{"vulnerability": "cve-2023-3130", "sightings": [{"uuid": "81e09e2b-75a4-4887-b752-62e983a1aa6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31300", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12354", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31300\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue was discovered in Sesami Cash Point & Transport Optimizer (CPTO) version 6.3.8.6 (#718), allows remote attackers to obtain sensitive information via transmission of unencrypted, cleartext credentials during Password Reset feature.\n\ud83d\udccf Published: 2023-12-29T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-17T20:25:03.643Z\n\ud83d\udd17 References:\n1. https://herolab.usd.de/en/security-advisories/usd-2022-0057/", "creation_timestamp": "2025-04-17T20:58:26.000000Z"}, {"uuid": "7b00df65-7cb2-4bdc-a3af-053aaf6d1291", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31306", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ly6wtt4iys2t", "content": "", "creation_timestamp": "2025-09-06T19:45:50.789555Z"}, {"uuid": "6a56e93e-1b0c-4391-b274-2f54eb00d995", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31305", "type": "seen", "source": "https://t.me/cvedetector/3047", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31305 - PMFW Weak IV Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-31305 \nPublished : Aug. 13, 2024, 5:15 p.m. | 43\u00a0minutes ago \nDescription : Generation of weak and predictable Initialization Vector (IV) in PMFW (Power Management Firmware) may allow an attacker with privileges to reuse IV values to reverse-engineer debug data, potentially resulting in information disclosure. \nSeverity: 1.9 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T20:28:07.000000Z"}, {"uuid": "6b40c9ac-99fc-4d5c-a34b-b4cf5da73639", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31304", "type": "seen", "source": "https://t.me/cvedetector/3050", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31304 - Xilinx PCIe Flavor Config Modification Vulnerability - Remote Management Manipulation\", \n  \"Content\": \"CVE ID : CVE-2023-31304 \nPublished : Aug. 13, 2024, 5:15 p.m. | 43\u00a0minutes ago \nDescription : Improper input validation in SMU may allow an attacker with privileges and a compromised physical function (PF)  \u00a0 \u00a0 to modify the PCIe\u00ae lane count and speed, potentially leading to a loss of availability. \nSeverity: 2.3 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T20:28:10.000000Z"}, {"uuid": "0a45e6fb-ea18-499a-929c-098479cf9a15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31307", "type": "seen", "source": "https://t.me/cvedetector/3049", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31307 - Thundersoft Power Management Firmware Array Index Out-of-Bounds Read Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-31307 \nPublished : Aug. 13, 2024, 5:15 p.m. | 43\u00a0minutes ago \nDescription : Improper validation of array index in Power Management Firmware (PMFW) may allow a privileged attacker to cause an out-of-bounds memory read within PMFW, potentially leading to a denial of service. \nSeverity: 2.3 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Aug 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-08-13T20:28:09.000000Z"}, {"uuid": "51d5cbb2-ac96-45b9-8451-bab87cd83821", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31300", "type": "seen", "source": "https://t.me/cibsecurity/73903", "content": "\u203c\ufe0fCVE-2023-31300\u203c\ufe0f\n\nAn issue was discovered in Sesami Cash Point  Transport Optimizer CPTO version 6.3.8.6 718, allows remote attackers to obtain sensitive information via transmission of unencrypted, cleartext credentials during Password Reset feature.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2023-12-30T01:34:51.000000Z"}, {"uuid": "0071277e-6a0f-49f9-b7a8-d86aa4fff8b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31301", "type": "seen", "source": "https://t.me/cibsecurity/73863", "content": "\u203c\ufe0fCVE-2023-31301\u203c\ufe0f\n\nStored Cross Site Scripting XSS Vulnerability in Sesami Cash Point  Transport Optimizer CPTO version 6.3.8.6 718, allows remote attackers to execute arbitrary code and obtain sensitive information via the Username field of the login form and application log.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2023-12-30T01:31:34.000000Z"}, {"uuid": "001bd928-72c2-48d0-b6f8-c2c1417c0577", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31302", "type": "seen", "source": "https://t.me/cibsecurity/73904", "content": "\u203c\ufe0fCVE-2023-31302\u203c\ufe0f\n\nCross Site Scripting XSS vulnerability in Sesami Cash Point  Transport Optimizer CPTO 6.3.8.6 718, allows remote attackers to execute arbitrary code via the Teller field.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2023-12-30T01:34:56.000000Z"}, {"uuid": "a46c00d2-769f-4ec4-9460-511dfef827a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3130", "type": "seen", "source": "https://t.me/cibsecurity/67444", "content": "\u203c CVE-2023-3130 \u203c\n\nThe Short URL WordPress plugin before 1.6.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-31T14:37:41.000000Z"}, {"uuid": "7e156f27-249b-464e-a471-645ba920a7a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31302", "type": "seen", "source": "https://t.me/ctinow/160358", "content": "https://ift.tt/jwuvsgQ\nCVE-2023-31302", "creation_timestamp": "2023-12-29T07:26:45.000000Z"}, {"uuid": "a2d8b70d-6ea6-4c7e-9567-b304405ea8ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31300", "type": "seen", "source": "https://t.me/ctinow/170647", "content": "https://ift.tt/NbZpAoX\nCVE-2023-31300 | Sesami Cash Point & Transport Optimizer 6.3.8.6 Password Reset cleartext transmission (usd-2022-0057)", "creation_timestamp": "2024-01-20T15:17:10.000000Z"}, {"uuid": "f39aaeb6-7887-4c5a-867b-7066880fe970", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31301", "type": "seen", "source": "https://t.me/ctinow/170663", "content": "https://ift.tt/E09M2Aj\nCVE-2023-31301 | Sesami Cash Point & Transport Optimizer 6.3.8.6 Login Form Username cross site scripting (usd-2022-0059)", "creation_timestamp": "2024-01-20T16:16:30.000000Z"}, {"uuid": "516113cb-e710-4dcc-8183-07594f5bea35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31302", "type": "seen", "source": "https://t.me/ctinow/170718", "content": "https://ift.tt/jbhOuIz\nCVE-2023-31302 | Sesami Cash Point & Transport Optimizer 6.3.8.6 Teller cross site scripting (usd-2022-0056)", "creation_timestamp": "2024-01-20T20:46:21.000000Z"}, {"uuid": "e0952ed2-e3b5-41b7-b6ef-908cc62c4f03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31300", "type": "seen", "source": "https://t.me/ctinow/160357", "content": "https://ift.tt/qV0Nn63\nCVE-2023-31300", "creation_timestamp": "2023-12-29T07:26:44.000000Z"}, {"uuid": "33309a83-6d02-4f19-ad0f-9593c0cd2052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31301", "type": "seen", "source": "https://t.me/ctinow/160290", "content": "https://ift.tt/smKClae\nCVE-2023-31301", "creation_timestamp": "2023-12-29T03:26:22.000000Z"}]}