{"vulnerability": "CVE-2023-4620", "sightings": [{"uuid": "687e4015-e483-4c46-ab00-3760da01b89e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46203", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2l3s7ik2a", "content": "", "creation_timestamp": "2025-01-02T12:16:35.565258Z"}, {"uuid": "ced78ee8-7bfc-4c83-b2c5-402fada7f0e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46206", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3ler2l62agi2c", "content": "", "creation_timestamp": "2025-01-02T12:16:37.925184Z"}, {"uuid": "9e51e51c-24fd-482c-a15f-8b2948a7da97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46206", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113759032889262644", "content": "", "creation_timestamp": "2025-01-02T13:38:07.623307Z"}, {"uuid": "bb4c7bdc-791c-4027-88ca-cc8460f2c73b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46203", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113759032875086909", "content": "", "creation_timestamp": "2025-01-02T13:38:08.197824Z"}, {"uuid": "b18da463-f229-46ff-afd9-0bff8207d9c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4620", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14555", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-4620\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Booking Calendar WordPress plugin before 9.7.3.1 does not sanitize and escape some of its booking from data, allowing unauthenticated users to perform Stored Cross-Site Scripting attacks against administrators\n\ud83d\udccf Published: 2023-10-16T08:32:45.562Z\n\ud83d\udccf Modified: 2025-05-02T17:39:12.953Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/084e9494-2f9e-4420-9bf7-78a1a41433d7", "creation_timestamp": "2025-05-02T18:19:52.000000Z"}, {"uuid": "23811ff5-34e1-4bcc-95ca-24905c2b84b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46208", "type": "seen", "source": "https://t.me/cibsecurity/73088", "content": "\u203c CVE-2023-46208 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in StylemixThemes Motors \u00e2\u20ac\u201c Car Dealer, Classifieds &amp; Listing plugin &lt;=\u00c2\u00a01.4.6 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-28T00:17:28.000000Z"}]}