generated content from 2024-10-31

mapping.csv

@@ -254088,3 +254088,7 @@ vulnerability,CVE-2024-48307,vulnerability--9f8ace9c-ab91-4127-b089-a42734dceea2
 vulnerability,CVE-2024-10556,vulnerability--3b918631-abb5-49e0-9829-b4faba37ef9f
 vulnerability,CVE-2024-48311,vulnerability--916fcbf9-6f2a-448b-a2d8-a204aef3efe2
 vulnerability,CVE-2024-10557,vulnerability--481ca1fe-d761-479a-b23e-b1b747dc1798
+vulnerability,CVE-2024-10544,vulnerability--9e643df1-7aad-455e-8d5d-85d114d77861
+vulnerability,CVE-2024-10559,vulnerability--0f67e3fc-7eaa-4f40-a873-440bc07edd05
+vulnerability,CVE-2024-10561,vulnerability--ca25a74e-3d31-46fd-be45-6822936cfefa
+vulnerability,CVE-2024-9708,vulnerability--20ee51eb-4ae7-41c1-afab-d7fe0765720f

objects/vulnerability/vulnerability--0f67e3fc-7eaa-4f40-a873-440bc07edd05.json

@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--77dfcf03-14cf-48cf-8bb9-19145ad22785",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--0f67e3fc-7eaa-4f40-a873-440bc07edd05",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2024-10-31T03:27:56.444104Z",
+            "modified": "2024-10-31T03:27:56.444104Z",
+            "name": "CVE-2024-10559",
+            "description": "A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified as critical. Affected by this issue is the function details of the component Passport Number Handler. The manipulation leads to buffer overflow. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2024-10559"
+                }
+            ]
+        }
+    ]
+}

objects/vulnerability/vulnerability--20ee51eb-4ae7-41c1-afab-d7fe0765720f.json

@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--d0fe8627-1f87-4290-9fa5-a4e21ab4a6f4",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--20ee51eb-4ae7-41c1-afab-d7fe0765720f",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2024-10-31T03:27:56.495916Z",
+            "modified": "2024-10-31T03:27:56.495916Z",
+            "name": "CVE-2024-9708",
+            "description": "The Easy SVG Upload plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Author-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses the SVG file.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2024-9708"
+                }
+            ]
+        }
+    ]
+}

objects/vulnerability/vulnerability--9e643df1-7aad-455e-8d5d-85d114d77861.json

@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--77020e0f-d00e-46f6-bfbe-a821737a4ea3",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--9e643df1-7aad-455e-8d5d-85d114d77861",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2024-10-31T03:27:56.428323Z",
+            "modified": "2024-10-31T03:27:56.428323Z",
+            "name": "CVE-2024-10544",
+            "description": "The Woo Manage Fraud Orders plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 6.1.7 through publicly exposed log files. This makes it possible for unauthenticated attackers to view potentially sensitive information about users contained in the exposed log files.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2024-10544"
+                }
+            ]
+        }
+    ]
+}

objects/vulnerability/vulnerability--ca25a74e-3d31-46fd-be45-6822936cfefa.json

@@ -0,0 +1,22 @@
+{
+    "type": "bundle",
+    "id": "bundle--1fc6ca43-64f6-4759-8850-fe44942b171f",
+    "objects": [
+        {
+            "type": "vulnerability",
+            "spec_version": "2.1",
+            "id": "vulnerability--ca25a74e-3d31-46fd-be45-6822936cfefa",
+            "created_by_ref": "identity--8ce3f695-d5a4-4dc8-9e93-a65af453a31a",
+            "created": "2024-10-31T03:27:56.452178Z",
+            "modified": "2024-10-31T03:27:56.452178Z",
+            "name": "CVE-2024-10561",
+            "description": "A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file birdsupdate.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.",
+            "external_references": [
+                {
+                    "source_name": "cve",
+                    "external_id": "CVE-2024-10561"
+                }
+            ]
+        }
+    ]
+}