{"vulnerability": "cve-2024-5170", "sightings": [{"uuid": "539bfee9-0a79-4fcf-a6a5-fbfb4927f0ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51700", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113786821733347069", "content": "", "creation_timestamp": "2025-01-07T11:25:11.530651Z"}, {"uuid": "26287d25-1f86-407a-9697-e602052833fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51700", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jizbky225", "content": "", "creation_timestamp": "2025-01-07T11:15:48.768295Z"}, {"uuid": "5247c880-2086-4230-bfda-1736a5985ad8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51700", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/403", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-51700\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in \uae40 \ubbfc\uc900 (Minjun Kim) NAVER Analytics allows Stored XSS.This issue affects NAVER Analytics: from n/a through 0.9.\n\ud83d\udccf Published: 2025-01-07T10:49:29.738Z\n\ud83d\udccf Modified: 2025-01-07T10:49:29.738Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/naver-analytics/vulnerability/wordpress-naver-analytics-plugin-0-9-csrf-to-stored-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T11:38:36.000000Z"}, {"uuid": "bcf53cd3-8907-406a-a892-2e77698a515d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5170", "type": "seen", "source": "https://t.me/cvedetector/5795", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5170 - Enamad WordPress Logo Manager Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-5170 \nPublished : Sept. 17, 2024, 6:15 a.m. | 29\u00a0minutes ago \nDescription : The Logo Manager For Enamad WordPress plugin through 0.7.1 does not sanitise and escape in its widgets settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup) \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-17T08:55:26.000000Z"}, {"uuid": "5c6c5340-b6e9-46d7-85a1-a137bff6795d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51704", "type": "seen", "source": "https://t.me/cvedetector/10353", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51704 - Hanusek imPress Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51704 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Hanusek imPress allows Reflected XSS.This issue affects imPress: from n/a through 0.1.4. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:15.000000Z"}, {"uuid": "5c685dd2-c9eb-4845-be40-1fa04c78641e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51703", "type": "seen", "source": "https://t.me/cvedetector/10352", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51703 - Genethick WP-Basics Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51703 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Genethick WP-Basics allows Reflected XSS.This issue affects WP-Basics: from n/a through 2.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:15.000000Z"}, {"uuid": "4d892101-7bbb-4be6-bd48-646a1400086e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51708", "type": "seen", "source": "https://t.me/cvedetector/10350", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51708 - Narnoo Commerce Manager Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51708 \nPublished : Nov. 9, 2024, 12:15 p.m. | 42\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Narnoo Wordpress developer Narnoo Commerce Manager allows Reflected XSS.This issue affects Narnoo Commerce Manager: from n/a through 1.6.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T14:08:58.000000Z"}, {"uuid": "ef6623e6-5efd-4667-99d1-322ea5c8d1bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51707", "type": "seen", "source": "https://t.me/cvedetector/10349", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51707 - Webcodin WP Visual Adverts Web Page Generation Input Neutralization Vulnerability (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51707 \nPublished : Nov. 9, 2024, 12:15 p.m. | 42\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Webcodin WP Visual Adverts allows Reflected XSS.This issue affects WP Visual Adverts: from n/a through 2.3.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T14:08:58.000000Z"}, {"uuid": "00753b11-9ba6-43d5-a46e-2f68c692d4f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51709", "type": "seen", "source": "https://t.me/cvedetector/10346", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51709 - Marian Dietz TeleAdmin Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51709 \nPublished : Nov. 9, 2024, 12:15 p.m. | 42\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Marian Dietz TeleAdmin allows Reflected XSS.This issue affects TeleAdmin: from n/a through 1.0.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T14:08:52.000000Z"}, {"uuid": "74270a4a-f9b2-4e01-ab1b-ea6c2fc0729c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51702", "type": "seen", "source": "https://t.me/cvedetector/10360", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51702 - SrcSet Responsive Images for WordPress Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-51702 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Benjamin Moody, Eric Holmes SrcSet Responsive Images for WordPress allows Reflected XSS.This issue affects SrcSet Responsive Images for WordPress: from n/a through 1.4. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:24.000000Z"}, {"uuid": "1c7cdf84-7bec-4602-8887-6d2987a09364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51701", "type": "seen", "source": "https://t.me/cvedetector/10359", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51701 - Mahesh Waghmare MG Post Contributors Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2024-51701 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Mahesh Waghmare MG Post Contributors allows Reflected XSS.This issue affects MG Post Contributors: from n/a through 1.3.. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:23.000000Z"}, {"uuid": "8ec02eb8-3d8c-4e37-af3c-71382b9e7d7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51706", "type": "seen", "source": "https://t.me/cvedetector/10355", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51706 - Upeksha Wisidagama UW Freelancer Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2024-51706 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Upeksha Wisidagama UW Freelancer allows Reflected XSS.This issue affects UW Freelancer: from n/a through 0.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:17.000000Z"}, {"uuid": "7b015c0b-576b-4c94-bbe0-fe35a1840d9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-51705", "type": "seen", "source": "https://t.me/cvedetector/10354", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-51705 - James Bruner WP MMenu Lite Reflected XSS\", \n  \"Content\": \"CVE ID : CVE-2024-51705 \nPublished : Nov. 9, 2024, 1:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in James Bruner WP MMenu Lite allows Reflected XSS.This issue affects WP MMenu Lite: from n/a through 1.0.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-09T15:01:16.000000Z"}]}