{"vulnerability": "cve-2023-2365", "sightings": [{"uuid": "c4bb5263-c406-433a-9357-26ca7b0a1aba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23650", "type": "seen", "source": "https://t.me/cibsecurity/60581", "content": "\u203c CVE-2023-23650 \u203c\n\nAuth. (subscriber+) Stored Cross-Site Scripting (XSS) vulnerability in MainWP MainWP Code Snippets Extension plugin &lt;= 4.0.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-23T17:41:57.000000Z"}, {"uuid": "49fe357c-bbf8-4c3f-b095-5c54399cb0e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23657", "type": "seen", "source": "https://t.me/cibsecurity/64202", "content": "\u203c CVE-2023-23657 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Richard Leishman t/a Webforward Mail Subscribe List plugin &lt;=\u00c2\u00a02.1.9 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-16T14:30:20.000000Z"}, {"uuid": "ad64df9e-9632-472d-9ece-1516764222b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23654", "type": "seen", "source": "https://t.me/cibsecurity/64122", "content": "\u203c CVE-2023-23654 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in SparkPost plugin &lt;=\u00c2\u00a03.2.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:43:12.000000Z"}, {"uuid": "c0095498-2c1e-4ca0-8618-f8930c244e4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2365", "type": "seen", "source": "https://t.me/cibsecurity/63039", "content": "\u203c CVE-2023-2365 \u203c\n\nA vulnerability has been found in SourceCodester Faculty Evaluation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file ajax.php?action=delete_subject. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-227641 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T16:27:12.000000Z"}, {"uuid": "ad518681-49ef-4994-819d-7d0b7c43307f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23651", "type": "seen", "source": "https://t.me/cibsecurity/72172", "content": "\u203c CVE-2023-23651 \u203c\n\nAuth. (subscriber+) SQL Injection (SQLi) vulnerability in MainWP Google Analytics Extension\u00c2\u00a0plugin &lt;= 4.0.4 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-12T16:23:13.000000Z"}, {"uuid": "a7952c37-fc6a-4019-9c12-df52832cedfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23659", "type": "seen", "source": "https://t.me/cibsecurity/58785", "content": "\u203c CVE-2023-23659 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in MainWP Matomo Extension &lt;= 4.0.4 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-23T18:18:27.000000Z"}]}