{"vulnerability": "CVE-2023-6000", "sightings": [{"uuid": "1695d5a3-2958-4460-b795-45c36a1c5930", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6000", "type": "exploited", "source": "https://t.me/pyt_ar/229", "content": "\u200f\ud83d\udd12 \u062a\u0645 \u062a\u0648\u062b\u064a\u0642 \u0647\u062c\u0648\u0645 \u0625\u0644\u0643\u062a\u0631\u0648\u0646\u064a \u062e\u0637\u064a\u0631 \u0639\u0644\u0649 \u0622\u0644\u0627\u0641 \u0645\u0648\u0627\u0642\u0639 \u0627\u0644\u0648\u0648\u0631\u062f\u0628\u0631\u064a\u0633 (WordPress)\u060c \u0627\u0644\u062a\u064a \u062a\u0633\u062a\u062e\u062f\u0645 \u0646\u0633\u062e \u063a\u064a\u0631 \u0622\u0645\u0646\u0629 \u0645\u0646 \u0645\u062c\u0645\u0648\u0639\u0629 \u0645\u0646 \u0627\u0644\u0625\u0636\u0627\u0641\u0627\u062a \u0633\u0646\u0630\u0643\u0631\u0647\u0627 \u0641\u064a \u0622\u062e\u0631 \u0627\u0644\u0645\u0642\u0627\u0644\n\n\ud83c\udfaf \u0627\u0644\u0647\u062c\u0648\u0645\u060c \u0627\u0644\u0630\u064a \u0648\u062b\u0642\u062a\u0647 \u0634\u0631\u0643\u0629 \"Doctor Web\" \u0641\u064a \u064a\u0646\u0627\u064a\u0631 2023\u060c \u064a\u0633\u062a\u063a\u0644 \u062b\u063a\u0631\u0627\u062a \u0623\u0645\u0646\u064a\u0629 \u0641\u064a \u0625\u0636\u0627\u0641\u0627\u062a \u0627\u0644\u0648\u0648\u0631\u062f\u0628\u0631\u064a\u0633 \u0644\u062d\u0642\u0646 \"\u0628\u0627\u0643\u062f\u0648\u0631\" (backdoor) \u064a\u0639\u064a\u062f \u062a\u0648\u062c\u064a\u0647 \u0632\u0648\u0627\u0631 \u0627\u0644\u0645\u0648\u0627\u0642\u0639 \u0627\u0644\u0645\u0635\u0627\u0628\u0629 \u0625\u0644\u0649 \u0635\u0641\u062d\u0627\u062a \u062f\u0639\u0645 \u0641\u0646\u064a \u0648\u0647\u0645\u064a\u0629\u060c \u0641\u0648\u0632 \u0628\u0627\u0644\u064a\u0627\u0646\u0635\u064a\u0628 \u0627\u0644\u0645\u0632\u064a\u0641\u060c \u0648\u062d\u064a\u0644 \u0627\u0644\u0625\u0634\u0639\u0627\u0631\u0627\u062a.\n\n\ud83d\udcca \u0628\u062d\u0633\u0628 \u062a\u062d\u0642\u064a\u0642\u0627\u062a \u0634\u0631\u0643\u0629 \"Sucuri\"\u060c \u062a\u0628\u064a\u0646 \u0623\u0646 \u0627\u0644\u062d\u0645\u0644\u0629 \u0645\u0633\u062a\u0645\u0631\u0629 \u0645\u0646\u0630 \u0639\u0627\u0645 2017 \u0648\u0623\u0635\u0627\u0628\u062a \u0623\u0643\u062b\u0631 \u0645\u0646 \u0645\u0644\u064a\u0648\u0646 \u0645\u0648\u0642\u0639 \u062d\u062a\u0649 \u0627\u0644\u0622\u0646.\n\n\ud83d\udd0d\u0640 \"Sucuri\"\u060c \u0627\u0644\u062a\u064a \u062a\u0645\u062a\u0644\u0643\u0647\u0627 \u0634\u0631\u0643\u0629 \"GoDaddy\"\u060c \u0643\u0634\u0641\u062a \u0639\u0646 \u0646\u0634\u0627\u0637 \"Balada Injector\" \u0627\u0644\u0623\u062e\u064a\u0631 \u0641\u064a 13 \u062f\u064a\u0633\u0645\u0628\u0631 2023\u060c \u062d\u064a\u062b \u062a\u0645 \u062a\u062d\u062f\u064a\u062f \u0627\u0644\u062d\u0642\u0646 \u0641\u064a \u0623\u0643\u062b\u0631 \u0645\u0646 7,100 \u0645\u0648\u0642\u0639.\n\n\ud83d\udea8 \u0639\u0644\u0649 \u0633\u0628\u064a\u0644 \u0627\u0644\u0645\u062b\u0627\u0644 \u062a\u0633\u062a\u063a\u0644 \u0625\u062d\u062f\u0649 \u0627\u0644\u0647\u062c\u0645\u0627\u062a \u062b\u063a\u0631\u0629 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0625\u0636\u0627\u0641\u0629\"Popup Builder\" (CVE-2023-6000\u060c \u062f\u0631\u062c\u0629 CVSS: 8.8) - \u0644\u062f\u064a\u0647\u0627 \u0623\u0643\u062b\u0631 \u0645\u0646 200,000 \u062a\u062b\u0628\u064a\u062a \u0646\u0634\u0637 - \u062a\u0645 \u0627\u0644\u0643\u0634\u0641 \u0639\u0646\u0647\u0627 \u0639\u0644\u0646\u064b\u0627 \u0628\u0648\u0627\u0633\u0637\u0629 \"WPScan\" \u0642\u0628\u0644 \u064a\u0648\u0645 \u0648\u0627\u062d\u062f. \u062a\u0645\u062a \u0645\u0639\u0627\u0644\u062c\u0629 \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u0641\u064a \u0627\u0644\u0625\u0635\u062f\u0627\u0631 4.2.3.\n\n\ud83d\udccc \u064a\u0642\u0648\u0644 \u0645\u0627\u0631\u0643 \u0645\u0648\u0646\u062a\u0628\u0627\u0633\u060c \u0627\u0644\u0628\u0627\u062d\u062b \u0641\u064a \"WPScan\": \"\u0639\u0646\u062f \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0628\u0646\u062c\u0627\u062d\u060c \u0642\u062f \u064a\u062a\u0645\u0643\u0646 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0645\u0646 \u062a\u0646\u0641\u064a\u0630 \u0623\u064a \u0639\u0645\u0644 \u064a\u0633\u0645\u062d \u0628\u0647 \u0644\u0644\u0645\u062f\u064a\u0631 \u0627\u0644\u0645\u0633\u062c\u0644 \u0641\u064a \u0627\u0644\u0645\u0648\u0642\u0639 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641\u060c \u0628\u0645\u0627 \u0641\u064a \u0630\u0644\u0643 \u062a\u062b\u0628\u064a\u062a \u0625\u0636\u0627\u0641\u0627\u062a \u0639\u0634\u0648\u0627\u0626\u064a\u0629\u060c \u0648\u0625\u0646\u0634\u0627\u0621 \u0645\u0633\u062a\u062e\u062f\u0645\u064a\u0646 \u062c\u062f\u062f \u0628\u0635\u0644\u0627\u062d\u064a\u0627\u062a \u0627\u0644\u0645\u062f\u064a\u0631.\"\n\n\ud83c\udfa9 \u0627\u0644\u0647\u062f\u0641 \u0627\u0644\u0646\u0647\u0627\u0626\u064a \u0645\u0646 \u0627\u0644\u062d\u0645\u0644\u0629 \u0647\u0648 \u0625\u062f\u0631\u0627\u062c \u0645\u0644\u0641 JavaScript \u0636\u0627\u0631 \u0645\u0633\u062a\u0636\u0627\u0641 \u0639\u0644\u0649 \u0627\u0644\u0645\u0648\u0642\u0639 \u0627\u0644\u0636\u062d\u064a\u0629 \u0644\u0644\u0633\u064a\u0637\u0631\u0629 \u0639\u0644\u0649 \u0627\u0644\u0645\u0648\u0642\u0639 \u0648\u062a\u062d\u0645\u064a\u0644 JavaScript \u0625\u0636\u0627\u0641\u064a \u0644\u062a\u0633\u0647\u064a\u0644 \u0625\u0639\u0627\u062f\u0629 \u0627\u0644\u062a\u0648\u062c\u064a\u0647 \u0627\u0644\u0636\u0627\u0631.\n\n\ud83d\udd75\ufe0f\u200d\u2642\ufe0f \u064a\u064f\u0639\u0631\u0641 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0648\u0631\u0627\u0621 \"Balada Injector\" \u0628\u0625\u0642\u0627\u0645\u0629 \u0633\u064a\u0637\u0631\u0629 \u062f\u0627\u0626\u0645\u0629 \u0639\u0644\u0649 \u0627\u0644\u0645\u0648\u0627\u0642\u0639 \u0627\u0644\u0645\u062e\u062a\u0631\u0642\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u062a\u062d\u0645\u064a\u0644 \u0628\u0627\u0643\u062f\u0648\u0631\u0627\u062a\u060c \u062a\u062b\u0628\u064a\u062a \u0625\u0636\u0627\u0641\u0627\u062a \u0636\u0627\u0631\u0629\u060c \u0648\u0625\u0646\u0634\u0627\u0621 \u0645\u062f\u0631\u0627\u0621 \u0645\u062f\u0648\u0646\u0627\u062a \u0648\u0647\u0645\u064a\u064a\u0646.", "creation_timestamp": "2024-01-16T07:07:36.000000Z"}, {"uuid": "1b3ace84-9810-44ed-90bd-eb4aeb3e3a2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6000", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lyy7ruaufi26", "content": "", "creation_timestamp": "2025-09-16T21:02:30.633294Z"}, {"uuid": "3c5cf742-7b28-42ae-b9aa-cf0c0f3fbea8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6000", "type": "seen", "source": "https://t.me/cibsecurity/74087", "content": "\u203c\ufe0fCVE-2023-6000\u203c\ufe0f\n\nThe Popup Builder WordPress plugin before 4.2.3 does not prevent simple visitors from updating existing popups, and injecting raw JavaScript in them, which could lead to Stored XSS attacks.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-02T01:30:50.000000Z"}, {"uuid": "6d6b99ce-1b7c-40df-b760-6611a5faf9f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6000", "type": "seen", "source": "https://t.me/ctinow/168003", "content": "https://ift.tt/YZSrQoj\nCVE-2023-6000 | Popup Builder Plugin up to 4.2.2 on WordPress cross site scripting", "creation_timestamp": "2024-01-14T11:41:42.000000Z"}, {"uuid": "933e322b-7088-4039-989c-428fef83db7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6000", "type": "seen", "source": "https://t.me/ctinow/161360", "content": "https://ift.tt/VcjCvlz\nCVE-2023-6000", "creation_timestamp": "2024-01-01T16:26:19.000000Z"}, {"uuid": "c162cb81-f39c-4a7a-a5d5-7540e3718912", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-6000", "type": "seen", "source": "https://t.me/ctinow/164559", "content": "https://ift.tt/MbFBHxa\nCVE-2023-6000 Exploit", "creation_timestamp": "2024-01-08T19:16:34.000000Z"}]}