{"vulnerability": "CVE-2023-4884", "sightings": [{"uuid": "6744edfb-88dc-478e-b374-bcf1d81af3fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48842", "type": "seen", "source": "https://t.me/ctinow/157945", "content": "https://ift.tt/C1S2WB6\nCVE-2023-48842 | D-Link Go-RT-AC750 revA_v101b03 hedwig.cgi service command injection", "creation_timestamp": "2023-12-21T20:47:42.000000Z"}, {"uuid": "deaca467-3f01-46f1-9497-565afa006e32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48849", "type": "seen", "source": "https://t.me/arpsyndicate/1527", "content": "#ExploitObserverAlert\n\nCVE-2023-48849\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-48849.\n\nFIRST-EPSS: 0.000420000", "creation_timestamp": "2023-12-06T23:58:28.000000Z"}, {"uuid": "e90687a6-034e-47e9-a541-ff7c6f019bf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4884", "type": "seen", "source": "https://t.me/cibsecurity/71509", "content": "\u203c CVE-2023-4884 \u203c\n\nAn attacker could send an HTTP request to an Open5GS endpoint and retrieve the information stored on the device due to the lack of Authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-03T18:46:18.000000Z"}, {"uuid": "f841f438-93d0-4b27-8fd6-0d3b4f89bf7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48849", "type": "seen", "source": "https://t.me/ctinow/160776", "content": "https://ift.tt/lTUsJif\nCVE-2023-48849 | Ruijie EG up to EG_3.0(1)B11P216 Filter Remote Code Execution", "creation_timestamp": "2023-12-30T08:01:48.000000Z"}, {"uuid": "da3c8acc-98ec-4e02-ae62-8bf86e6070cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48848", "type": "seen", "source": "https://t.me/ctinow/156791", "content": "https://ift.tt/V3l6NrH\nCVE-2023-48848 | ureport 2.2.9 Path path traversal", "creation_timestamp": "2023-12-20T08:01:58.000000Z"}, {"uuid": "9a040fc0-7239-4c2b-974e-d5eb6f98ac8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/3640", "content": "https://github.com/creacitysec/CVE-2023-48842/blob/main/exploit.py\n#github", "creation_timestamp": "2023-12-04T11:17:27.000000Z"}, {"uuid": "e7406981-d75d-4226-beec-5b5b3ac4d83a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48841", "type": "seen", "source": "https://t.me/ctinow/160890", "content": "https://ift.tt/7BeLEd8\nCVE-2023-48841 | Appointment Scheduler 3.0 Language Label Export csv injection (ID 176058)", "creation_timestamp": "2023-12-30T15:02:00.000000Z"}, {"uuid": "fd837a86-f0bc-42bc-a318-2b11912b5cb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48840", "type": "seen", "source": "https://t.me/ctinow/160889", "content": "https://ift.tt/9XngNO1\nCVE-2023-48840 | Appointment Scheduler 3.0 pjActionAjaxSend resource consumption (ID 176056)", "creation_timestamp": "2023-12-30T15:01:59.000000Z"}, {"uuid": "31d1b8d0-6141-4833-9cc2-c87c62ec9f4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1651", "content": "https://github.com/creacitysec/CVE-2023-48842/blob/main/exploit.py\n#github", "creation_timestamp": "2023-12-04T07:37:55.000000Z"}, {"uuid": "1f0fe497-df84-4763-a860-8e1bf188908a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9517", "content": "#exploit\n1. CVE-2023-48842:\nD-Link Go-RT-AC750 - command injection via the service parameter at hedwig.cgi\nhttps://github.com/creacitysec/CVE-2023-48842\n\n2. Exploit tool that can control camera movement even without a username/psw\nhttps://github.com/0xbitx/DEDSEC_PTZ_EXPLOIT", "creation_timestamp": "2024-01-10T13:07:03.000000Z"}, {"uuid": "292c5ff9-3bba-4fa6-8b28-4fed9610bcd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2185", "content": "#exploit\n1. CVE-2023-48842:\nD-Link Go-RT-AC750 - command injection via the service parameter at hedwig.cgi\nhttps://github.com/creacitysec/CVE-2023-48842\n\n2. Exploit tool that can control camera movement even without a username/psw\nhttps://github.com/0xbitx/DEDSEC_PTZ_EXPLOIT", "creation_timestamp": "2024-08-16T08:55:31.000000Z"}]}