{"vulnerability": "CVE-2023-2208", "sightings": [{"uuid": "d5fac927-0c60-4858-8804-e8ba58f56ceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22089", "type": "seen", "source": "https://t.me/cibsecurity/72474", "content": "\u203c CVE-2023-22089 \u203c\n\nVulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Core). Supported versions that are affected are 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 9.8 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-18T02:44:55.000000Z"}, {"uuid": "79085248-a56e-4741-b3ad-844ef819483c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22081", "type": "seen", "source": "https://gist.github.com/juank704/8c144f4ae0004f19892c23b19deca658", "content": "", "creation_timestamp": "2025-03-03T15:40:30.000000Z"}, {"uuid": "c79e1acd-3c2a-413c-aa95-c54213ca7a4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22082", "type": "seen", "source": "https://t.me/cibsecurity/72464", "content": "\u203c CVE-2023-22082 \u203c\n\nVulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Pod Admin). Supported versions that are affected are 6.4.0.0.0 and 7.0.0.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Business Intelligence Enterprise Edition. Successful attacks require human interaction from a person other than the attacker and while the vulnerability is in Oracle Business Intelligence Enterprise Edition, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Oracle Business Intelligence Enterprise Edition accessible data as well as unauthorized read access to a subset of Oracle Business Intelligence Enterprise Edition accessible data. CVSS 3.1 Base Score 5.4 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-18T02:44:42.000000Z"}, {"uuid": "b4e2a3cb-9634-4985-9c84-519dcfb3d351", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22088", "type": "seen", "source": "https://t.me/cibsecurity/72459", "content": "\u203c CVE-2023-22088 \u203c\n\nVulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications (component: User Management). Supported versions that are affected are 7.4.0 and 7.4.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Communications Order and Service Management. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Oracle Communications Order and Service Management accessible data. CVSS 3.1 Base Score 4.3 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-18T02:44:36.000000Z"}, {"uuid": "2c738eb0-be92-48f6-8b84-de9e96421380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2208", "type": "seen", "source": "https://t.me/cibsecurity/62577", "content": "\u203c CVE-2023-2208 \u203c\n\nA vulnerability, which was classified as critical, has been found in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file details.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-226973 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-21T12:38:01.000000Z"}, {"uuid": "453e7bcb-aef0-4ce0-9ec2-b89f719e4acf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22084", "type": "published-proof-of-concept", "source": "https://t.me/BABATATASASA/5993", "content": "| PRION:CVE-2023-22110 3.3 https://vulners.com/prion/PRION:CVE-2023-22110 | PRION:CVE-2023-22104 3.3 https://vulners.com/prion/PRION:CVE-2023-22104 | PRION:CVE-2023-22103 3.3 https://vulners.com/prion/PRION:CVE-2023-22103 | PRION:CVE-2023-22097 3.3 https://vulners.com/prion/PRION:CVE-2023-22097 | PRION:CVE-2023-22092 3.3 https://vulners.com/prion/PRION:CVE-2023-22092 | PRION:CVE-2023-22084 3.3 https://vulners.com/prion/PRION:CVE-2023-22084 | PRION:CVE-2023-22078 3.3 https://vulners.com/prion/PRION:CVE-2023-22078 | PRION:CVE-2023-22070 3.3 https://vulners.com/prion/PRION:CVE-2023-22070 | PRION:CVE-2023-22068 3.3 https://vulners.com/prion/PRION:CVE-2023-22068 | PRION:CVE-2023-22066 3.3 https://vulners.com/prion/PRION:CVE-2023-22066 | PRION:CVE-2023-22065 3.3 https://vulners.com/prion/PRION:CVE-2023-22065 | PRION:CVE-2023-22064 3.3 https://vulners.com/prion/PRION:CVE-2023-22064 | PRION:CVE-2023-22057 3.3 https://vulners.com/prion/PRION:CVE-2023-22057 | PRION:CVE-2023-22056 3.3 https://vulners.com/prion/PRION:CVE-2023-22056 | PRION:CVE-2023-22054 3.3 https://vulners.com/prion/PRION:CVE-2023-22054 | PRION:CVE-2023-22032 3.3 https://vulners.com/prion/PRION:CVE-2023-22032\n| PRION:CVE-2023-22028 3.3 https://vulners.com/prion/PRION:CVE-2023-22028 | PRION:CVE-2023-22026 3.3 https://vulners.com/prion/PRION:CVE-2023-22026\n| PRION:CVE-2023-22015 3.3 https://vulners.com/prion/PRION:CVE-2023-22015\n| PRION:CVE-2023-22007 3.3 https://vulners.com/prion/PRION:CVE-2023-22007 | PRION:CVE-2023-21982 3.3 https://vulners.com/prion/PRION:CVE-2023-21982 | PRION:CVE-2023-21976 3.3 https://vulners.com/prion/PRION:CVE-2023-21976\n| PRION:CVE-2023-21972 3.3 https://vulners.com/prion/PRION:CVE-2023-21972\n| PRION:CVE-2023-21950 3.3 https://vulners.com/prion/PRION:CVE-2023-21950\n| PRION:CVE-2023-21887 3.3 https://vulners.com/prion/PRION:CVE-2023-21887\n| PRION:CVE-2023-21883 3.3 https://vulners.com/prion/PRION:CVE-2023-21883\n| PRION:CVE-2023-21882 3.3 https://vulners.com/prion/PRION:CVE-2023-21882 | PRION:CVE-2023-21881 3.3 https://vulners.com/prion/PRION:CVE-2023-21881\n| PRION:CVE-2023-21879 3.3 https://vulners.com/prion/PRION:CVE-2023-21879\n| PRION:CVE-2023-21878 3.3 https://vulners.com/prion/PRION:CVE-2023-21878 | PRION:CVE-2023-21876 3.3 https://vulners.com/prion/PRION:CVE-2023-21876 | PRION:CVE-2022-39400 3.3 https://vulners.com/prion/PRION:CVE-2022-39400\n| PRION:CVE-2022-21641 3.3 https://vulners.com/prion/PRION:CVE-2022-21641\n| PRION:CVE-2022-21640 3.3 https://vulners.com/prion/PRION:CVE-2022-21640\n| PRION:CVE-2022-21638 3.3 https://vulners.com/prion/PRION:CVE-2022-21638\n| PRION:CVE-2022-21637 3.3 https://vulners.com/prion/PRION:CVE-2022-21637 | PRION:CVE-2022-21633 3.3 https://vulners.com/prion/PRION:CVE-2022-21633\n| PRION:CVE-2022-21632 3.3 https://vulners.com/prion/PRION:CVE-2022-21632\n| PRION:CVE-2022-21617 3.3 https://vulners.com/prion/PRION:CVE-2022-21617 | PRION:CVE-2022-21608 3.3 https://vulners.com/prion/PRION:CVE-2022-21608 | PRION:CVE-2022-21607 3.3 https://vulners.com/prion/PRION:CVE-2022-21607", "creation_timestamp": "2023-11-15T17:01:59.000000Z"}]}