{"vulnerability": "CVE-2023-3464", "sightings": [{"uuid": "f2f69f9b-5e25-42eb-b2c1-1c4a963bfb84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3464", "type": "seen", "source": "https://t.me/cibsecurity/65770", "content": "\u203c CVE-2023-3464 \u203c\n\nA vulnerability was found in SimplePHPscripts Classified Ads Script 1.8. It has been classified as problematic. Affected is an unknown function of the file /preview.php of the component URL Parameter Handler. The manipulation of the argument p leads to cross site scripting. It is possible to launch the attack remotely. It is recommended to upgrade the affected component. VDB-232710 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-30T01:59:33.000000Z"}, {"uuid": "cef39273-cc5b-4270-824f-cdf74f3f0b55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34642", "type": "seen", "source": "https://t.me/cibsecurity/65329", "content": "\u203c CVE-2023-34642 \u203c\n\nKioWare for Windows through v8.33 was discovered to contain an incomplete blacklist filter for blocked dialog boxes on Windows 10. This issue can allow attackers to open a file dialog box via the function showDirectoryPicker() which can then be used to open an unprivileged command prompt.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-19T12:30:23.000000Z"}, {"uuid": "4c2d4b2d-5b31-4174-8325-1e2f907f7268", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34645", "type": "seen", "source": "https://t.me/cibsecurity/65312", "content": "\u203c CVE-2023-34645 \u203c\n\njfinal CMS 5.1.0 has an arbitrary file read vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-16T22:22:54.000000Z"}, {"uuid": "1a45e894-fdd6-48ae-96b5-a2c65bbc7692", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34644", "type": "seen", "source": "https://t.me/cibsecurity/67453", "content": "\u203c CVE-2023-34644 \u203c\n\nRemote code execution vulnerability in Ruijie Networks Product: RG-EW series home routers EW_3.0(1)B11P204, RG-NBS and RG-S1930 series switches SWITCH_3.0(1)B11P218, RG-EG series business VPN routers EG_3.0(1)B11P216, EAP and RAP series wireless access points AP_3.0(1)B11P218, NBC series wireless controllers AC_3.0(1)B11P86 allows remote attackers to gain escalated privileges via crafted POST request to /cgi-bin/luci/api/auth.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-31T18:37:43.000000Z"}, {"uuid": "facbdcd7-91d9-4f1b-b00f-b30ebd01f603", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-34647", "type": "seen", "source": "https://t.me/cibsecurity/65706", "content": "\u203c CVE-2023-34647 \u203c\n\nPHPgurukl Hostel Management System v.1.0 is vulnerable to Cross Site Scripting (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T02:13:24.000000Z"}]}