Auto-Update: 2024-10-07T08:00:17.584290+00:00

2025-06-21 17:41:05 +00:00 · 2024-10-07 08:03:17 +00:00 · 2024-10-07 08:03:17 +00:00 · bf5cc3600c
commit bf5cc3600c
parent d61d997514
4 changed files with 122 additions and 7 deletions
--- a/CVE-2024/CVE-2024-473xx/CVE-2024-47335.json
+++ b/CVE-2024/CVE-2024-473xx/CVE-2024-47335.json
@ -0,0 +1,56 @@
+{
+  "id": "CVE-2024-47335",
+  "sourceIdentifier": "audit@patchstack.com",
+  "published": "2024-10-07T06:15:04.617",
+  "lastModified": "2024-10-07T06:15:04.617",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bit Form Bit Form \u2013 Contact Form Plugin allows SQL Injection.This issue affects Bit Form \u2013 Contact Form Plugin: from n/a through 2.13.11."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "audit@patchstack.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "HIGH",
+          "userInteraction": "NONE",
+          "scope": "CHANGED",
+          "confidentialityImpact": "HIGH",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "LOW",
+          "baseScore": 7.6,
+          "baseSeverity": "HIGH"
+        },
+        "exploitabilityScore": 2.3,
+        "impactScore": 4.7
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "audit@patchstack.com",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-89"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://patchstack.com/database/vulnerability/bit-form/wordpress-bit-form-plugin-2-13-11-sql-injection-vulnerability?_s_id=cve",
+      "source": "audit@patchstack.com"
+    }
+  ]
+}
--- a/CVE-2024/CVE-2024-473xx/CVE-2024-47344.json
+++ b/CVE-2024/CVE-2024-473xx/CVE-2024-47344.json
@ -0,0 +1,56 @@
+{
+  "id": "CVE-2024-47344",
+  "sourceIdentifier": "audit@patchstack.com",
+  "published": "2024-10-07T06:15:04.973",
+  "lastModified": "2024-10-07T06:15:04.973",
+  "vulnStatus": "Received",
+  "cveTags": [],
+  "descriptions": [
+    {
+      "lang": "en",
+      "value": "Exposure of Sensitive Information to an Unauthorized Actor vulnerability in StylemixThemes uListing.This issue affects uListing: from n/a through 2.1.5."
+    }
+  ],
+  "metrics": {
+    "cvssMetricV31": [
+      {
+        "source": "audit@patchstack.com",
+        "type": "Secondary",
+        "cvssData": {
+          "version": "3.1",
+          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
+          "attackVector": "NETWORK",
+          "attackComplexity": "LOW",
+          "privilegesRequired": "NONE",
+          "userInteraction": "NONE",
+          "scope": "UNCHANGED",
+          "confidentialityImpact": "LOW",
+          "integrityImpact": "NONE",
+          "availabilityImpact": "NONE",
+          "baseScore": 5.3,
+          "baseSeverity": "MEDIUM"
+        },
+        "exploitabilityScore": 3.9,
+        "impactScore": 1.4
+      }
+    ]
+  },
+  "weaknesses": [
+    {
+      "source": "audit@patchstack.com",
+      "type": "Primary",
+      "description": [
+        {
+          "lang": "en",
+          "value": "CWE-200"
+        }
+      ]
+    }
+  ],
+  "references": [
+    {
+      "url": "https://patchstack.com/database/vulnerability/ulisting/wordpress-ulisting-plugin-2-1-5-sensitive-data-exposure-vulnerability?_s_id=cve",
+      "source": "audit@patchstack.com"
+    }
+  ]
+}
--- a/README.md
+++ b/README.md
@ -13,13 +13,13 @@ Repository synchronizes with the NVD every 2 hours.
 ### Last Repository Update

 ```plain
-2024-10-07T06:00:16.730196+00:00
+2024-10-07T08:00:17.584290+00:00
 ```

 ### Most recent CVE Modification Timestamp synchronized with NVD

 ```plain
-2024-10-07T04:15:02.703000+00:00
+2024-10-07T06:15:04.973000+00:00
 ```

 ### Last Data Feed Release
@ -33,20 +33,21 @@ Download and Changelog: [Click](https://github.com/fkie-cad/nvd-json-data-feeds/
 ### Total Number of included CVEs

 ```plain
-264708
+264710
 ```

 ### CVEs added in the last Commit

-Recently added CVEs: `0`
+Recently added CVEs: `2`

+- [CVE-2024-47335](CVE-2024/CVE-2024-473xx/CVE-2024-47335.json) (`2024-10-07T06:15:04.617`)
+- [CVE-2024-47344](CVE-2024/CVE-2024-473xx/CVE-2024-47344.json) (`2024-10-07T06:15:04.973`)


 ### CVEs modified in the last Commit

-Recently modified CVEs: `1`
+Recently modified CVEs: `0`

- [CVE-2024-20094](CVE-2024/CVE-2024-200xx/CVE-2024-20094.json) (`2024-10-07T04:15:02.703`)


 ## Download and Usage
--- a/_state.csv
+++ b/_state.csv
@ -243166,7 +243166,7 @@ CVE-2024-20090,0,0,59a7e52cf7025276a6db0c14ce6f34944a8b0b4113a9c0e29ce7ba382d33e
 CVE-2024-20091,0,0,3bf9ec3c097c0494d871fb82f004ed8098a3af6724efef8dbbb44c8e90385f71,2024-10-07T03:15:02.583000
 CVE-2024-20092,0,0,4b0bc83d3f5a5ade48b8ae4c2b6a25b962fc6d494f577ee50b4bc23ed7fbd11f,2024-10-07T03:15:02.680000
 CVE-2024-20093,0,0,0950622827f8ba98de91cbaa9f087416b490bf2f1503ed5f0876bf052411c3d8,2024-10-07T03:15:02.757000
-CVE-2024-20094,0,1,eee08d0a92e251ecdf1cbd65aca7ebe9a8e88f62e088af5a3fa1c31de62903dc,2024-10-07T04:15:02.703000
+CVE-2024-20094,0,0,eee08d0a92e251ecdf1cbd65aca7ebe9a8e88f62e088af5a3fa1c31de62903dc,2024-10-07T04:15:02.703000
 CVE-2024-20095,0,0,c5bdbbbe15ad89d9cd38d7ee1cbacee9974552b35d6ca2e6b413650a298b9a74,2024-10-07T03:15:02.910000
 CVE-2024-20096,0,0,d86710c0fc330cd0a2eab8d2c6959311931c71e27f4825ab8ee341cc82a0b5b1,2024-10-07T03:15:02.987000
 CVE-2024-20097,0,0,acd4d2c187b5aafc5e0e514df5b7e9937c444450544bc3ae1983c9fc1a505466,2024-10-07T03:15:03.057000
@ -261055,6 +261055,7 @@ CVE-2024-4733,0,0,bab73609d3aaa55dacedcdd69b9c9d83fbc709adf98853b3adb423b13daf24
 CVE-2024-47330,0,0,8e1bb94d03c47cc1936bb0a3abc1d94c591039097eebb503639095132d634032,2024-10-02T17:26:49.470000
 CVE-2024-47332,0,0,1df862aa82b6eae86cac273eca640bbfa7cc741acdfda1bccec05fcc431c9ece,2024-10-06T11:15:11.957000
 CVE-2024-47333,0,0,e71ee4ed73a0217250e82dbb9f20e43aff2285627bab146687ff183b28b9b630,2024-10-06T11:15:12.170000
+CVE-2024-47335,1,1,a4a2664baa45778f92d8cd5d20d55e469bc0c735c285044cdec6e28f2e1f59c3,2024-10-07T06:15:04.617000
 CVE-2024-47336,0,0,b14a6833d5e30cf1087b6fbf911ab25a74ddd0c54a17bed602dc88085f16eeb7,2024-10-06T11:15:12.393000
 CVE-2024-47337,0,0,3f50b583aae71c6f8cadac0ae6ee64e91fb1dabd9a75ac191a842163ad487c42,2024-09-26T13:32:02.803000
 CVE-2024-47338,0,0,d86d4fdd154b8adb4b67e8bb256527a4504d5eaecd8d00e0dc8d8b1f0a425a8a,2024-10-06T13:15:16.267000
@ -261064,6 +261065,7 @@ CVE-2024-47340,0,0,4f61bbbfcda92b1ba4f9c77cee21b6d08186ed25a290baffd724f278078ba
 CVE-2024-47341,0,0,68d0ea6f863e0207756ae3ee7375f3f8f80f2e30176eae609a552cc14a36e69d,2024-10-06T11:15:12.980000
 CVE-2024-47342,0,0,ed68f3a13fe48b9e02e00826873197baf611ad53b880bd2465019c1e876cb320,2024-10-06T11:15:13.180000
 CVE-2024-47343,0,0,7d04c1d3dbc036c77ba16b9e22584923396bf4a750fd5dea263405439b359bf7,2024-10-06T11:15:13.370000
+CVE-2024-47344,1,1,7f3cd4058fe43380acf267a3749156f1983c94329122e6fd6e26dcbee4963896,2024-10-07T06:15:04.973000
 CVE-2024-47345,0,0,eaf8829ac5655f65337a7ddebefac52b230676fdb30a2fe892cb7d3845e6305f,2024-10-06T11:15:13.560000
 CVE-2024-47346,0,0,eac2907dbd0b479d4e5f2041e42e58af3100598175c1d0f1fc2c1671d7e5f0a9,2024-10-06T11:15:13.760000
 CVE-2024-47347,0,0,49102bd33d3ee523b336301781936cc58d61b6db80c197a91e09b4134f71d9ae,2024-10-06T11:15:13.963000