{"vulnerability": "CVE-2023-3024", "sightings": [{"uuid": "ca02858c-9b7e-4b08-908e-9738dee5b45f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30245", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2798", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-30245\n\ud83d\udd39 Description: SQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the crit_id parameter of the edit_criteria.php file.\n\ud83d\udccf Published: 2023-05-15T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-23T18:54:38.421Z\n\ud83d\udd17 References:\n1. https://www.github.com\n2. https://github.com/qingning988/cve_report/blob/main/judging-management-system/SQLi-1.md", "creation_timestamp": "2025-01-23T19:03:29.000000Z"}, {"uuid": "09983a42-3343-4639-a397-91ecacb5962a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30247", "type": "seen", "source": "https://t.me/cibsecurity/64052", "content": "\u203c CVE-2023-30247 \u203c\n\nFile Upload vulnerability found in Oretnom23 Storage Unit Rental Management System v.1.0 allows a remote attacker to execute arbitrary code via the update_settings parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T22:27:05.000000Z"}, {"uuid": "1cfdd520-7442-4330-b2cf-4b269091d61c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30247", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3012", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-30247\n\ud83d\udd39 Description: File Upload vulnerability found in Oretnom23 Storage Unit Rental Management System v.1.0 allows a remote attacker to execute arbitrary code via the update_settings parameter.\n\ud83d\udccf Published: 2023-05-12T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-24T19:37:49.979Z\n\ud83d\udd17 References:\n1. https://www.github.com\n2. https://github.com/qingning988/cve_report/blob/main/storage-unit-rental-management-system/RCE-1.md", "creation_timestamp": "2025-01-24T20:04:58.000000Z"}, {"uuid": "6f47edf9-b18d-41c1-92a2-cadb066211b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3024", "type": "seen", "source": "https://t.me/cibsecurity/71320", "content": "\u203c CVE-2023-3024 \u203c\n\nForcing the Bluetooth LE stack to segment 'prepare write response' packets can lead to an out-of-bounds memory access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T20:37:57.000000Z"}, {"uuid": "f790bf9b-acea-4799-b98c-afad56f81a66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30246", "type": "seen", "source": "https://t.me/cibsecurity/64000", "content": "\u203c CVE-2023-30246 \u203c\n\nSQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the contestant_id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T14:26:56.000000Z"}, {"uuid": "4fca6f42-a1fe-4e6e-a405-24af6f152057", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30243", "type": "seen", "source": "https://t.me/cibsecurity/63374", "content": "\u203c CVE-2023-30243 \u203c\n\nBeijing Netcon NS-ASG Application Security Gateway v6.3 is vulnerable to SQL Injection via TunnelId that allows access to sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-05T18:25:12.000000Z"}, {"uuid": "a83b5042-efb0-48fc-9364-c113534f8280", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-30242", "type": "seen", "source": "https://t.me/cibsecurity/63363", "content": "\u203c CVE-2023-30242 \u203c\n\nNS-ASG v6.3 was discovered to contain a SQL injection vulnerability via the component /admin/add_ikev2.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-05T16:24:56.000000Z"}]}