{"vulnerability": "cve-2023-2223", "sightings": [{"uuid": "ffeda214-7312-4929-9a13-3ab817bb3b09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22232", "type": "seen", "source": "https://t.me/arpsyndicate/1827", "content": "#ExploitObserverAlert\n\nCVE-2023-22232\n\nDESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-22232. Adobe Connect versions 11.4.5 (and earlier), 12.1.5 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to impact the integrity of a minor feature. Exploitation of this issue does not require user interaction.\n\nFIRST-EPSS: 0.096260000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2023-12-16T14:29:20.000000Z"}, {"uuid": "cee71762-d269-4ea3-8a5b-24dbaa077bfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2223", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1196", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-2223\n\ud83d\udd39 Description: The Login rebuilder WordPress plugin before 2.8.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\ud83d\udccf Published: 2023-05-30T07:49:20.226Z\n\ud83d\udccf Modified: 2025-01-10T17:35:53.949Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/7b356b82-5d03-4f70-b4ce-f1405304bb52\n2. http://packetstormsecurity.com/files/173726/WordPress-Login-Rebuilder-Cross-Site-Scripting.html", "creation_timestamp": "2025-01-10T18:03:38.000000Z"}, {"uuid": "0e62e0f6-d5ad-41fd-bf5b-6d7bb86082cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22232", "type": "seen", "source": "https://t.me/codeb0ss/1373", "content": "https://nvd.nist.gov/vuln/detail/CVE-2023-22232", "creation_timestamp": "2024-02-12T22:31:57.000000Z"}, {"uuid": "cef48afd-340f-4411-b233-04603d2ff7be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22232", "type": "published-proof-of-concept", "source": "https://t.me/codeb0ss/1374", "content": "", "creation_timestamp": "2024-02-12T22:31:59.000000Z"}, {"uuid": "c829a00c-21d2-4bf0-a041-5a7412358d01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22238", "type": "seen", "source": "https://t.me/cibsecurity/58494", "content": "\u203c CVE-2023-22238 \u203c\n\nAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T00:13:53.000000Z"}, {"uuid": "dbea6b1d-23dc-48d0-aaf7-5f4ab868d3c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22236", "type": "seen", "source": "https://t.me/cibsecurity/58489", "content": "\u203c CVE-2023-22236 \u203c\n\nAdobe Animate versions 22.0.8 (and earlier) and 23.0.0 (and earlier) are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T00:13:45.000000Z"}, {"uuid": "a3c2cf35-6d1f-4073-96c3-07955c181547", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22234", "type": "seen", "source": "https://t.me/cibsecurity/58488", "content": "\u203c CVE-2023-22234 \u203c\n\nAdobe Premiere Rush version 2.6 (and earlier) is affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T00:13:44.000000Z"}, {"uuid": "c628da72-1b91-4279-9b91-73f08a4576b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22239", "type": "seen", "source": "https://t.me/cibsecurity/58479", "content": "\u203c CVE-2023-22239 \u203c\n\nAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T00:13:30.000000Z"}, {"uuid": "15a8b592-6303-49a1-81c3-a90dfb338e9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22233", "type": "seen", "source": "https://t.me/cibsecurity/58477", "content": "\u203c CVE-2023-22233 \u203c\n\nAfter Affects versions 23.1 (and earlier), 22.6.3 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T00:13:28.000000Z"}, {"uuid": "cc679b57-3998-40ba-88d0-1ac555348264", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22232", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/1187", "content": "CVE-2023-22232\n\nDescription\nAdobe Connect versions 11.4.5 (and earlier), 12.1.5 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to impact the integrity of a minor feature. Exploitation of this issue does not require user interaction.\n\nTemplate: https://github.com/projectdiscovery/nuclei-templates/blob/63028aebaf9056c4d786df3d9d2eff800e6db64c/http/cves/2023/CVE-2023-22232.yaml\n\nCVE-2023-22232\n\n\u062a\u0648\u0636\u06cc\u062d\u0627\u062a:\n\u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc 11.4.5 (\u0648 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644\u06cc) \u0648 12.1.5 (\u0648 \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0642\u0628\u0644\u06cc) Adobe Connect \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u06a9\u0646\u062a\u0631\u0644 \u062f\u0633\u062a\u0631\u0633\u06cc \u0646\u0627\u062f\u0631\u0633\u062a \u0642\u0631\u0627\u0631 \u062f\u0627\u0631\u0646\u062f \u06a9\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 \u062f\u0648\u0631 \u0632\u062f\u0646 \u0648\u06cc\u0698\u06af\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0634\u0648\u062f. \u06cc\u06a9 \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0628\u0631\u0627\u06cc \u062a\u0627\u062b\u06cc\u0631 \u0628\u0631 \u062a\u0645\u0627\u0645\u06cc\u062a \u06cc\u06a9 \u0648\u06cc\u0698\u06af\u06cc \u062c\u0632\u0626\u06cc \u0633\u0648\u0621\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f. \u0628\u0647\u0631\u0647\u200c\u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0627\u06cc\u0646 \u0645\u0634\u06a9\u0644 \u0646\u06cc\u0627\u0632\u06cc \u0628\u0647 \u062a\u0639\u0627\u0645\u0644 \u06a9\u0627\u0631\u0628\u0631 \u0646\u062f\u0627\u0631\u062f.\n\n\u0627\u0644\u06af\u0648: https://github.com/projectdiscovery/nuclei-templates/blob/63028aebaf9056c4d786df3d9d2eff800e6db64c/http/cves/2023/CVE-2023-22232.yaml", "creation_timestamp": "2024-06-26T11:36:28.000000Z"}, {"uuid": "edce8e40-aac5-4849-aaa3-15308c71eb8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22235", "type": "seen", "source": "https://t.me/cibsecurity/62041", "content": "\u203c CVE-2023-22235 \u203c\n\nInCopy versions 18.1 (and earlier), 17.4 (and earlier) are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-13T02:29:38.000000Z"}, {"uuid": "46d59999-d523-466e-b0c0-5159a098a763", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22232", "type": "seen", "source": "https://t.me/cibsecurity/58484", "content": "\u203c CVE-2023-22232 \u203c\n\nAdobe Connect versions 11.4.5 (and earlier), 12.1.5 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass. An attacker could leverage this vulnerability to impact the integrity of a minor feature. Exploitation of this issue does not require user interaction.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T00:13:38.000000Z"}]}