{"vulnerability": "cve-2024-5327", "sightings": [{"uuid": "7f3c9691-f281-4013-b23b-4295aa1534de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53278", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113547401085456126", "content": "", "creation_timestamp": "2024-11-26T04:37:22.219367Z"}, {"uuid": "48960dbc-39be-4b20-8f20-fb886f2fbb36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53279", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113620807617711362", "content": "", "creation_timestamp": "2024-12-09T03:45:37.005228Z"}, {"uuid": "6fe20c34-cb79-48cf-bf21-06bc0930916d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53272", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113636498077856054", "content": "", "creation_timestamp": "2024-12-11T22:15:54.529869Z"}, {"uuid": "f1e7357f-7f2c-442b-9ff5-d3a1e97380de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53273", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113636550154857263", "content": "", "creation_timestamp": "2024-12-11T22:29:09.135202Z"}, {"uuid": "d6f5ac7c-8975-4bf9-988c-e31ca8c30d4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53274", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113636550170593509", "content": "", "creation_timestamp": "2024-12-11T22:29:09.381021Z"}, {"uuid": "d3a8f010-3d39-4ecf-bab1-414452eb369f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53270", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113675507926963180", "content": "", "creation_timestamp": "2024-12-18T19:36:37.882656Z"}, {"uuid": "f809781e-e1a2-4b9b-8cef-da8ccb1a90be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53271", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113675507940756277", "content": "", "creation_timestamp": "2024-12-18T19:36:37.998334Z"}, {"uuid": "e3d35aa7-daaa-4041-a825-6fcecef66bf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53275", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113703276255475730", "content": "", "creation_timestamp": "2024-12-23T17:18:28.613078Z"}, {"uuid": "96de8572-2fd8-46f8-8117-5935f1080517", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53276", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113703276271834516", "content": "", "creation_timestamp": "2024-12-23T17:18:28.991496Z"}, {"uuid": "9b8c1220-5298-4c49-903e-8a6dd4f5ee5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53275", "type": "seen", "source": "Telegram/TXjQzQgzOHIECJ_MWa7ZlmHCxKny7DMPnS1Yi-SHilBFS741", "content": "", "creation_timestamp": "2025-02-18T23:42:23.000000Z"}, {"uuid": "6e4c8ae2-7045-486a-8ac0-8a165555fc31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53276", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:00.000000Z"}, {"uuid": "c4d97718-afb8-4f40-af44-56a1b5c80ba1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53270", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-16T03:45:05.000000Z"}, {"uuid": "e0f62f65-1573-4422-91fa-9ca442de2c0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53276", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:31.000000Z"}, {"uuid": "71157e81-833d-4dd9-a4a2-9915957b9d50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53270", "type": "seen", "source": "MISP/acd0294c-4561-4286-a04e-5c02a1c67b1f", "content": "", "creation_timestamp": "2025-09-15T13:28:32.000000Z"}, {"uuid": "536af465-5ee1-4575-b2fa-6ee9c1c507fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53277", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1633", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-53277\n\ud83d\udd39 Description: Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In some cases, form messages can contain HTML markup. This is an intentional feature, allowing links and other relevant HTML markup for the given message. Some form messages include content that the user can provide. There are scenarios in the CMS where that content doesn't get correctly sanitised prior to being included in the form message, resulting in an XSS vulnerability. This issue has been addressed in silverstripe/framework version 5.3.8 and users are advised to upgrade. There are no known workarounds for this vulnerability.\n\ud83d\udccf Published: 2025-01-14T22:45:07.403Z\n\ud83d\udccf Modified: 2025-01-14T22:45:07.403Z\n\ud83d\udd17 References:\n1. https://github.com/silverstripe/silverstripe-framework/security/advisories/GHSA-ff6q-3c9c-6cf5\n2. https://github.com/silverstripe/silverstripe-framework/commit/74904f539347b7d1f8c5b5fb9e28d62ff251ee00\n3. https://www.silverstripe.org/download/security-releases/cve-2024-53277", "creation_timestamp": "2025-01-14T23:09:10.000000Z"}, {"uuid": "f8585117-e3ae-4b30-a138-2cfada9bea6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53276", "type": "seen", "source": "Telegram/66j94aRIlP7ZchCyVbH64Aq5ZRV5Hhss2kLTvEhmtIuytOpQ", "content": "", "creation_timestamp": "2025-02-18T23:42:23.000000Z"}, {"uuid": "86f7420d-927c-438c-ac95-bdbac1b25118", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53276", "type": "seen", "source": "https://t.me/cvedetector/13545", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53276 - Home-Gallery.org CORS Cross-Site Request Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2024-53276 \nPublished : Dec. 23, 2024, 6:15 p.m. | 34\u00a0minutes ago \nDescription : Home-Gallery.org is a self-hosted open-source web gallery to browse personal photos and videos. In 1.15.0 and earlier, an open CORS policy in app.js may allow an attacker to view the images of home-gallery when it is using the default settings. The following express middleware allows any website to make a cross site request to home-gallery, thus allowing them to read any endpoint on home-gallery. Home-gallery is mostly safe from cross-site requests due to most of its pages requiring JavaScript, and cross-site requests such as fetch() do not render javascript. If an attacker is able to get the path of the preview images which are randomized, an attacker will be able to view such a photo. If any static files or endpoints are introduced in the future that contain sensitive information, they will be accessible to an attacker website. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-23T20:00:26.000000Z"}, {"uuid": "3932820c-9904-4898-8de4-59eedf727bbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53277", "type": "seen", "source": "https://t.me/cvedetector/15386", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53277 - Silverstripe Framework Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53277 \nPublished : Jan. 14, 2025, 11:15 p.m. | 37\u00a0minutes ago \nDescription : Silverstripe Framework is a PHP framework which powers the Silverstripe CMS. In some cases, form messages can contain HTML markup. This is an intentional feature, allowing links and other relevant HTML markup for the given message. Some form messages include content that the user can provide. There are scenarios in the CMS where that content doesn't get correctly sanitised prior to being included in the form message, resulting in an XSS vulnerability. This issue has been addressed in silverstripe/framework version 5.3.8 and users are advised to upgrade. There are no known workarounds for this vulnerability. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-15T00:53:36.000000Z"}, {"uuid": "8c33d23a-f20f-41a3-bbf0-018be5e8467e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53275", "type": "seen", "source": "https://t.me/cvedetector/13544", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53275 - Home-Gallery.org DNS Rebinding Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53275 \nPublished : Dec. 23, 2024, 6:15 p.m. | 34\u00a0minutes ago \nDescription : Home-Gallery.org is a self-hosted open-source web gallery to browse personal photos and videos. In 1.15.0 and earlier, the default setup of home-gallery is vulnerable to DNS rebinding. Home-gallery is set up without TLS and user authentication by default, leaving it vulnerable to DNS rebinding. In this attack, an attacker will ask a user to visit their website. The attacker website will then change the DNS records of their domain from their IP address to the internal IP address of the home-gallery instance. To tell which IP addresses are valid, we can rebind a subdomain to each IP address we want to check, and see if there is a response. Once potential candidates have been found, the attacker can launch the attack by reading the response of the web server after the IP address has changed. When the attacker domain is fetched, the response will be from the home-gallery instance, not the attacker website, because the IP address has been changed. Due to a lack of authentication, home-gallery photos can then be extracted by the attacker website. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"23 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-23T20:00:25.000000Z"}, {"uuid": "5cf793f8-2384-44d3-af6f-fada85eff6b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53279", "type": "seen", "source": "https://t.me/cvedetector/12356", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53279 - Synology Router Manager SRM Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53279 \nPublished : Dec. 9, 2024, 4:15 a.m. | 38\u00a0minutes ago \nDescription : Improper neutralization of input during web page generation ('Cross-site Scripting') vulnerability in file station functionality in Synology Router Manager (SRM) before 1.3.1-9346-10 allows remote authenticated users with administrator privileges to inject arbitrary web script or HTML via unspecified vectors. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-09T06:19:53.000000Z"}, {"uuid": "160d2861-b93f-4b13-8cd0-83d3b790e151", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53270", "type": "seen", "source": "https://t.me/cvedetector/13240", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53270 - Envoy HTTP/1/2 Proxy Use-After-Free Crashes\", \n  \"Content\": \"CVE ID : CVE-2024-53270 \nPublished : Dec. 18, 2024, 8:15 p.m. | 36\u00a0minutes ago \nDescription : Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions `sendOverloadError` is going to assume the active request exists when `envoy.load_shed_points.http1_server_abort_dispatch` is configured. If `active_request` is nullptr, only onMessageBeginImpl() is called. However, the `onMessageBeginImpl` will directly return ok status if the stream is already reset leading to the nullptr reference. The downstream reset can actually happen during the H/2 upstream reset. As a result envoy may crash. This issue has been addressed in releases 1.32.3, 1.31.5, 1.30.9, and 1.29.12. Users are advised to upgrade. Users unable to upgrade may disable `http1_server_abort_dispatch` load shed point and/or use a high threshold. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T22:03:48.000000Z"}, {"uuid": "9a3bb0ed-0ade-4064-b897-e6dcba3472d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53271", "type": "seen", "source": "https://t.me/cvedetector/13241", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53271 - Envoy HTTP response header parsing vulnerability (HTTP 1.1 1xx)\", \n  \"Content\": \"CVE ID : CVE-2024-53271 \nPublished : Dec. 18, 2024, 8:15 p.m. | 36\u00a0minutes ago \nDescription : Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions envoy  does not properly handle http 1.1 non-101 1xx responses. This can lead to downstream failures in networked devices. This issue has been addressed in versions 1.31.5 and 1.32.3. Users are advised to upgrade. There are no known workarounds for this issue. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T22:03:49.000000Z"}]}