{"vulnerability": "CVE-2023-26140", "sightings": [{"uuid": "61fa1fec-17e2-4998-b7d2-fbd0fe3bbd0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26140", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10243", "content": "#Threat_Research\n1. Back to the (Clip)board with MS Whiteboard and Meta Excalidraw (CVE-2023-26140)\nhttps://spaceraccoon.dev/clipboard-microsoft-whiteboard-excalidraw-meta\n2. Google Issue Tracker leak\nhttps://ndevtk.github.io/writeups/2024/02/03/buganizer", "creation_timestamp": "2024-03-30T19:48:50.000000Z"}, {"uuid": "a193a026-6c2f-4682-a3bd-cdabd0fca718", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-26140", "type": "seen", "source": "https://t.me/cibsecurity/68617", "content": "\u203c CVE-2023-26140 \u203c\n\nVersions of the package @excalidraw/excalidraw from 0.0.0 are vulnerable to Cross-site Scripting (XSS) via embedded links in whiteboard objects due to improper input sanitization.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-16T12:46:37.000000Z"}]}