{"vulnerability": "CVE-2023-4549", "sightings": [{"uuid": "02d47c71-137d-4099-b56f-5c1ce42f2822", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:46.000000Z"}, {"uuid": "89d1d117-a462-4e63-9339-4d47a856d87c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:46.000000Z"}, {"uuid": "09277dec-9fb2-4152-b8fa-6c937f5b4c2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:01.000000Z"}, {"uuid": "c73c4367-d859-4e5f-b528-39deaf1157e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:57.000000Z"}, {"uuid": "14555bde-d78d-4ce8-84c7-454c63d07357", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:57.000000Z"}, {"uuid": "f9944302-30de-4047-afd3-649ef11c92fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:01.000000Z"}, {"uuid": "1ae30c1e-f382-4735-9fb1-db6ac31dc07a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/vinchin_backup_recovery_cmd_inject.rb", "content": "", "creation_timestamp": "2023-12-20T18:17:22.000000Z"}, {"uuid": "ce606de6-9865-4bc4-8d29-435216be373f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/vinchin_backup_recovery_cmd_inject.rb", "content": "", "creation_timestamp": "2023-12-20T18:17:22.000000Z"}, {"uuid": "51c22afb-42da-46c9-95b5-4841766bdc10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "seen", "source": "https://t.me/arpsyndicate/2066", "content": "#ExploitObserverAlert\n\nCVE-2023-45498\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-45498. VinChin Backup", "creation_timestamp": "2023-12-22T19:41:28.000000Z"}, {"uuid": "7c640398-92f6-4e53-910b-6a6ed3c78166", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4549", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5196", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aRepository for CVE-2023-4549 vulnerability. \nURL\uff1ahttps://github.com/b0marek/CVE-2023-4549\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-09-24T12:01:23.000000Z"}, {"uuid": "db8358b4-7082-4bc4-921e-f334afd3760d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "seen", "source": "https://t.me/arpsyndicate/2065", "content": "#ExploitObserverAlert\n\nCVE-2023-45499\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-45499. VinChin Backup", "creation_timestamp": "2023-12-22T19:31:15.000000Z"}, {"uuid": "3e7cf308-105f-453c-8b4a-18b10803d9ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/3754", "content": "https://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html\ncve-2023-45498\ncve-2023-45499", "creation_timestamp": "2023-12-28T13:43:57.000000Z"}, {"uuid": "2e4f6c36-f581-43b2-8750-3bfae2e118a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4549", "type": "seen", "source": "https://t.me/arpsyndicate/1708", "content": "#ExploitObserverAlert\n\nCVE-2023-4549\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-4549. The DoLogin Security WordPress plugin before 3.7 does not properly sanitize IP addresses coming from the X-Forwarded-For header, which can be used by attackers to conduct Stored XSS attacks via WordPress' login form.\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 2.7\nNVD-ES: 2.8", "creation_timestamp": "2023-12-11T06:06:33.000000Z"}, {"uuid": "5dcc1a16-7c09-4e46-965e-19f147d14d28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/3754", "content": "https://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html\ncve-2023-45498\ncve-2023-45499", "creation_timestamp": "2023-12-28T13:43:57.000000Z"}, {"uuid": "94fa5011-8502-4537-a74a-522087f948e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9671", "content": "#exploit\n1. CVE-2023-51764:\nPostfix SMTP Smuggling\nhttps://github.com/duy-31/CVE-2023-51764\n\n2. CVE-2023-45498/CVE-2023-45499:\nVinchin Backup and Recovery Command Injection\nhttps://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html", "creation_timestamp": "2024-01-03T20:41:42.000000Z"}, {"uuid": "6bd4fca0-ddbb-45a7-bf17-fefa2e9aed67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2347", "content": "#exploit\n1. CVE-2023-51764:\nPostfix SMTP Smuggling\nhttps://github.com/duy-31/CVE-2023-51764\n\n2. CVE-2023-45498/CVE-2023-45499:\nVinchin Backup and Recovery Command Injection\nhttps://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html", "creation_timestamp": "2024-08-16T08:59:45.000000Z"}, {"uuid": "3b62a961-25b6-4ba2-9b63-f68a2c89c5b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1773", "content": "https://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html\ncve-2023-45498\ncve-2023-45499", "creation_timestamp": "2023-12-28T13:03:10.000000Z"}, {"uuid": "03b3ebbd-56f4-4729-9145-7d8d589f0d75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45498", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1773", "content": "https://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html\ncve-2023-45498\ncve-2023-45499", "creation_timestamp": "2023-12-28T13:03:10.000000Z"}, {"uuid": "7dd2c611-c93e-49a1-a4ce-84e82b737f54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9671", "content": "#exploit\n1. CVE-2023-51764:\nPostfix SMTP Smuggling\nhttps://github.com/duy-31/CVE-2023-51764\n\n2. CVE-2023-45498/CVE-2023-45499:\nVinchin Backup and Recovery Command Injection\nhttps://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html", "creation_timestamp": "2024-01-03T20:41:42.000000Z"}, {"uuid": "ec57c22a-80ba-4e9f-9c72-9ce026872aec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45499", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2347", "content": "#exploit\n1. CVE-2023-51764:\nPostfix SMTP Smuggling\nhttps://github.com/duy-31/CVE-2023-51764\n\n2. CVE-2023-45498/CVE-2023-45499:\nVinchin Backup and Recovery Command Injection\nhttps://packetstormsecurity.com/files/176289/Vinchin-Backup-And-Recovery-Command-Injection.html", "creation_timestamp": "2024-08-16T08:59:45.000000Z"}]}