{"vulnerability": "CVE-2023-3884", "sightings": [{"uuid": "53c278d3-7fda-4d28-9ac0-1478d5cc6d2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38848", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lxomdlmkges2", "content": "", "creation_timestamp": "2025-08-31T07:55:23.982273Z"}, {"uuid": "f5061ddb-d19a-4713-a8b5-4a8c1dc80bfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38844", "type": "seen", "source": "https://t.me/arpsyndicate/4050", "content": "#ExploitObserverAlert\n\nCVE-2023-38844\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-38844. SQL injection vulnerability in PMB v.7.4.7 and earlier allows a remote attacker to execute arbitrary code via the thesaurus parameter in export_skos.php.", "creation_timestamp": "2024-02-22T21:09:54.000000Z"}, {"uuid": "753e1565-6dca-4598-9e67-c50b3572ce09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38845", "type": "seen", "source": "https://t.me/cibsecurity/72928", "content": "\u203c CVE-2023-38845 \u203c\n\nAn issue in Anglaise Company Anglaise.Company v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-26T02:50:28.000000Z"}, {"uuid": "3bd45d01-fc64-4973-bb7f-1383e233bd3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38847", "type": "seen", "source": "https://t.me/cibsecurity/72925", "content": "\u203c CVE-2023-38847 \u203c\n\nAn issue in CHRISTINA JAPAN Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-26T02:50:25.000000Z"}, {"uuid": "8da4a50e-3e2a-4cb6-b255-c4b0b6d109fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38844", "type": "seen", "source": "https://t.me/ctinow/190142", "content": "https://ift.tt/S6zFmLA\nCVE-2023-38844", "creation_timestamp": "2024-02-21T22:21:46.000000Z"}, {"uuid": "617d1777-ae99-4d02-a456-77c165261cbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38849", "type": "seen", "source": "https://t.me/cibsecurity/72924", "content": "\u203c CVE-2023-38849 \u203c\n\nAn issue in tire-sales Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-26T02:50:24.000000Z"}, {"uuid": "bb581d80-6960-47c7-a348-8a309b158170", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38844", "type": "seen", "source": "https://t.me/ctinow/190153", "content": "https://ift.tt/S6zFmLA\nCVE-2023-38844", "creation_timestamp": "2024-02-21T22:26:43.000000Z"}, {"uuid": "ae364813-ae99-48c3-b599-c902c92ffe66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38843", "type": "seen", "source": "https://t.me/cibsecurity/68779", "content": "\u203c CVE-2023-38843 \u203c\n\nAn issue in Atlos v.1.0 allows an authenticated attacker to execute arbitrary code via a crafted payload into the description field in the incident function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-17T22:38:08.000000Z"}, {"uuid": "a7b96754-d1dd-4b31-87e3-e41205044c34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38840", "type": "seen", "source": "https://t.me/cibsecurity/68551", "content": "\u203c CVE-2023-38840 \u203c\n\nAn issue in Bitwarden Bitwarden Desktop v.2023.5.1 allows a local attacker to obtain sensitive information via the the bitwarden.exe\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-15T20:30:48.000000Z"}, {"uuid": "e4191a50-ae35-46be-92a7-a984ee46255c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3884", "type": "seen", "source": "https://t.me/cibsecurity/67217", "content": "\u203c CVE-2023-3884 \u203c\n\nA vulnerability has been found in Campcodes Beauty Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/edit_product.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-235246 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-25T12:28:09.000000Z"}]}