{"vulnerability": "cve-2023-2986", "sightings": [{"uuid": "ff347986-dc3c-496c-a454-7ad7f0bf7d32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2986", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lrgszii5jg2s", "content": "", "creation_timestamp": "2025-06-12T21:02:25.960820Z"}, {"uuid": "c7afffe0-bb52-40f7-9669-9edeeb917ca5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2986", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lu6tdlqw3i2x", "content": "", "creation_timestamp": "2025-07-17T21:02:24.272870Z"}, {"uuid": "937937fd-ef69-41d0-a176-27d74c083ab6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2986", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4557", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aProof of Concept for vulnerability CVE-2023-2986 in 'Abandoned Cart Lite for WooCommerce' Plugin in WordPress in Python Version\nURL\uff1ahttps://github.com/Alucard0x1/CVE-2023-2986\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-06-13T20:55:03.000000Z"}, {"uuid": "32672dfd-22a5-4b2e-8940-e811df72fcbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2986", "type": "seen", "source": "https://t.me/kasraone_com/323", "content": "\ud83d\udca5 CVE-2023-2986\n\n\n\u0627\u0641\u0632\u0648\u0646\u0647 Abandoned Cart Lite \u0628\u0631\u0627\u06cc \u0648\u0648\u06a9\u0627\u0645\u0631\u0633 \u062f\u0631 \u0648\u0631\u062f\u067e\u0631\u0633 \u062f\u0631 \u0646\u0633\u062e\u0647 \u0647\u0627\u06cc \u062a\u0627 \u0648 \u0634\u0627\u0645\u0644 5.14.2 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0639\u0628\u0648\u0631 \u0627\u0632 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u062f\u0627\u0631\u062f. \u0627\u06cc\u0646 \u0645\u0634\u06a9\u0644 \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0631\u0645\u0632\u0646\u06af\u0627\u0631\u06cc \u0646\u0627\u06a9\u0627\u0641\u06cc \u0628\u0631 \u0631\u0648\u06cc \u06a9\u0627\u0631\u0628\u0631\u0627\u0646\u06cc \u0627\u0633\u062a \u06a9\u0647 \u062f\u0631 \u062d\u06cc\u0646 \u0631\u0645\u0632\u06af\u0634\u0627\u06cc\u06cc \u0644\u06cc\u0646\u06a9 \u0633\u0628\u062f \u062e\u0631\u06cc\u062f \u0631\u0647\u0627 \u0634\u062f\u0647 \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0627\u0641\u0632\u0648\u0646\u0647\u060c \u062a\u0623\u0645\u06cc\u0646 \u0645\u06cc\u200c\u0634\u0648\u062f. \u0627\u06cc\u0646 \u0628\u0647 \u062d\u0645\u0644\u0627\u062a \u0628\u062f\u0648\u0646 \u0627\u062d\u0631\u0627\u0632 \u0647\u0648\u06cc\u062a \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u200c\u062f\u0647\u062f \u062a\u0627 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646\u06cc \u06a9\u0647 \u0633\u0628\u062f \u062e\u0631\u06cc\u062f \u062e\u0648\u062f \u0631\u0627 \u0631\u0647\u0627 \u06a9\u0631\u062f\u0647\u200c\u0627\u0646\u062f \u0648 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0639\u0645\u0648\u0645\u0627\u064b \u0645\u0634\u062a\u0631\u06cc\u0627\u0646 \u0647\u0633\u062a\u0646\u062f\u060c \u0648\u0627\u0631\u062f \u0633\u0627\u0645\u0627\u0646\u0647 \u0634\u0648\u0646\u062f.", "creation_timestamp": "2023-06-28T09:18:53.000000Z"}, {"uuid": "89ded004-3fa4-4c73-9b0a-25e86a9a9f06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2986", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4527", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aProof of Concept for vulnerability CVE-2023-2986 in 'Abandoned Cart Lite for WooCommerce' Plugin in WordPress\nURL\uff1ahttps://github.com/Ayantaker/CVE-2023-2986\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-06-09T18:25:15.000000Z"}, {"uuid": "cdc593a4-3145-4215-b10b-873ee071272c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29862", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2796", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-29862\n\ud83d\udd39 Description: An issue found in Agasio-Camera device version not specified allows a remote attacker to execute arbitrary code via the check and authLevel parameters.\n\ud83d\udccf Published: 2023-05-15T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-23T18:58:46.803Z\n\ud83d\udd17 References:\n1. https://woolly-espadrille-ed5.notion.site/Agasio-Camera-device-has-a-logic-flaw-vulnerability-d4514e7217c54dd7ac62582b6664aa66\n2. https://github.com/Duke1410/CVE/blob/main/CVE-2023-29862", "creation_timestamp": "2025-01-23T19:03:27.000000Z"}, {"uuid": "88b45bfc-f184-46fa-9727-c767b82f270d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29861", "type": "seen", "source": "Telegram/WcJ4N03wrsEJFJqaVJdHHjwIXUdYLPyYOp-2bK3j7fH4wBdo", "content": "", "creation_timestamp": "2025-02-01T17:28:10.000000Z"}, {"uuid": "ed0c3c9e-0592-462f-a841-e603be77b67c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2986", "type": "seen", "source": "Telegram/uzi-fH6l177J-R8e02TGIjxEXa8RQYZVaTGyJYd3iOla-qQ", "content": "", "creation_timestamp": "2023-06-30T15:53:18.000000Z"}, {"uuid": "50cbc08c-d312-415c-aa7d-4495cfc2039e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29862", "type": "seen", "source": "https://t.me/cibsecurity/64128", "content": "\u203c CVE-2023-29862 \u203c\n\nAn issue found in Agasio-Camera device version not specified allows a remote attacker to execute arbitrary code via the check and authLevel parameters.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:43:21.000000Z"}, {"uuid": "0cfa6826-ce07-460c-bad2-b5550c1df8e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29860", "type": "seen", "source": "https://t.me/cibsecurity/65460", "content": "\u203c CVE-2023-29860 \u203c\n\nAn insecure permissions in /Taier/API/tenant/listTenant interface in DTStack Taier 1.3.0 allows attackers to view sensitive information via the getCookie method.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-23T16:46:55.000000Z"}, {"uuid": "03b167a7-6f4b-490c-b265-0685a54aecbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29863", "type": "seen", "source": "https://t.me/cibsecurity/63878", "content": "\u203c CVE-2023-29863 \u203c\n\nMedical Systems Co. Medisys Weblab Products v19.4.03 was discovered to contain a SQL injection vulnerability via the tem:statement parameter in the WSDL files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T16:15:23.000000Z"}, {"uuid": "46b68a2e-c927-4953-93a1-dfcd8c3ba2d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29867", "type": "seen", "source": "https://t.me/cibsecurity/63169", "content": "\u203c CVE-2023-29867 \u203c\n\nZammad 5.3.x (Fixed 5.4.0) is vulnerable to Incorrect Access Control. An authenticated attacker could gain information about linked accounts of users involved in their tickets using the Zammad API.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-02T20:30:22.000000Z"}, {"uuid": "b9a7e60e-a610-4964-8d1e-078f1c67531a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29868", "type": "seen", "source": "https://t.me/cibsecurity/63167", "content": "\u203c CVE-2023-29868 \u203c\n\nZammad 5.3.x (Fixed in 5.4.0) is vulnerable to Incorrect Access Control. An authenticated attacker with agent and customer roles could perform unauthorized changes on articles where they only have customer permissions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-02T20:30:20.000000Z"}]}