{"vulnerability": "cve-2024-5080", "sightings": [{"uuid": "a5a89ef3-cb2f-4356-be1d-ebe28fab44e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50808", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113449377391121331", "content": "", "creation_timestamp": "2024-11-08T21:08:39.353080Z"}, {"uuid": "29074ced-91cf-4072-a6a6-7952735df7e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50809", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113449377404933448", "content": "", "creation_timestamp": "2024-11-08T21:08:39.629964Z"}, {"uuid": "7be1903f-e18e-4cd3-be36-0f20998c8fe6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50803", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113510488189404602", "content": "", "creation_timestamp": "2024-11-19T16:09:56.385538Z"}, {"uuid": "ea0d1a9d-ac86-4bdc-b407-1bfc282dd5de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50804", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113505821901017710", "content": "", "creation_timestamp": "2024-11-18T20:23:14.308150Z"}, {"uuid": "810c4611-0921-48c5-9bb9-2596fbc4f885", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50800", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113488382453791003", "content": "", "creation_timestamp": "2024-11-15T18:28:09.794528Z"}, {"uuid": "8c96a5f7-3192-4b7f-902e-73c9f696015b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50807", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113804905401091069", "content": "", "creation_timestamp": "2025-01-10T16:04:06.266996Z"}, {"uuid": "0738eb5a-c77c-44e4-b4c1-b25c808f9fa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50807", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfflonwihj22", "content": "", "creation_timestamp": "2025-01-10T16:16:03.578226Z"}, {"uuid": "07370449-64e3-44d3-89a1-8061d1f8a077", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50803", "type": "seen", "source": "MISP/1c5c38d6-3401-41ac-be0e-4cf361fa6f51", "content": "", "creation_timestamp": "2025-09-25T00:36:28.000000Z"}, {"uuid": "e2e16d58-112b-4841-a54c-3806889ad0a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50807", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1405", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-50807\n\ud83d\udd39 Description: Trippo Responsive Filemanager 9.14.0 is vulnerable to Cross Site Scripting (XSS) via file upload using the svg and pdf extensions.\n\ud83d\udccf Published: 2025-01-10T00:00:00\n\ud83d\udccf Modified: 2025-01-13T20:31:16.662Z\n\ud83d\udd17 References:\n1. https://gist.github.com/HackShiv/4254db89214913867aa8dd5c1ec09b7e", "creation_timestamp": "2025-01-13T21:12:36.000000Z"}, {"uuid": "f5556957-5653-4cd3-8b3a-62ae897b43c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50807", "type": "seen", "source": "https://t.me/cvedetector/14972", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50807 - Trippo Responsive Filemanager XSSE\", \n  \"Content\": \"CVE ID : CVE-2024-50807 \nPublished : Jan. 10, 2025, 4:15 p.m. | 38\u00a0minutes ago \nDescription : Trippo Responsive Filemanager 9.14.0 is vulnerable to Cross Site Scripting (XSS) via file upload using the svg and pdf extensions. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-10T18:00:56.000000Z"}, {"uuid": "dfe39e4a-47cb-4f2d-abd3-67886efd6f2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50803", "type": "seen", "source": "https://t.me/cvedetector/11455", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50803 - Redaxo Core CMS Media Pool Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-50803 \nPublished : Nov. 19, 2024, 4:15 p.m. | 16\u00a0minutes ago \nDescription : The mediapool feature of the Redaxo Core CMS application v 5.17.1 is vulnerable to Cross Site Scripting(XSS) which allows a remote attacker to escalate privileges \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"19 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-19T17:38:43.000000Z"}, {"uuid": "bfd28334-2552-4c1b-b348-19291ded4156", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50804", "type": "seen", "source": "https://t.me/cvedetector/11383", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50804 - MSI Center Pro Insecure Permissions Execution\", \n  \"Content\": \"CVE ID : CVE-2024-50804 \nPublished : Nov. 18, 2024, 9:15 p.m. | 37\u00a0minutes ago \nDescription : Insecure Permissions vulnerability in Micro-star International MSI Center Pro 2.1.37.0 allows a local attacker to execute arbitrary code via the Device_DeviceID.dat.bak file within the C:\\ProgramData\\MSI\\One Dragon Center\\Data folder \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T23:14:29.000000Z"}, {"uuid": "356ece9c-928b-4730-81fd-29a5f2704e9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50800", "type": "seen", "source": "https://t.me/cvedetector/11142", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50800 - M2000 Smart4Web Cross Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-50800 \nPublished : Nov. 15, 2024, 6:15 p.m. | 42\u00a0minutes ago \nDescription : Cross Site Scripting vulnerability in M2000 Smart4Web before v.5.020241004 allows a remote attacker to execute arbitrary code via the error parameter in URL \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T19:58:20.000000Z"}, {"uuid": "1f861cd2-4406-4d96-9397-de486488c9e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50802", "type": "seen", "source": "https://t.me/cvedetector/9521", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50802 - AbanteCart Blind SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-50802 \nPublished : Oct. 31, 2024, 7:15 p.m. | 36\u00a0minutes ago \nDescription : A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/email_templates.php. The vulnerability is exploitable via the id parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-31T21:07:15.000000Z"}, {"uuid": "14af61c8-4381-4192-90e9-1a34d6509c76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50801", "type": "seen", "source": "https://t.me/cvedetector/9522", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50801 - AbanteCart SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50801 \nPublished : Oct. 31, 2024, 7:15 p.m. | 36\u00a0minutes ago \nDescription : A SQL Injection vulnerability was discovered in AbanteCart 1.4.0 in the update() function in public_html/admin/controller/responses/listing_grid/collections.php. The vulnerability is exploitable via the id parameter. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"31 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-31T21:07:16.000000Z"}, {"uuid": "064f2bb8-a0ef-4eb1-964f-f14d23a1a4aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50808", "type": "seen", "source": "https://t.me/cvedetector/10222", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50808 - SeaCms Code Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50808 \nPublished : Nov. 8, 2024, 9:15 p.m. | 38\u00a0minutes ago \nDescription : SeaCms 13.1 is vulnerable to code injection in the notification module of the member message notification module in the backend user module, due to unsafe handling of the \"notify\" variable in admin_notify.php. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T23:03:42.000000Z"}, {"uuid": "bfaa7e2d-3753-404e-a40b-2902d6faadc7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-50809", "type": "seen", "source": "https://t.me/cvedetector/10223", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-50809 - Samsung Digital Certification Markup System (SDCMS) PHP Command Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-50809 \nPublished : Nov. 8, 2024, 9:15 p.m. | 38\u00a0minutes ago \nDescription : The theme.php file in SDCMS 2.8 has a command execution vulnerability that allows for the execution of system commands \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-08T23:03:43.000000Z"}, {"uuid": "98486457-4bd8-4766-83fc-81154b892437", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5080", "type": "seen", "source": "https://t.me/cvedetector/805", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5080 - The wp-eMember WordPress plugin before 10.6.6 does\", \n  \"Content\": \"CVE ID : CVE-2024-5080 \nPublished : July 13, 2024, 6:15 a.m. | 32\u00a0minutes ago \nDescription : The wp-eMember WordPress plugin before 10.6.6 does not validate files to be uploaded, which could allow admins to upload arbitrary files such as PHP on the server \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-13T08:49:43.000000Z"}]}