{"vulnerability": "CVE-2023-41642", "sightings": [{"uuid": "47b3f2be-a1fd-4641-8ca2-170508e75e2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41642", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-02-04)", "content": "", "creation_timestamp": "2025-02-04T00:00:00.000000Z"}, {"uuid": "7d460fc5-7ac8-4726-b9bb-9c543d06fbf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41642", "type": "published-proof-of-concept", "source": "https://t.me/codeb0ss/1231", "content": "", "creation_timestamp": "2023-10-11T03:19:16.000000Z"}, {"uuid": "5b478f10-81e8-446d-bee0-8b59e41829c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41642", "type": "published-proof-of-concept", "source": "Telegram/7a7fweCj36f2cd-3XHNsj84vMqrUUzQeix11cFhtTPwJ", "content": "", "creation_timestamp": "2023-10-22T22:26:28.000000Z"}, {"uuid": "7ede6bf3-24ed-421b-919f-6bc1e7f5eda7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41642", "type": "published-proof-of-concept", "source": "Telegram/FoyzUlH2zJYEc1ozrsU9x54Q07fOMMvF_OUScxIYFVhbMw", "content": "", "creation_timestamp": "2023-10-24T19:46:01.000000Z"}, {"uuid": "b3cb5bdb-f3d0-4567-9084-171a6c555507", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-41642", "type": "seen", "source": "https://t.me/cibsecurity/69546", "content": "\u203c CVE-2023-41642 \u203c\n\nMultiple reflected cross-site scripting (XSS) vulnerabilities in the ErroreNonGestito.aspx component of GruppoSCAI RealGimm 1.1.37p38 allow attackers to execute arbitrary Javascript in the context of a victim user's browser via a crafted payload injected into the VIEWSTATE parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-31T18:13:03.000000Z"}]}