From c312d627bdd4e3ccd24de2147e2b6458d2884199 Mon Sep 17 00:00:00 2001 From: CVE Team Date: Wed, 11 Sep 2024 06:00:36 +0000 Subject: [PATCH] "-Synchronized-Data." --- 2024/3xxx/CVE-2024-3899.json | 72 +++++++++++++++++++++++++++++++--- 2024/45xxx/CVE-2024-45864.json | 18 +++++++++ 2024/45xxx/CVE-2024-45865.json | 18 +++++++++ 2024/45xxx/CVE-2024-45866.json | 18 +++++++++ 2024/45xxx/CVE-2024-45867.json | 18 +++++++++ 2024/45xxx/CVE-2024-45868.json | 18 +++++++++ 2024/45xxx/CVE-2024-45869.json | 18 +++++++++ 2024/45xxx/CVE-2024-45870.json | 18 +++++++++ 2024/45xxx/CVE-2024-45871.json | 18 +++++++++ 2024/45xxx/CVE-2024-45872.json | 18 +++++++++ 2024/45xxx/CVE-2024-45873.json | 18 +++++++++ 2024/45xxx/CVE-2024-45874.json | 18 +++++++++ 2024/7xxx/CVE-2024-7716.json | 72 +++++++++++++++++++++++++++++++--- 2024/8xxx/CVE-2024-8683.json | 18 +++++++++ 14 files changed, 350 insertions(+), 10 deletions(-) create mode 100644 2024/45xxx/CVE-2024-45864.json create mode 100644 2024/45xxx/CVE-2024-45865.json create mode 100644 2024/45xxx/CVE-2024-45866.json create mode 100644 2024/45xxx/CVE-2024-45867.json create mode 100644 2024/45xxx/CVE-2024-45868.json create mode 100644 2024/45xxx/CVE-2024-45869.json create mode 100644 2024/45xxx/CVE-2024-45870.json create mode 100644 2024/45xxx/CVE-2024-45871.json create mode 100644 2024/45xxx/CVE-2024-45872.json create mode 100644 2024/45xxx/CVE-2024-45873.json create mode 100644 2024/45xxx/CVE-2024-45874.json create mode 100644 2024/8xxx/CVE-2024-8683.json diff --git a/2024/3xxx/CVE-2024-3899.json b/2024/3xxx/CVE-2024-3899.json index 58f682cde04..de5feb64230 100644 --- a/2024/3xxx/CVE-2024-3899.json +++ b/2024/3xxx/CVE-2024-3899.json @@ -1,18 +1,80 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2024-3899", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "contact@wpscan.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The Gallery Plugin for WordPress WordPress plugin before 1.8.15 does not sanitise and escape some of its image settings, which could allow users with post-writing privilege such as Author to perform Cross-Site Scripting attacks." } ] - } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-79 Cross-Site Scripting (XSS)" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unknown", + "product": { + "product_data": [ + { + "product_name": "Gallery Plugin for WordPress", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "0", + "version_value": "1.8.15" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://wpscan.com/vulnerability/e3afadda-4d9a-4a51-b744-10de7d8d8578/", + "refsource": "MISC", + "name": "https://wpscan.com/vulnerability/e3afadda-4d9a-4a51-b744-10de7d8d8578/" + } + ] + }, + "generator": { + "engine": "WPScan CVE Generator" + }, + "source": { + "discovery": "EXTERNAL" + }, + "credits": [ + { + "lang": "en", + "value": "Dmitrii Ignatyev" + }, + { + "lang": "en", + "value": "WPScan" + } + ] } \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45864.json b/2024/45xxx/CVE-2024-45864.json new file mode 100644 index 00000000000..419959a7f66 --- /dev/null +++ b/2024/45xxx/CVE-2024-45864.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45864", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45865.json b/2024/45xxx/CVE-2024-45865.json new file mode 100644 index 00000000000..375c40ba4c9 --- /dev/null +++ b/2024/45xxx/CVE-2024-45865.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45865", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45866.json b/2024/45xxx/CVE-2024-45866.json new file mode 100644 index 00000000000..71ab4563a50 --- /dev/null +++ b/2024/45xxx/CVE-2024-45866.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45866", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45867.json b/2024/45xxx/CVE-2024-45867.json new file mode 100644 index 00000000000..9cd23f59e75 --- /dev/null +++ b/2024/45xxx/CVE-2024-45867.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45867", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45868.json b/2024/45xxx/CVE-2024-45868.json new file mode 100644 index 00000000000..3439c9eed94 --- /dev/null +++ b/2024/45xxx/CVE-2024-45868.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45868", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45869.json b/2024/45xxx/CVE-2024-45869.json new file mode 100644 index 00000000000..846f6ca0dc4 --- /dev/null +++ b/2024/45xxx/CVE-2024-45869.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45869", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45870.json b/2024/45xxx/CVE-2024-45870.json new file mode 100644 index 00000000000..2c1ae240de8 --- /dev/null +++ b/2024/45xxx/CVE-2024-45870.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45870", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45871.json b/2024/45xxx/CVE-2024-45871.json new file mode 100644 index 00000000000..32121ee762b --- /dev/null +++ b/2024/45xxx/CVE-2024-45871.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45871", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45872.json b/2024/45xxx/CVE-2024-45872.json new file mode 100644 index 00000000000..53c24f47709 --- /dev/null +++ b/2024/45xxx/CVE-2024-45872.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45872", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45873.json b/2024/45xxx/CVE-2024-45873.json new file mode 100644 index 00000000000..542f4e4bac0 --- /dev/null +++ b/2024/45xxx/CVE-2024-45873.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45873", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/45xxx/CVE-2024-45874.json b/2024/45xxx/CVE-2024-45874.json new file mode 100644 index 00000000000..adc8f0b2bcb --- /dev/null +++ b/2024/45xxx/CVE-2024-45874.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-45874", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file diff --git a/2024/7xxx/CVE-2024-7716.json b/2024/7xxx/CVE-2024-7716.json index 84fc6d97f2a..6e86bff58af 100644 --- a/2024/7xxx/CVE-2024-7716.json +++ b/2024/7xxx/CVE-2024-7716.json @@ -1,18 +1,80 @@ { + "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", - "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2024-7716", - "ASSIGNER": "cve@mitre.org", - "STATE": "RESERVED" + "ASSIGNER": "contact@wpscan.com", + "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "The Logo Slider WordPress plugin before 3.6.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)." } ] - } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-79 Cross-Site Scripting (XSS)" + } + ] + } + ] + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "vendor_name": "Unknown", + "product": { + "product_data": [ + { + "product_name": "Logo Slider", + "version": { + "version_data": [ + { + "version_affected": "<", + "version_name": "0", + "version_value": "3.6.9" + } + ] + } + } + ] + } + } + ] + } + }, + "references": { + "reference_data": [ + { + "url": "https://wpscan.com/vulnerability/cfa67c43-6f09-43f5-9fbe-32a98a82f548/", + "refsource": "MISC", + "name": "https://wpscan.com/vulnerability/cfa67c43-6f09-43f5-9fbe-32a98a82f548/" + } + ] + }, + "generator": { + "engine": "WPScan CVE Generator" + }, + "source": { + "discovery": "EXTERNAL" + }, + "credits": [ + { + "lang": "en", + "value": "Krugov Artyom" + }, + { + "lang": "en", + "value": "WPScan" + } + ] } \ No newline at end of file diff --git a/2024/8xxx/CVE-2024-8683.json b/2024/8xxx/CVE-2024-8683.json new file mode 100644 index 00000000000..ef24ed4666b --- /dev/null +++ b/2024/8xxx/CVE-2024-8683.json @@ -0,0 +1,18 @@ +{ + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", + "CVE_data_meta": { + "ID": "CVE-2024-8683", + "ASSIGNER": "cve@mitre.org", + "STATE": "RESERVED" + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + } + ] + } +} \ No newline at end of file