{"vulnerability": "cve-2023-2520", "sightings": [{"uuid": "7b41f3e4-860c-458f-a7fa-62c03e4b49c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2520", "type": "seen", "source": "https://t.me/cibsecurity/63307", "content": "\u203c CVE-2023-2520 \u203c\n\nA vulnerability was found in Caton Prime 2.1.2.51.e8d7225049(202303031001) and classified as critical. This issue affects some unknown processing of the file cgi-bin/tools_ping.cgi?action=Command of the component Ping Handler. The manipulation of the argument Destination leads to command injection. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-228011. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-04T20:32:02.000000Z"}, {"uuid": "c7f757f3-2990-44f4-aa0f-941311f276ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25201", "type": "seen", "source": "https://t.me/cibsecurity/66206", "content": "\u203c CVE-2023-25201 \u203c\n\nCross Site Request Forgery (CSRF) vulnerability in MultiTech Conduit AP MTCAP2-L4E1 MTCAP2-L4E1-868-042A v.6.0.0 allows a remote attacker to execute arbitrary code via a crafted script upload.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-07T20:17:58.000000Z"}, {"uuid": "9fa363ac-39cf-49ed-bb33-aa66b794d608", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-25206", "type": "seen", "source": "https://t.me/cibsecurity/60014", "content": "\u203c CVE-2023-25206 \u203c\n\nPrestaShop ws_productreviews < 3.6.2 is vulnerable to SQL Injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T19:30:29.000000Z"}]}