{"vulnerability": "CVE-2023-4243", "sightings": [{"uuid": "90093873-d4f4-406e-b35f-e5b002559f22", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-42435", "type": "seen", "source": "https://t.me/cibsecurity/72603", "content": "\u203c CVE-2023-42435 \u203c\n\nThe affected product is vulnerable to a cross-site request forgery vulnerability, which may allow an attacker to perform actions with the permissions of a victim user.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-19T22:34:44.000000Z"}, {"uuid": "85911fc9-9b59-41b5-9248-1923d8cdd5b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-42431", "type": "seen", "source": "https://t.me/cibsecurity/73129", "content": "\u203c CVE-2023-42431 \u203c\n\nCross-site Scripting (XSS) vulnerability in BlueSpiceAvatars extension of BlueSpice allows logged in user to inject arbitrary HTML into the profile image dialog on Special:Preferences. This only applies to the genuine user context.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-30T15:32:55.000000Z"}, {"uuid": "f3671c08-3b64-47f4-a2a8-fbe81d90409a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-42436", "type": "seen", "source": "https://t.me/ctinow/170124", "content": "https://ift.tt/hQRgWI0\nCVE-2023-42436 | WESEEK GROWI up to 3.3.x cross site scripting", "creation_timestamp": "2024-01-19T10:16:35.000000Z"}, {"uuid": "1f7553ef-4147-4832-b441-101d4aa2cf34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-42436", "type": "seen", "source": "https://t.me/ctinow/159278", "content": "https://ift.tt/HLg0APe\nCVE-2023-42436", "creation_timestamp": "2023-12-26T09:26:44.000000Z"}]}