{"vulnerability": "CVE-2023-4626", "sightings": [{"uuid": "de9537a9-9690-47f6-bf9a-53b7ae75a822", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46261", "type": "seen", "source": "https://t.me/ctinow/167745", "content": "https://ift.tt/UJF1GtH\nCVE-2023-46261 | Ivanti Avalanche 6.4.1 Mobile Device Server memory corruption", "creation_timestamp": "2024-01-13T08:46:19.000000Z"}, {"uuid": "010f19f9-d974-41d6-8034-dc6a890e07c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46267", "type": "seen", "source": "https://t.me/cibsecurity/72636", "content": "\u203c CVE-2023-46267 \u203c\n\nRoundcube before 1.4.15, 1.5.x before 1.5.5, and 1.6.x before 1.6.4 allows XSS via a text/html e-mail message containing an SVG image with a USE element. This is related to wash_uri in rcube_washtml.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-20T07:34:53.000000Z"}, {"uuid": "3ba227e1-3e96-4468-9f32-f525c5b7777e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4626", "type": "seen", "source": "https://t.me/ctinow/205545", "content": "https://ift.tt/Gz4UPYy\nCVE-2023-4626", "creation_timestamp": "2024-03-12T11:36:25.000000Z"}, {"uuid": "ef4e4a4d-655b-4a6e-b4ac-9d42e92b31bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4626", "type": "seen", "source": "https://t.me/ctinow/205538", "content": "https://ift.tt/Gz4UPYy\nCVE-2023-4626", "creation_timestamp": "2024-03-12T11:31:31.000000Z"}, {"uuid": "c2cb3ce4-36dc-4fa6-89df-7ecb88f782aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46260", "type": "seen", "source": "https://t.me/ctinow/167744", "content": "https://ift.tt/0dZ9AMY\nCVE-2023-46260 | Ivanti Avalanche 6.4.1 Mobile Device Server memory corruption", "creation_timestamp": "2024-01-13T08:46:18.000000Z"}, {"uuid": "d138fb15-aea1-41fa-b5e0-9a9dac247c05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46263", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10130", "content": "#exploit\n1. CVE-2024-2044:\npgAdmin <=8.3 - RCE\nhttps://www.shielder.com/advisories/pgadmin-path-traversal_leads_to_unsafe_deserialization_and_rce\n\n2. CVE-2023-46263:\nIvanti Avalanche Arbitrary File Upload\nhttps://www.zerodayinitiative.com/blog/2024/2/5/cve-2023-46263-ivanti-avalanche-arbitrary-file-upload-vulnerability", "creation_timestamp": "2024-03-14T03:09:40.000000Z"}, {"uuid": "cde61d60-d84a-4cb3-bebc-674615121270", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46266", "type": "seen", "source": "https://t.me/ctinow/167750", "content": "https://ift.tt/mdGNTp1\nCVE-2023-46266 | Ivanti Avalanche 6.4.1 Request denial of service", "creation_timestamp": "2024-01-13T08:46:24.000000Z"}, {"uuid": "f4b58299-c2a3-484c-9f34-1364a65d74ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46264", "type": "seen", "source": "https://t.me/ctinow/167746", "content": "https://ift.tt/vqfRdT8\nCVE-2023-46264 | Ivanti Avalanche 6.4.1 unrestricted upload", "creation_timestamp": "2024-01-13T08:46:20.000000Z"}, {"uuid": "4305ba01-57c9-49f8-83b5-b7b62b03934f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46262", "type": "seen", "source": "https://t.me/ctinow/167747", "content": "https://ift.tt/iQTMKSk\nCVE-2023-46262 | Ivanti Avalanche 6.4.1 server-side request forgery", "creation_timestamp": "2024-01-13T08:46:21.000000Z"}, {"uuid": "0845eb47-1f21-4f9b-a2f3-1381e007ebe6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46265", "type": "seen", "source": "https://t.me/ctinow/167748", "content": "https://ift.tt/43S9WNn\nCVE-2023-46265 | Ivanti Avalanche 6.4.1 server-side request forgery", "creation_timestamp": "2024-01-13T08:46:22.000000Z"}]}