{"vulnerability": "cve-2023-2717", "sightings": [{"uuid": "4e17b0d0-1255-439c-b703-94224ca43b40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27178", "type": "seen", "source": "Telegram/Z5KNfHFYcKIhfGR_Tio7paF1ctnILIHrWvo7kk6nXl6br6TW", "content": "", "creation_timestamp": "2025-02-14T10:03:09.000000Z"}, {"uuid": "f5f886a6-9c6c-4e24-ba65-56efe3dc5738", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27179", "type": "seen", "source": "Telegram/RlizQbS_drE6-ldJTpHp6EuP1hc5k-LTtJuiudSAD-tVOjJb", "content": "", "creation_timestamp": "2025-02-14T10:03:10.000000Z"}, {"uuid": "3a21e4bd-f6c6-444d-b7d8-03cc5684a1e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27172", "type": "seen", "source": "https://t.me/ctinow/167801", "content": "https://ift.tt/PYmsZXV\nCVE-2023-27172 | Xpand IT Write-Back Manager 2.3.1 random values", "creation_timestamp": "2024-01-13T11:21:57.000000Z"}, {"uuid": "c5abeddd-6c38-4986-93ca-f7c90857a094", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27170", "type": "seen", "source": "https://t.me/cibsecurity/73026", "content": "\u203c CVE-2023-27170 \u203c\n\nXpand IT Write-back manager v2.3.1 allows attackers to perform a directory traversal via modification of the siteName parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-27T02:16:13.000000Z"}, {"uuid": "13cb93e0-996c-4c08-9d20-e8fc6da6bce0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27179", "type": "seen", "source": "https://t.me/cibsecurity/61868", "content": "\u203c CVE-2023-27179 \u203c\n\nGDidees CMS v3.9.1 and lower was discovered to contain an arbitrary file download vulenrability via the filename parameter at /_admin/imgdownload.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-11T16:23:31.000000Z"}, {"uuid": "e9da1ad3-da78-4490-82bf-a4260bcd4f33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27172", "type": "seen", "source": "https://t.me/ctinow/161955", "content": "https://ift.tt/hVDb4zq\nCVE-2023-27172 Exploit", "creation_timestamp": "2024-01-02T19:16:26.000000Z"}, {"uuid": "81270035-1ab6-4cbe-89b0-a077e13ad7eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2717", "type": "seen", "source": "https://t.me/cibsecurity/64482", "content": "\u203c CVE-2023-2717 \u203c\n\nThe Groundhogg plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.7.9.8. This is due to missing nonce validation on the 'enable_safe_mode' function. This makes it possible for unauthenticated attackers to enable safe mode, which disables all other plugins, via a forged request if they can successfully trick an administrator into performing an action such as clicking on a link. A warning message about safe mode is displayed to the admin, which can be easily disabled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-20T07:23:43.000000Z"}, {"uuid": "356c9ae7-1ca6-48a1-816b-9102d97e7c52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27178", "type": "seen", "source": "https://t.me/cibsecurity/61799", "content": "\u203c CVE-2023-27178 \u203c\n\nAn arbitrary file upload vulnerability in the upload function of GDidees CMS 3.9.1 allows attackers to execute arbitrary code via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-11T00:22:47.000000Z"}]}