{"vulnerability": "cve-2024-5065", "sightings": [{"uuid": "f3ae9e25-67e7-4a91-b4e4-9f1d92a6be09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50657", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113527874132502232", "content": "", "creation_timestamp": "2024-11-22T17:51:24.713597Z"}, {"uuid": "114e2dfb-c2fa-4358-8fb0-88c70f1d72f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50658", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113788419245182331", "content": "", "creation_timestamp": "2025-01-07T18:11:27.489982Z"}, {"uuid": "238d2125-2bce-482e-954c-3ce6a0591b42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50659", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113788419260108805", "content": "", "creation_timestamp": "2025-01-07T18:11:27.745987Z"}, {"uuid": "c7d84aed-f740-4c08-a695-22b9fa3836ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50658", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf6axxx6cd2m", "content": "", "creation_timestamp": "2025-01-07T18:15:47.132807Z"}, {"uuid": "ef1236ae-d2fa-4978-a222-e55b63d673c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50659", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf6ay3nr7q25", "content": "", "creation_timestamp": "2025-01-07T18:15:50.739537Z"}, {"uuid": "955558e4-5127-4b8e-b5d5-10560d1a234e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50659", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf6crdzsfo2g", "content": "", "creation_timestamp": "2025-01-07T18:47:55.683328Z"}, {"uuid": "b6645ffc-06e3-4cfd-88f7-9f79888c27cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50658", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf6cre4yww2g", "content": "", "creation_timestamp": "2025-01-07T18:47:56.256742Z"}, {"uuid": "876363dd-5e75-4f89-8934-50001e3dc074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50658", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113793757486628973", "content": "", "creation_timestamp": "2025-01-08T16:49:03.931801Z"}, {"uuid": "c7997f7c-b97b-4e4e-aa5b-56cee0442ec6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50656", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113941466417414394", "content": "", "creation_timestamp": "2025-02-03T18:53:22.063039Z"}, {"uuid": "1b9e5546-b971-43ac-add9-3ec22cf4e0ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50656", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhcawvvhaq2w", "content": "", "creation_timestamp": "2025-02-03T19:16:13.999187Z"}, {"uuid": "2e275a9d-4063-4baa-8a91-b50372ddf46d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50659", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/515", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50659\n\ud83d\udd39 Description: Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html.\n\ud83d\udccf Published: 2025-01-07T00:00:00\n\ud83d\udccf Modified: 2025-01-07T18:10:00.715872\n\ud83d\udd17 References:\n1. http://adportal.com\n2. http://ipublish.com\n3. https://petercipolone.info/wp-content/uploads/2025/01/iPublishMedia_AdPortal3.0.39_CVEs.pdf", "creation_timestamp": "2025-01-07T18:39:11.000000Z"}, {"uuid": "7f9bc4ba-c3b5-4d4a-94ac-f45e76809ef4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50658", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/516", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50658\n\ud83d\udd39 Description: Server-Side Template Injection (SSTI) was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file\n\ud83d\udccf Published: 2025-01-07T00:00:00\n\ud83d\udccf Modified: 2025-01-07T18:09:32.971186\n\ud83d\udd17 References:\n1. http://adportal.com\n2. http://ipublish.com\n3. https://petercipolone.info/wp-content/uploads/2025/01/iPublishMedia_AdPortal3.0.39_CVEs.pdf", "creation_timestamp": "2025-01-07T18:39:17.000000Z"}, {"uuid": "abf7a3d6-42e6-4ce3-921a-1a47368725d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50656", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8118", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50656\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php.\n\ud83d\udccf Published: 2025-02-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-19T17:49:55.263Z\n\ud83d\udd17 References:\n1. https://itsourcecode.com/free-projects/php-project/placement-management-system-project-in-php-with-source-code/\n2. https://github.com/riya98241/CVE/blob/main/CVE-2024-50656", "creation_timestamp": "2025-03-19T18:19:40.000000Z"}, {"uuid": "7d6e6dc0-0f63-4182-bf11-32db3ee4525b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50658", "type": "seen", "source": "https://t.me/cvedetector/14598", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50658 - AdPortal SSTI Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50658 \nPublished : Jan. 7, 2025, 6:15 p.m. | 24\u00a0minutes ago \nDescription : Server-Side Template Injection (SSTI) was found in AdPortal 3.0.39 allows a remote attacker to execute arbitrary code via the shippingAsBilling and firstname parameters in updateuserinfo.html file \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T19:44:36.000000Z"}, {"uuid": "98d68971-0b28-4600-a53c-e532f53b4b78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50659", "type": "seen", "source": "https://t.me/cvedetector/14595", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50659 - iPublish Media Solutions AdPortal Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-50659 \nPublished : Jan. 7, 2025, 6:15 p.m. | 24\u00a0minutes ago \nDescription : Cross Site Scripting vulnerability iPublish Media Solutions AdPortal 3.0.39 allows a remote attacker to escalate privileges via the shippingAsBilling parameter in updateuserinfo.html. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T19:44:31.000000Z"}, {"uuid": "43826314-1a5a-4429-8cff-f59573905279", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50655", "type": "seen", "source": "https://t.me/cvedetector/11120", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50655 - Emlog Pro Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50655 \nPublished : Nov. 15, 2024, 5:15 p.m. | 41\u00a0minutes ago \nDescription : emlog pro <=2.3.18\nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T19:07:47.000000Z"}, {"uuid": "497aa8b2-367e-4ab4-ab8b-0b1b095f2855", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50654", "type": "seen", "source": "https://t.me/cvedetector/11119", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50654 - Lilishop Coupon Overpurchasing Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2024-50654 \nPublished : Nov. 15, 2024, 5:15 p.m. | 41\u00a0minutes ago \nDescription : lilishop <=4.2.4\nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T19:07:43.000000Z"}, {"uuid": "a7fedadf-17e2-4b56-b5af-f48603f107b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50653", "type": "seen", "source": "https://t.me/cvedetector/11123", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50653 - CRMEB DNS Amplification\", \n  \"Content\": \"CVE ID : CVE-2024-50653 \nPublished : Nov. 15, 2024, 5:15 p.m. | 41\u00a0minutes ago \nDescription : CRMEB <=5.4.0\nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T19:07:50.000000Z"}, {"uuid": "0c9bb32e-3260-4690-a043-0be4a4491d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50652", "type": "seen", "source": "https://t.me/cvedetector/11103", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50652 - Java Shop Unvalidated File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50652 \nPublished : Nov. 15, 2024, 4:15 p.m. | 44\u00a0minutes ago \nDescription : A file upload vulnerability in java_shop 1.0 allows attackers to upload arbitrary files by modifying the avatar function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T18:17:20.000000Z"}, {"uuid": "8eb6a151-9fe0-482c-acb9-d2c77b1faa22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50651", "type": "seen", "source": "https://t.me/cvedetector/11102", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50651 - Java Shop Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-50651 \nPublished : Nov. 15, 2024, 4:15 p.m. | 44\u00a0minutes ago \nDescription : java_shop 1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T18:17:19.000000Z"}, {"uuid": "68149a60-4acc-4c7b-881b-f1ad07ba72fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50650", "type": "seen", "source": "https://t.me/cvedetector/11106", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50650 - \"python_book Authentication Bypass\"\", \n  \"Content\": \"CVE ID : CVE-2024-50650 \nPublished : Nov. 15, 2024, 4:15 p.m. | 44\u00a0minutes ago \nDescription : python_book V1.0 is vulnerable to Incorrect Access Control, which allows attackers to obtain sensitive information of users with different IDs by modifying the ID parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T18:17:26.000000Z"}]}