{"vulnerability": "cve-2024-5549", "sightings": [{"uuid": "7d08b4df-b523-4654-a38f-4caa6b7fbc2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55492", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113674945965100212", "content": "", "creation_timestamp": "2024-12-18T17:13:43.027080Z"}, {"uuid": "1cd3aabf-9633-42fe-9e92-97a1470b77a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55496", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113669408275533969", "content": "", "creation_timestamp": "2024-12-17T17:45:24.967660Z"}, {"uuid": "406e096c-a31b-4b5e-9613-5f0215944b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55494", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113800185022735237", "content": "", "creation_timestamp": "2025-01-09T20:03:39.328917Z"}, {"uuid": "1a21764d-fb5b-44f1-afd2-26a29324d7cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55494", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfdipetdto2d", "content": "", "creation_timestamp": "2025-01-09T20:17:26.858970Z"}, {"uuid": "6a93652d-e5da-4c18-a7c1-b7bfffd1640f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55494", "type": "seen", "source": "https://t.me/cvedetector/14904", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55494 - Opencode Mobile Collect Call XSS\", \n  \"Content\": \"CVE ID : CVE-2024-55494 \nPublished : Jan. 9, 2025, 8:15 p.m. | 38\u00a0minutes ago \nDescription : A cross-site scripting (XSS) vulnerability in Opencode Mobile Collect Call v5.4.7 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the op_func parameter at /occontrolpanel/index.php. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-09T21:57:21.000000Z"}, {"uuid": "2d1e26ee-c15d-4c00-b460-e0283c6b199b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55492", "type": "seen", "source": "https://t.me/cvedetector/13214", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55492 - Winmail Server CSRF XSS\", \n  \"Content\": \"CVE ID : CVE-2024-55492 \nPublished : Dec. 18, 2024, 5:15 p.m. | 25\u00a0minutes ago \nDescription : Winmail Server 4.4 is vulnerable to f_user=%22%3E%3Csvg%20onload Cross Site Scripting (XSS). \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-18T18:42:48.000000Z"}, {"uuid": "42b28332-a2c6-4c09-9ca4-8ea28b36859b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-55496", "type": "seen", "source": "https://t.me/cvedetector/13115", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-55496 - \"1000projects Bookstore Management System SQL Injection Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2024-55496 \nPublished : Dec. 17, 2024, 6:15 p.m. | 43\u00a0minutes ago \nDescription : A vulnerability has been found in the 1000projects Bookstore Management System PHP MySQL Project 1.0. This issue affects some unknown functionality of add_company.php. Actions on the delete parameter result in SQL injection. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T20:07:38.000000Z"}, {"uuid": "44b7ac4b-3e7e-4f32-bfdc-1eeb913c9694", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-5549", "type": "seen", "source": "https://t.me/cvedetector/221", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-5549 - Origin Validation Error in GitHub repository stiti\", \n  \"Content\": \"CVE ID : CVE-2024-5549 \nPublished : July 9, 2024, 12:15 a.m. | 20\u00a0minutes ago \nDescription : Origin Validation Error in GitHub repository stitionai/devika prior to -. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"09 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-09T02:37:11.000000Z"}]}