{"vulnerability": "cve-2024-5167", "sightings": [{"uuid": "8bb53de4-cf8b-4714-9ac6-6f26cfd65981", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51671", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113511481890087889", "content": "", "creation_timestamp": "2024-11-19T20:22:38.920022Z"}, {"uuid": "ad59b3f9-0201-4e53-8f27-9c6b70741aab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51679", "type": "seen", "source": "https://t.me/cvedetector/11015", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51679 - Appointmind CSRF Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2024-51679 \nPublished : Nov. 14, 2024, 10:15 p.m. | 38\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in GentleSource Appointmind allows Stored XSS.This issue affects Appointmind: from n/a through 4.0.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-15T00:11:31.000000Z"}, {"uuid": "a42fdbb1-bb02-4d9e-85c5-7290110797aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51679", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113483537255176540", "content": "", "creation_timestamp": "2024-11-14T21:55:57.493916Z"}, {"uuid": "f191e07c-be54-438a-ab39-3607ac319561", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51672", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3minww3prmd23", "content": "", "creation_timestamp": "2026-04-04T09:40:09.341416Z"}, {"uuid": "e482af82-9413-494a-a0b5-c2ecbd7e148d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51670", "type": "seen", "source": "https://t.me/cvedetector/10369", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51670 - JS Help Desk Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51670 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in JS Help Desk JS Help Desk \u2013 Best Help Desk & Support Plugin allows Stored XSS.This issue affects JS Help Desk \u2013 Best Help Desk & Support Plugin: from n/a through 2.8.7. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:37.000000Z"}, {"uuid": "21ad31df-723b-41aa-8a70-bcffd7d459f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51674", "type": "seen", "source": "https://t.me/cvedetector/10371", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51674 - TemplatesCoder Sastra Essential Addons for Elementor DOM-Based Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51674 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in TemplatesCoder Sastra Essential Addons for Elementor allows DOM-Based XSS.This issue affects Sastra Essential Addons for Elementor: from n/a through 1.0.5. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:39.000000Z"}, {"uuid": "b80fcaf6-1591-417b-a90e-a29eced945c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51673", "type": "seen", "source": "https://t.me/cvedetector/10370", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51673 - HasThemes HT Politic Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51673 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in HasThemes HT Politic allows DOM-Based XSS.This issue affects HT Politic: from n/a through 2.4.4. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:38.000000Z"}, {"uuid": "8fc9d0f3-945c-4028-a266-440a39617cfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51678", "type": "seen", "source": "https://t.me/cvedetector/9751", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51678 - Marcel Pol Elo Rating Shortcode Cross-site Scripting (Stored XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51678 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Marcel Pol Elo Rating Shortcode allows Stored XSS.This issue affects Elo Rating Shortcode: from n/a through 1.0.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:06.000000Z"}, {"uuid": "bc7dd83b-7314-4452-b3b2-963b3a62ff03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51677", "type": "seen", "source": "https://t.me/cvedetector/9761", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51677 - WebberZone Knowledge Base Stored XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51677 \nPublished : Nov. 4, 2024, 3:15 p.m. | 37\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WebberZone Knowledge Base allows Stored XSS.This issue affects Knowledge Base: from n/a through 2.2.0. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:57:20.000000Z"}, {"uuid": "df7d4b40-b364-40d9-bab1-9fc08cb4224a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51672", "type": "seen", "source": "https://t.me/cvedetector/9732", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51672 - WPDeveloper BetterLinks SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2024-51672 \nPublished : Nov. 4, 2024, 2:15 p.m. | 36\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPDeveloper BetterLinks allows SQL Injection.This issue affects BetterLinks: from n/a through 2.1.7. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-04T16:06:35.000000Z"}, {"uuid": "26ec505c-68d0-4f3f-afce-5fe1aecc978e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5167", "type": "seen", "source": "https://t.me/cvedetector/806", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5167 - The CM Email Registration Blacklist and Whitelist\", \n  \"Content\": \"CVE ID : CVE-2024-5167 \nPublished : July 13, 2024, 6:15 a.m. | 32\u00a0minutes ago \nDescription : The CM Email Registration Blacklist and Whitelist WordPress plugin before 1.4.9 does not have CSRF check when adding or deleting an item from the blacklist or whitelist, which could allow attackers to make a logged in admin add or delete settings from the blacklist or whitelist menu via a CSRF attack \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-13T08:49:44.000000Z"}]}