{"vulnerability": "cve-2024-5724", "sightings": [{"uuid": "c4d41e6d-598e-44a8-aba9-c2c10c6e3ed5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57249", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113963289955460712", "content": "", "creation_timestamp": "2025-02-07T15:23:22.821885Z"}, {"uuid": "b587fc64-0478-444f-8146-e473d1e465e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113987467580951679", "content": "", "creation_timestamp": "2025-02-11T21:52:04.089247Z"}, {"uuid": "4c722b47-041b-4e68-9c43-2ed612fef825", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57248", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lhoz6m7rsw27", "content": "", "creation_timestamp": "2025-02-08T21:01:59.221659Z"}, {"uuid": "1251cb03-7f39-439f-8d96-8873dc33b9ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57249", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lhoz6mcfdn2o", "content": "", "creation_timestamp": "2025-02-08T21:01:59.699070Z"}, {"uuid": "fcb52264-f248-4c93-9e17-7ae79c7c356f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57249", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113981084140609131", "content": "", "creation_timestamp": "2025-02-10T18:48:57.910403Z"}, {"uuid": "2b879eaf-84f0-4f9c-a889-7dc441acc5cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhx4mjahdi2y", "content": "", "creation_timestamp": "2025-02-12T02:24:49.482456Z"}, {"uuid": "53de40fb-36d1-4333-87ec-09e4a92a98bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhwoprz5ef2z", "content": "", "creation_timestamp": "2025-02-11T22:16:01.528158Z"}, {"uuid": "bacf7ab8-6d54-4c17-b52a-ee5fff338505", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57240", "type": "seen", "source": "https://gist.github.com/devom3/43c328e23ec854090ed555a13541ca94", "content": "", "creation_timestamp": "2025-02-24T18:03:54.000000Z"}, {"uuid": "d5353df6-7143-473b-a833-25428e7bbcac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57240", "type": "seen", "source": "https://gist.github.com/Xib3rR4dAr/dc9dd7ddbc329d5d348d0ac69fb81b31", "content": "", "creation_timestamp": "2025-03-13T09:53:23.000000Z"}, {"uuid": "11258e0f-6c58-4dda-b9f2-8020a58d3c7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mif37gvcj62q", "content": "", "creation_timestamp": "2026-03-31T21:03:00.135856Z"}, {"uuid": "6d1ed6e0-2fb3-4cfa-a4dc-f9cc48b76666", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2024/CVE-2024-57241.yaml", "content": "", "creation_timestamp": "2026-03-29T23:33:49.000000Z"}, {"uuid": "f19e1fef-8b2a-444a-a22b-e7d9c3891bee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57240", "type": "seen", "source": "https://t.me/cvedetector/19382", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57240 - Apryse WebViewer XSS\", \n  \"Content\": \"CVE ID : CVE-2024-57240 \nPublished : March 3, 2025, 5:15 p.m. | 1\u00a0hour, 1\u00a0minute ago \nDescription : A Cross-Site Scripting (XSS) vulnerability in the Rendering Engine component in Apryse WebViewer v11.1 and earlier allows attackers to execute arbitrary code via a crafted PDF file. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-03T19:44:13.000000Z"}, {"uuid": "333e5e2d-d4c9-479a-bb07-18ca5557b296", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "https://t.me/cvedetector/17784", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57241 - Dedecms URL Redirect Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57241 \nPublished : Feb. 11, 2025, 10:15 p.m. | 2\u00a0hours, 7\u00a0minutes ago \nDescription : Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error does not judge the input GET request resulting in URL redirection. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-12T01:48:37.000000Z"}, {"uuid": "639125be-7f51-4f7f-914f-7ec7fac7da3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57249", "type": "seen", "source": "https://t.me/cvedetector/17497", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57249 - Gleamtech FileVista Access Control Bypass\", \n  \"Content\": \"CVE ID : CVE-2024-57249 \nPublished : Feb. 7, 2025, 4:15 p.m. | 59\u00a0minutes ago \nDescription : Incorrect Access Control in the Preview Function of Gleamtech FileVista 9.2.0.0 allows remote attackers to gain unauthorized access via exploiting a vulnerability in access control mechanisms by removing authentication-related HTTP headers, such as the Cookie header, in the request. This bypasses the authentication process and grants attackers access to sensitive image files without proper login credentials. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-07T18:50:12.000000Z"}, {"uuid": "4c4127d1-aa0d-4ef3-991f-ad273a164e27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57248", "type": "seen", "source": "https://t.me/cvedetector/17496", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-57248 - Gleamtech FileVista Directory Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-57248 \nPublished : Feb. 7, 2025, 4:15 p.m. | 59\u00a0minutes ago \nDescription : Directory Traversal in File Upload in Gleamtech FileVista 9.2.0.0 allows remote attackers to achieve Code Execution, Information Disclosure, and Escalation of Privileges via injecting malicious payloads in HTTP requests to manipulate file paths, bypass access controls, and upload malicious files. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-07T18:50:11.000000Z"}, {"uuid": "e614f9a0-2ca9-4fd2-982a-a834a9405bf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57249", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3811", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57249\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Incorrect Access Control in the Preview Function of Gleamtech FileVista 9.2.0.0 allows remote attackers to gain unauthorized access via exploiting a vulnerability in access control mechanisms by removing authentication-related HTTP headers, such as the Cookie header, in the request. This bypasses the authentication process and grants attackers access to sensitive image files without proper login credentials.\n\ud83d\udccf Published: 2025-02-07T18:31:22Z\n\ud83d\udccf Modified: 2025-02-07T18:31:22Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-57249\n2. https://packetstorm.news/files/id/189019\n3. https://www.gleamtech.com/filevista", "creation_timestamp": "2025-02-07T19:03:33.000000Z"}, {"uuid": "39d2de1c-f49f-4c00-adf0-831ea0be3249", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3976", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57241\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Dedecms 5.71sp1 and earlier is vulnerable to URL redirect. In the web application, a logic error does not judge the input GET request resulting in URL redirection.\n\ud83d\udccf Published: 2025-02-12T00:32:16Z\n\ud83d\udccf Modified: 2025-02-12T00:32:16Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-57241\n2. https://github.com/woshidaheike/dedecms-url-redirection", "creation_timestamp": "2025-02-12T01:13:59.000000Z"}, {"uuid": "3dabeeb3-ef28-4e28-9b28-359828f0c3fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57248", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3810", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57248\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Directory Traversal in File Upload in Gleamtech FileVista 9.2.0.0 allows remote attackers to achieve Code Execution, Information Disclosure, and Escalation of Privileges via injecting malicious payloads in HTTP requests to manipulate file paths, bypass access controls, and upload malicious files.\n\ud83d\udccf Published: 2025-02-07T18:31:22Z\n\ud83d\udccf Modified: 2025-02-07T18:31:22Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-57248\n2. https://packetstorm.news/files/id/189021\n3. https://www.gleamtech.com/filevista", "creation_timestamp": "2025-02-07T19:03:25.000000Z"}, {"uuid": "6038e024-40b0-4247-9c96-f7d9d89127ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57240", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6386", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-57240\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A Cross-Site Scripting (XSS) vulnerability in the Rendering Engine component in Apryse WebViewer v11.1 and earlier allows attackers to execute arbitrary code via a crafted PDF file.\n\ud83d\udccf Published: 2025-03-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-04T16:19:17.227Z\n\ud83d\udd17 References:\n1. https://gist.github.com/devom3/43c328e23ec854090ed555a13541ca94", "creation_timestamp": "2025-03-04T16:31:48.000000Z"}, {"uuid": "ce52f378-0c3c-4a8a-8b50-65e40f8020bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "Telegram/Fp2NERVRyK25RF-yDULx7-eU9PWw6zulkr-wpSkVc7HAT8-T", "content": "", "creation_timestamp": "2025-02-18T21:11:31.000000Z"}, {"uuid": "8f928fd8-74c8-4a48-8b75-55377fd7367e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-57241", "type": "seen", "source": "Telegram/Yz2GSRaWOh4smiOo8R_KpgGA6RumU8pTfcdLtcNUpPaNrWOo", "content": "", "creation_timestamp": "2025-02-15T23:50:17.000000Z"}]}