{"vulnerability": "cve-2023-2367", "sightings": [{"uuid": "d1ce369b-6573-4a9f-b5ee-dd6688abc366", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23672", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lerhwbbtcv2a", "content": "", "creation_timestamp": "2025-01-02T16:15:31.168843Z"}, {"uuid": "016bb9ad-26a1-4e12-9f95-7e984dec8242", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23672", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lerjxlh6ao2q", "content": "", "creation_timestamp": "2025-01-02T16:52:03.132413Z"}, {"uuid": "88166296-53fb-4fb4-8fd3-2a02b860ce42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23671", "type": "seen", "source": "https://t.me/cibsecurity/66382", "content": "\u203c CVE-2023-23671 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Muneeb Layer Slider plugin <=\u00c2\u00a01.1.9.7 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T16:38:07.000000Z"}, {"uuid": "fd0d8832-d9bc-478a-acf3-449afe85ec29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23672", "type": "seen", "source": "https://t.me/cvedetector/14180", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-23672 - Liquid Web StellarWP GiveWP Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-23672 \nPublished : Jan. 2, 2025, 4:15 p.m. | 17\u00a0minutes ago \nDescription : Missing Authorization vulnerability in Liquid Web / StellarWP GiveWP.This issue affects GiveWP: from n/a through 2.25.1. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"02 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-02T17:36:35.000000Z"}, {"uuid": "b2ac8e56-365d-4463-8daa-4186286e2a2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2367", "type": "seen", "source": "https://t.me/cibsecurity/63042", "content": "\u203c CVE-2023-2367 \u203c\n\nA vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/manage_academic.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-227643.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T16:27:15.000000Z"}, {"uuid": "6f7e2540-613e-4428-9373-955d8b887c14", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23674", "type": "seen", "source": "https://t.me/cibsecurity/64108", "content": "\u203c CVE-2023-23674 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in RVOLA WP Original Media Path plugin <=\u00c2\u00a02.4.0 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:40:00.000000Z"}, {"uuid": "97ac2e78-4dc2-42d1-b28d-257dcec2c3df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23677", "type": "seen", "source": "https://t.me/cibsecurity/61163", "content": "\u203c CVE-2023-23677 \u203c\n\nReflected Cross-Site Scripting (XSS) vulnerability in GTmetrix GTmetrix for WordPress plugin <= 0.4.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T20:57:04.000000Z"}, {"uuid": "a2ed05a5-3f8e-41dd-bb65-a469ceca98fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23675", "type": "seen", "source": "https://t.me/cibsecurity/61162", "content": "\u203c CVE-2023-23675 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Catchsquare WP Smart Preloader plugin <= 1.15 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T14:26:20.000000Z"}, {"uuid": "bef9ff76-8fee-43b3-941d-48e3175c5fa4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23670", "type": "seen", "source": "https://t.me/cibsecurity/61161", "content": "\u203c CVE-2023-23670 \u203c\n\nAuth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Team Heateor Fancy Comments WordPress plugin <= 1.2.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T14:26:19.000000Z"}]}