{"vulnerability": "CVE-2023-4398", "sightings": [{"uuid": "3ca15b8e-52ac-48f3-9d0e-3dddd72caa5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43983", "type": "seen", "source": "https://t.me/cibsecurity/71697", "content": "\u203c CVE-2023-43983 \u203c\n\nPresto Changeo attributegrid up to 2.0.3 was discovered to contain a SQL injection vulnerability via the component disable_json.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T00:13:00.000000Z"}, {"uuid": "0329b58c-60b0-41e2-8115-3b3dc4c70125", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43985", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18506", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-43985\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SunnyToo stblogsearch up to v1.0.0 was discovered to contain a SQL injection vulnerability via the StBlogSearchClass::prepareSearch component.\n\ud83d\udccf Published: 2024-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-16T19:10:07.285Z\n\ud83d\udd17 References:\n1. https://www.sunnytoo.com/product/panda-creative-responsive-prestashop-theme\n2. https://security.friendsofpresta.org/modules/2024/01/18/stblogsearch.html", "creation_timestamp": "2025-06-16T19:40:47.000000Z"}, {"uuid": "ca419d49-6a1b-4e2c-99aa-e693169d75c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43988", "type": "seen", "source": "https://t.me/arpsyndicate/3062", "content": "#ExploitObserverAlert\n\nCVE-2023-43988\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-43988. An issue in nature fitness saijo mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.", "creation_timestamp": "2024-01-26T20:33:22.000000Z"}, {"uuid": "071945ad-a518-4c42-a415-ed9eb77e89b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43986", "type": "seen", "source": "https://t.me/cibsecurity/72601", "content": "\u203c CVE-2023-43986 \u203c\n\nDM Concept configurator before v4.9.4 was discovered to contain a SQL injection vulnerability via the component ConfiguratorAttachment::getAttachmentByToken.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-19T22:34:41.000000Z"}, {"uuid": "b274658e-16e8-47c2-953b-6b16333d47a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43989", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18488", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-43989\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in mokumoku chohu mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.\n\ud83d\udccf Published: 2024-01-24T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-16T16:55:19.335Z\n\ud83d\udd17 References:\n1. https://github.com/syz913/CVE-reports/blob/main/CVE-2023-43989.md", "creation_timestamp": "2025-06-16T17:38:03.000000Z"}, {"uuid": "b06802e3-60f0-48db-8e9d-ad46ea6015c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43989", "type": "seen", "source": "https://t.me/arpsyndicate/3020", "content": "#ExploitObserverAlert\n\nCVE-2023-43989\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-43989. An issue in mokumoku chohu mini-app on Line v13.6.1 allows attackers to send crafted malicious notifications via leakage of the channel access token.", "creation_timestamp": "2024-01-26T17:53:41.000000Z"}, {"uuid": "24b30572-93b1-48cd-b282-5010fccfdd01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43981", "type": "seen", "source": "https://t.me/cibsecurity/71695", "content": "\u203c CVE-2023-43981 \u203c\n\nPresto Changeo testsitecreator up to 1.1.1 was discovered to contain a deserialization vulnerability via the component delete_excluded_folder.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-06T00:12:58.000000Z"}, {"uuid": "d2d70137-115f-48f0-a409-d1c36ab4b35f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43985", "type": "seen", "source": "https://t.me/ctinow/185398", "content": "https://ift.tt/ySF8J1N\nCVE-2023-43985 | SunnyToo stblogsearch up to 1.0.0 prepareSearch sql injection", "creation_timestamp": "2024-02-15T10:46:26.000000Z"}, {"uuid": "5ba0fa99-4ad4-4939-936f-ef4478972939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43980", "type": "seen", "source": "https://t.me/cibsecurity/71443", "content": "\u203c CVE-2023-43980 \u203c\n\nPresto Changeo testsitecreator up to v1.1.1 was discovered to contain a SQL injection vulnerability via the component disable_json.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-03T02:47:23.000000Z"}, {"uuid": "68e95349-6e2d-4fea-bc4c-6ef360c27893", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43989", "type": "seen", "source": "https://t.me/ctinow/187028", "content": "https://ift.tt/h6dtXaV\nCVE-2023-43989 | mokumoku chohu mini-app on Line 13.6.1 Channel Access Token information disclosure", "creation_timestamp": "2024-02-17T19:46:57.000000Z"}, {"uuid": "f7331de7-82dc-4904-b33e-bc895bb82f67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43988", "type": "seen", "source": "https://t.me/ctinow/187027", "content": "https://ift.tt/Aq8VpS1\nCVE-2023-43988 | nature fitness saijo mini-app on Line 13.6.1 Channel Access Token information disclosure", "creation_timestamp": "2024-02-17T19:46:56.000000Z"}, {"uuid": "2f9f9b40-270f-4449-996e-7a5f382eeac0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43988", "type": "seen", "source": "https://t.me/ctinow/174617", "content": "https://ift.tt/osvUTf5\nCVE-2023-43988 Exploit", "creation_timestamp": "2024-01-27T04:16:20.000000Z"}, {"uuid": "a51b0e4c-84e4-4b3f-a34b-8250f0cc2b58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43989", "type": "seen", "source": "https://t.me/ctinow/174616", "content": "https://ift.tt/9z7NDrE\nCVE-2023-43989 Exploit", "creation_timestamp": "2024-01-27T04:16:19.000000Z"}, {"uuid": "2250d32e-436d-4c70-aebd-c863982d14f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43989", "type": "seen", "source": "https://t.me/ctinow/172673", "content": "https://ift.tt/ZfVEQpO\nCVE-2023-43989", "creation_timestamp": "2024-01-24T11:26:10.000000Z"}, {"uuid": "2a25ac6b-7db6-413d-8817-989f4321d448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43988", "type": "seen", "source": "https://t.me/ctinow/172672", "content": "https://ift.tt/TZlYzB4\nCVE-2023-43988", "creation_timestamp": "2024-01-24T11:26:08.000000Z"}]}