, {"uuid": "4d5542dd-555e-484a-b5ca-4a9058e78018", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2024-50340", "type": "seen", "source": "https://bsky.app/profile/symfony.com/post/3mmbqwtodhw2b", "content": "\ud83d\udd10 CVE-2026-46626: SymfonyRuntime CVE-2024-50340 Patch Bypass via parse_str/SAPI Argv Mismatch\n\u27a1\ufe0f https://symfony.com/blog/cve-2026-46626-symfonyruntime-cve-2024-50340-patch-bypass-via-parse-str-sapi-argv-mismatch", "creation_timestamp": "2026-05-20T11:02:01.348390Z"}]}