{"vulnerability": "cve-2024-5124", "sightings": [{"uuid": "c34153b7-3c2a-475b-8c1c-bb9c409ffc27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51240", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113431751230359116", "content": "", "creation_timestamp": "2024-11-05T18:26:05.878123Z"}, {"uuid": "897ea17f-7956-4f05-bd3d-9d8ae9df8044", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51242", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-08T21:59:27.000000Z"}, {"uuid": "c65633a3-dc77-4c3f-8d78-0fb31b1f0985", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5124", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9294", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aCVE-2024-5124 poc\nURL\uff1ahttps://github.com/XiaomingX/CVE-2024-5124-poc\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-03T03:55:45.000000Z"}, {"uuid": "93f61cd3-7201-4f34-8d8f-3ae524bd920e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51242", "type": "seen", "source": "MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6", "content": "", "creation_timestamp": "2025-10-01T18:11:56.000000Z"}, {"uuid": "150d8c71-01fb-4db8-9e30-93dccb62ff45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51248", "type": "seen", "source": "https://t.me/cvedetector/9618", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51248 - Draytek Vigor3900 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51248 \nPublished : Nov. 1, 2024, 5:15 p.m. | 17\u00a0minutes ago \nDescription : In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the modifyrow function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-01T18:41:57.000000Z"}, {"uuid": "5bf75a8f-743b-46aa-89a5-574a56c5e991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51249", "type": "seen", "source": "https://t.me/cvedetector/9736", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51249 - \"Draytek Vigor3900 CGI Shell Injection\"\", \n  \"Content\": \"CVE ID : CVE-2024-51249 \nPublished : Nov. 4, 2024, 2:15 p.m. | 36\u00a0minutes ago \nDescription : In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the reboot function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:06:38.000000Z"}, {"uuid": "f4c327fc-6390-41e2-a404-bdfaa921d616", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51246", "type": "seen", "source": "https://t.me/cvedetector/9735", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51246 - Draytek Vigor3900 cmd injection vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51246 \nPublished : Nov. 4, 2024, 2:15 p.m. | 36\u00a0minutes ago \nDescription : In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doPPTP function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:06:38.000000Z"}, {"uuid": "3b2fcf6f-ddc3-4c9c-aa6e-75460438f924", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51247", "type": "seen", "source": "https://t.me/cvedetector/9617", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51247 - Draytek Vigor3900 Remote Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51247 \nPublished : Nov. 1, 2024, 5:15 p.m. | 17\u00a0minutes ago \nDescription : In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doPPPo function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-01T18:41:56.000000Z"}, {"uuid": "213f0fe0-2754-4c17-a94a-a2776ff5da5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51244", "type": "seen", "source": "https://t.me/cvedetector/9616", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51244 - Draytek Vigor3900 Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51244 \nPublished : Nov. 1, 2024, 5:15 p.m. | 17\u00a0minutes ago \nDescription : In Draytek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the doIPSec function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-01T18:41:55.000000Z"}, {"uuid": "b6c1ed04-cd76-4a66-b61b-6b734e3a2c40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51245", "type": "seen", "source": "https://t.me/cvedetector/9614", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51245 - DrayTek Vigor3900 Remote Command Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51245 \nPublished : Nov. 1, 2024, 5:15 p.m. | 17\u00a0minutes ago \nDescription : In DrayTek Vigor3900 1.5.1.3, attackers can inject malicious commands into mainfunction.cgi and execute arbitrary commands by calling the rename_table function. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-01T18:41:54.000000Z"}, {"uuid": "e327c568-f443-4675-9a0f-9f3733a0bd1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51243", "type": "seen", "source": "https://t.me/cvedetector/9472", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51243 - Apache Eladmin Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51243 \nPublished : Oct. 30, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : The eladmin v2.7 and before contains a remote code execution (RCE) vulnerability that can control all application deployment servers of this management system via DeployController.java. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T22:33:40.000000Z"}, {"uuid": "8471842d-ae68-47dd-a48d-bce2bd4f8322", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51242", "type": "seen", "source": "https://t.me/cvedetector/9471", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51242 - (Vulnerability Title) eladmin SSRF Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51242 \nPublished : Oct. 30, 2024, 9:15 p.m. | 16\u00a0minutes ago \nDescription : A Server-Side Request Forgery (SSRF) vulnerability has been identified in eladmin 2.7 and earlier in ServerDeployController.java. The manipulation of the HTTP Body ip parameter leads to SSRF. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Oct 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-10-30T22:33:39.000000Z"}, {"uuid": "2d3a48ee-9038-4fb4-831b-be91c5a7a57a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51240", "type": "seen", "source": "https://t.me/cvedetector/9936", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51240 - OpenWRT Luci LTS JSON-RPC-API Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51240 \nPublished : Nov. 5, 2024, 7:15 p.m. | 42\u00a0minutes ago \nDescription : An issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API, which is exposed by the luci-mod-rpc package \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-05T21:25:35.000000Z"}]}