Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 18 Jun 2026 05:46:37 +0000 cc196f9a-81f0-46b7-affe-6de344bb66bb https://vulnerability.circl.lu/sighting/cc196f9a-81f0-46b7-affe-6de344bb66bb/export {"uuid": "cc196f9a-81f0-46b7-affe-6de344bb66bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36167", "type": "published-proof-of-concept", "source": "Telegram/ZPMcjDl_YbbDJ3etZP3BqKChdYJaSzNeePm8ZdO0d0CqNg", "content": "", "creation_timestamp": "2023-07-11T14:57:43.000000Z"} {"uuid": "cc196f9a-81f0-46b7-affe-6de344bb66bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36167", "type": "published-proof-of-concept", "source": "Telegram/ZPMcjDl_YbbDJ3etZP3BqKChdYJaSzNeePm8ZdO0d0CqNg", "content": "", "creation_timestamp": "2023-07-11T14:57:43.000000Z"} https://vulnerability.circl.lu/sighting/cc196f9a-81f0-46b7-affe-6de344bb66bb/export Tue, 11 Jul 2023 14:57:43 +0000 bb332b8d-b104-4ff7-b4c5-a707bd672255 https://vulnerability.circl.lu/sighting/bb332b8d-b104-4ff7-b4c5-a707bd672255/export {"uuid": "bb332b8d-b104-4ff7-b4c5-a707bd672255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36163", "type": "seen", "source": "https://t.me/cibsecurity/66391", "content": "\u203c CVE-2023-36163 \u203c\n\nCross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote attacker to execute arbitrary code via a crafted script to the mc parameter of the URL.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:44.000000Z"} {"uuid": "bb332b8d-b104-4ff7-b4c5-a707bd672255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36163", "type": "seen", "source": "https://t.me/cibsecurity/66391", "content": "\u203c CVE-2023-36163 \u203c\n\nCross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote attacker to execute arbitrary code via a crafted script to the mc parameter of the URL.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:44.000000Z"} https://vulnerability.circl.lu/sighting/bb332b8d-b104-4ff7-b4c5-a707bd672255/export Tue, 11 Jul 2023 18:29:44 +0000 df58b5ca-4376-496f-b186-f01dfdaf968d https://vulnerability.circl.lu/sighting/df58b5ca-4376-496f-b186-f01dfdaf968d/export {"uuid": "df58b5ca-4376-496f-b186-f01dfdaf968d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36167", "type": "seen", "source": "https://t.me/cibsecurity/66392", "content": "\u203c CVE-2023-36167 \u203c\n\nAn issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:45.000000Z"} {"uuid": "df58b5ca-4376-496f-b186-f01dfdaf968d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36167", "type": "seen", "source": "https://t.me/cibsecurity/66392", "content": "\u203c CVE-2023-36167 \u203c\n\nAn issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:45.000000Z"} https://vulnerability.circl.lu/sighting/df58b5ca-4376-496f-b186-f01dfdaf968d/export Tue, 11 Jul 2023 18:29:45 +0000 76b8201a-48e0-4526-93aa-5823a2cb36f0 https://vulnerability.circl.lu/sighting/76b8201a-48e0-4526-93aa-5823a2cb36f0/export {"uuid": "76b8201a-48e0-4526-93aa-5823a2cb36f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36164", "type": "seen", "source": "https://t.me/cibsecurity/66394", "content": "\u203c CVE-2023-36164 \u203c\n\nAn issue in MiniTool Partition Wizard ShadowMaker v.12.7 allows an attacker to execute arbitrary code via the MTAgentService component.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:47.000000Z"} {"uuid": "76b8201a-48e0-4526-93aa-5823a2cb36f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36164", "type": "seen", "source": "https://t.me/cibsecurity/66394", "content": "\u203c CVE-2023-36164 \u203c\n\nAn issue in MiniTool Partition Wizard ShadowMaker v.12.7 allows an attacker to execute arbitrary code via the MTAgentService component.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:47.000000Z"} https://vulnerability.circl.lu/sighting/76b8201a-48e0-4526-93aa-5823a2cb36f0/export Tue, 11 Jul 2023 18:29:47 +0000 f8b32f1e-1ca7-4051-a2bb-b68565d5f90f https://vulnerability.circl.lu/sighting/f8b32f1e-1ca7-4051-a2bb-b68565d5f90f/export {"uuid": "f8b32f1e-1ca7-4051-a2bb-b68565d5f90f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36167", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3864", "content": "\ud83d\udd30Hamer Candy Malaysian leak : https://system32.ink/hamer-candy-malaysian-leak/\n\n\ud83d\udd30Mituo China Leak : https://system32.ink/mituo-china-leak/\n\n\ud83d\udd30AdultFilmStarContent_com Leak : https://system32.ink/adultfilmstarcontent.com-leak/\n\n\ud83d\udd30CVE-2023-2133 Poc : https://system32.ink/cve-2023-2133-poc/\n\n\ud83d\udd30CVE-2023-36167 Poc : https://system32.ink/cve-2023-36167-poc/\n\n\ud83d\udd30CVE-2023-22906 Qubo Smart Doorbell device Exploit : https://system32.ink/cve-2023-22906-qubo-smart-doorbell-device-exploit/\n\n@crackcodes | System32.ink | Crackcodes.in", "creation_timestamp": "2023-07-13T21:29:03.000000Z"} {"uuid": "f8b32f1e-1ca7-4051-a2bb-b68565d5f90f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36167", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3864", "content": "\ud83d\udd30Hamer Candy Malaysian leak : https://system32.ink/hamer-candy-malaysian-leak/\n\n\ud83d\udd30Mituo China Leak : https://system32.ink/mituo-china-leak/\n\n\ud83d\udd30AdultFilmStarContent_com Leak : https://system32.ink/adultfilmstarcontent.com-leak/\n\n\ud83d\udd30CVE-2023-2133 Poc : https://system32.ink/cve-2023-2133-poc/\n\n\ud83d\udd30CVE-2023-36167 Poc : https://system32.ink/cve-2023-36167-poc/\n\n\ud83d\udd30CVE-2023-22906 Qubo Smart Doorbell device Exploit : https://system32.ink/cve-2023-22906-qubo-smart-doorbell-device-exploit/\n\n@crackcodes | System32.ink | Crackcodes.in", "creation_timestamp": "2023-07-13T21:29:03.000000Z"} https://vulnerability.circl.lu/sighting/f8b32f1e-1ca7-4051-a2bb-b68565d5f90f/export Thu, 13 Jul 2023 21:29:03 +0000 a715f8c1-94e0-4944-83c4-698af0f4f67c https://vulnerability.circl.lu/sighting/a715f8c1-94e0-4944-83c4-698af0f4f67c/export {"uuid": "a715f8c1-94e0-4944-83c4-698af0f4f67c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36163", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3119", "content": "25 Tools \ud83d\udd27 \ud83d\udd27 - Hackers Factory\n\nWinsocky\n\nWinsocket implementation for #CobaltStrike. Used to communicate with the victim using winsockets instead of the traditional ways.\n\nhttps://github.com/WKL-Sec/Winsocky\n\n#infosec #pentesting #redteam\n\n\u200b\u200bUseful #OSINT hints and links\n\nhttps://github.com/seintpl/osint\n\n#cybersecurity #infosec\n\n\u200b\u200bPyrrha\n\nA tool for firmware cartography.\n\nhttps://github.com/quarkslab/pyrrha\n\n#cybersecurity #infosec\n\n\u200b\u200b\ud83d\udd79 apk.sh\n\napk.sh makes #reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.\n\nhttps://github.com/ax/apk.sh\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-3269 \n\nLinux kernel privilege escalation vulnerability.\n\nhttps://github.com/lrh2000/StackRot\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bmmdb-server\n\nFast API server to lookup IP addresses for their geographic location.\n\nhttps://github.com/adulau/mmdb-server\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-2868\n\nBarracuda ESG Command Injection\n\nhttps://github.com/cfielding-r7/poc-cve-2023-2868\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bDoge-COFFLdr\n\nIts a coff loader ported to go.\n\n\u2022 Ported to go\n\u2022 more opsec\n\u2022 support BeaconOutput\n\u2022 support other Beacon functions(todo)\n\nhttps://github.com/timwhitez/Doge-COFFLdr\n\n#infosec #pentesting #redteam\n\n\u200b\u200bSR-IOV Network Metrics Exporter\n\nExporter that reads metrics for SR-IOV Virtual Functions and exposes them in the Prometheus format.\n\nhttps://github.com/k8snetworkplumbingwg/sriov-network-metrics-exporter\n\n#cybersecurity #infosec\n\n\u200b\u200bnf-tables-lpe\n\nExploits of Team Orca from Sea Security and Qrious Secure for multiple vulnerabilities in Netfilter's nf_table module.\n\nhttps://github.com/kungfulon/nf-tables-lpe\n\n#cybersecurity #infosec\n\n\u200b\u200broute-detect\n\nFind authentication (authn) and authorization (authz) security bugs in web application routes.\n\nhttps://github.com/mschwager/route-detect\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bjava-gate\n\nJava JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders.\n\nhttps://github.com/4ra1n/java-gate\n\n#infosec #pentesting #redteam\n\nTakeMyRDP 2.0\n\nA keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing it to record keystrokes in certain contexts (like in mstsc.exe and CredentialUIBroker.exe) it operates in the background not as a console windows anymore and handles all messages in a hidden window.\n\nhttps://github.com/nocerainfosec/TakeMyRDP2.0\n\n#infosec #pentesting #redteam\n\nEvil QR\n\nProof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.\n\nhttps://github.com/kgretzky/evilqr\n\n#cybersecurity #infosec\n\n\u200b\u200bDecrypt Chrome Passwords\n\nA simple program to decrypt chrome password saved on your machine. This code has only been tested on windows, so it may not work on other OS.\n\nhttps://github.com/ohyicong/decrypt-chrome-passwords\n\n#cybersecurity #infosec #redteam\n\n\u200b\u200bShortscan\n\nAn IIS short filename enumeration tool.\n\nhttps://github.com/bitquark/shortscan\n\n#cybersecurity #infosec\n\n\u200b\u200bFuzzyLogic.jl\n\nA Flexible Library for Efficient and Productive Fuzzy Inference\n \nhttps://github.com/lucaferranti/fuzzieee2023\n\n#cybersecurity #infosec\n\n\u200b\u200bDECREE\n\nThis is the code repository of the CVPR 2023 paper DECREE, \"Detecting Backdoors in Pre-trained Encoders\", the first backdoor detection method against self-supervising learning (SSL) backdoor attacks.\n\nhttps://github.com/GiantSeaweed/DECREE\n\n#infosec #pentesting #redteam\n\n\u200b\u200bCVE-2023-36163\n\nCross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote attacker to execute arbitrary code via a crafted script to the mc parameter of the URL.\n\nhttps://github.com/TraiLeR2/CVE-2023-36163\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-36167\n\nAn issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component\n\nhttps://github.com/TraiLeR2/CVE-2023-36167\n\n#cve #cybersecurity #infosec\n\n\u200b\u200b1/1", "creation_timestamp": "2023-07-27T07:52:46.000000Z"} {"uuid": "a715f8c1-94e0-4944-83c4-698af0f4f67c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36163", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3119", "content": "25 Tools \ud83d\udd27 \ud83d\udd27 - Hackers Factory\n\nWinsocky\n\nWinsocket implementation for #CobaltStrike. Used to communicate with the victim using winsockets instead of the traditional ways.\n\nhttps://github.com/WKL-Sec/Winsocky\n\n#infosec #pentesting #redteam\n\n\u200b\u200bUseful #OSINT hints and links\n\nhttps://github.com/seintpl/osint\n\n#cybersecurity #infosec\n\n\u200b\u200bPyrrha\n\nA tool for firmware cartography.\n\nhttps://github.com/quarkslab/pyrrha\n\n#cybersecurity #infosec\n\n\u200b\u200b\ud83d\udd79 apk.sh\n\napk.sh makes #reverse engineering Android apps easier, automating some repetitive tasks like pulling, decoding, rebuilding and patching an APK.\n\nhttps://github.com/ax/apk.sh\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-3269 \n\nLinux kernel privilege escalation vulnerability.\n\nhttps://github.com/lrh2000/StackRot\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bmmdb-server\n\nFast API server to lookup IP addresses for their geographic location.\n\nhttps://github.com/adulau/mmdb-server\n\n#cybersecurity #infosec\n\n\u200b\u200bCVE-2023-2868\n\nBarracuda ESG Command Injection\n\nhttps://github.com/cfielding-r7/poc-cve-2023-2868\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bDoge-COFFLdr\n\nIts a coff loader ported to go.\n\n\u2022 Ported to go\n\u2022 more opsec\n\u2022 support BeaconOutput\n\u2022 support other Beacon functions(todo)\n\nhttps://github.com/timwhitez/Doge-COFFLdr\n\n#infosec #pentesting #redteam\n\n\u200b\u200bSR-IOV Network Metrics Exporter\n\nExporter that reads metrics for SR-IOV Virtual Functions and exposes them in the Prometheus format.\n\nhttps://github.com/k8snetworkplumbingwg/sriov-network-metrics-exporter\n\n#cybersecurity #infosec\n\n\u200b\u200bnf-tables-lpe\n\nExploits of Team Orca from Sea Security and Qrious Secure for multiple vulnerabilities in Netfilter's nf_table module.\n\nhttps://github.com/kungfulon/nf-tables-lpe\n\n#cybersecurity #infosec\n\n\u200b\u200broute-detect\n\nFind authentication (authn) and authorization (authz) security bugs in web application routes.\n\nhttps://github.com/mschwager/route-detect\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bjava-gate\n\nJava JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders.\n\nhttps://github.com/4ra1n/java-gate\n\n#infosec #pentesting #redteam\n\nTakeMyRDP 2.0\n\nA keystroke logger targeting the Remote Desktop Protocol (RDP) related processes, It utilizes a low-level keyboard input hook, allowing it to record keystrokes in certain contexts (like in mstsc.exe and CredentialUIBroker.exe) it operates in the background not as a console windows anymore and handles all messages in a hidden window.\n\nhttps://github.com/nocerainfosec/TakeMyRDP2.0\n\n#infosec #pentesting #redteam\n\nEvil QR\n\nProof-of-concept to demonstrate dynamic QR swap phishing attacks in practice.\n\nhttps://github.com/kgretzky/evilqr\n\n#cybersecurity #infosec\n\n\u200b\u200bDecrypt Chrome Passwords\n\nA simple program to decrypt chrome password saved on your machine. This code has only been tested on windows, so it may not work on other OS.\n\nhttps://github.com/ohyicong/decrypt-chrome-passwords\n\n#cybersecurity #infosec #redteam\n\n\u200b\u200bShortscan\n\nAn IIS short filename enumeration tool.\n\nhttps://github.com/bitquark/shortscan\n\n#cybersecurity #infosec\n\n\u200b\u200bFuzzyLogic.jl\n\nA Flexible Library for Efficient and Productive Fuzzy Inference\n \nhttps://github.com/lucaferranti/fuzzieee2023\n\n#cybersecurity #infosec\n\n\u200b\u200bDECREE\n\nThis is the code repository of the CVPR 2023 paper DECREE, \"Detecting Backdoors in Pre-trained Encoders\", the first backdoor detection method against self-supervising learning (SSL) backdoor attacks.\n\nhttps://github.com/GiantSeaweed/DECREE\n\n#infosec #pentesting #redteam\n\n\u200b\u200bCVE-2023-36163\n\nCross Site Scripting vulnerability in IP-DOT BuildaGate v.BuildaGate5 allows a remote attacker to execute arbitrary code via a crafted script to the mc parameter of the URL.\n\nhttps://github.com/TraiLeR2/CVE-2023-36163\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-36167\n\nAn issue in AVG AVG Anti-Spyware v.7.5 allows an attacker to execute arbitrary code via a crafted script to the guard.exe component\n\nhttps://github.com/TraiLeR2/CVE-2023-36167\n\n#cve #cybersecurity #infosec\n\n\u200b\u200b1/1", "creation_timestamp": "2023-07-27T07:52:46.000000Z"} https://vulnerability.circl.lu/sighting/a715f8c1-94e0-4944-83c4-698af0f4f67c/export Thu, 27 Jul 2023 07:52:46 +0000 4bb6246f-0259-4e0e-8008-c4a51f15948a https://vulnerability.circl.lu/sighting/4bb6246f-0259-4e0e-8008-c4a51f15948a/export {"uuid": "4bb6246f-0259-4e0e-8008-c4a51f15948a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36168", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8790", "content": "#exploit\n1. CVE-2023-2033:\nType confusion in V8 in Google Chrome\nhttps://github.com/mistymntncop/CVE-2023-2033\n\n2. CVE-2023-36168:\nAVG Anti Spyware 7.5 - Unquoted Service Path\nhttps://github.com/TraiLeR2/CVE-2023-36168", "creation_timestamp": "2023-08-04T11:00:38.000000Z"} {"uuid": "4bb6246f-0259-4e0e-8008-c4a51f15948a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36168", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8790", "content": "#exploit\n1. CVE-2023-2033:\nType confusion in V8 in Google Chrome\nhttps://github.com/mistymntncop/CVE-2023-2033\n\n2. CVE-2023-36168:\nAVG Anti Spyware 7.5 - Unquoted Service Path\nhttps://github.com/TraiLeR2/CVE-2023-36168", "creation_timestamp": "2023-08-04T11:00:38.000000Z"} https://vulnerability.circl.lu/sighting/4bb6246f-0259-4e0e-8008-c4a51f15948a/export Fri, 04 Aug 2023 11:00:38 +0000 0d8b04ca-3825-4782-b780-9cb69fb29296 https://vulnerability.circl.lu/sighting/0d8b04ca-3825-4782-b780-9cb69fb29296/export {"uuid": "0d8b04ca-3825-4782-b780-9cb69fb29296", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3616", "type": "seen", "source": "https://t.me/cibsecurity/69889", "content": "\u203c CVE-2023-3616 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mava Software Hotel Management System allows SQL Injection.This issue affects Hotel Management System: before 2.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-05T22:16:56.000000Z"} {"uuid": "0d8b04ca-3825-4782-b780-9cb69fb29296", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3616", "type": "seen", "source": "https://t.me/cibsecurity/69889", "content": "\u203c CVE-2023-3616 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mava Software Hotel Management System allows SQL Injection.This issue affects Hotel Management System: before 2.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-05T22:16:56.000000Z"} https://vulnerability.circl.lu/sighting/0d8b04ca-3825-4782-b780-9cb69fb29296/export Tue, 05 Sep 2023 22:16:56 +0000 710c7c2d-4146-45b0-8b46-aa87d18d4f84 https://vulnerability.circl.lu/sighting/710c7c2d-4146-45b0-8b46-aa87d18d4f84/export {"uuid": "710c7c2d-4146-45b0-8b46-aa87d18d4f84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36161", "type": "seen", "source": "https://t.me/cibsecurity/70206", "content": "\u203c CVE-2023-36161 \u203c\n\nAn issue was discovered in Qubo Smart Plug 10A version HSP02_01_01_14_SYSTEM-10A, allows attackers to cause a denial of service (DoS) via Wi-Fi deauthentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-11T16:22:08.000000Z"} {"uuid": "710c7c2d-4146-45b0-8b46-aa87d18d4f84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36161", "type": "seen", "source": "https://t.me/cibsecurity/70206", "content": "\u203c CVE-2023-36161 \u203c\n\nAn issue was discovered in Qubo Smart Plug 10A version HSP02_01_01_14_SYSTEM-10A, allows attackers to cause a denial of service (DoS) via Wi-Fi deauthentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-11T16:22:08.000000Z"} https://vulnerability.circl.lu/sighting/710c7c2d-4146-45b0-8b46-aa87d18d4f84/export Mon, 11 Sep 2023 16:22:08 +0000 13ecd9aa-0486-4326-a9de-513da1d49076 https://vulnerability.circl.lu/sighting/13ecd9aa-0486-4326-a9de-513da1d49076/export {"uuid": "13ecd9aa-0486-4326-a9de-513da1d49076", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36160", "type": "seen", "source": "https://t.me/cibsecurity/70626", "content": "\u203c CVE-2023-36160 \u203c\n\nAn issue was discovered in Qubo Smart Plug10A version HSP02_01_01_14_SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-16T07:26:02.000000Z"} {"uuid": "13ecd9aa-0486-4326-a9de-513da1d49076", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36160", "type": "seen", "source": "https://t.me/cibsecurity/70626", "content": "\u203c CVE-2023-36160 \u203c\n\nAn issue was discovered in Qubo Smart Plug10A version HSP02_01_01_14_SYSTEM-10 A, allows local attackers to gain sensitive information and other unspecified impact via UART console.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-16T07:26:02.000000Z"} https://vulnerability.circl.lu/sighting/13ecd9aa-0486-4326-a9de-513da1d49076/export Sat, 16 Sep 2023 07:26:02 +0000