{"vulnerability": "cve-2023-3158", "sightings": [{"uuid": "a3735812-67eb-4ed0-a867-9e6756205afd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31585", "type": "seen", "source": "https://gist.github.com/f1rstb100d/487f27964a28b100bd57f38e144f2d35", "content": "", "creation_timestamp": "2025-05-03T03:00:46.000000Z"}, {"uuid": "7153ff48-63b9-432f-9ea7-d9d71bbf22a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31585", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loot2ystxlh2", "content": "", "creation_timestamp": "2025-05-08T21:15:09.431142Z"}, {"uuid": "579f86cf-6651-4fa6-b957-fa1bce495441", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31585", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3looxq3jjfq2r", "content": "", "creation_timestamp": "2025-05-08T22:32:25.322530Z"}, {"uuid": "c8c8b889-b591-4b6b-b9d1-54b25d4ad146", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31584", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4370", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aPublic disclosure for CVE-2023-31584.\nURL\uff1ahttps://github.com/rootd4ddy/CVE-2023-31584\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-05-17T20:51:35.000000Z"}, {"uuid": "100ee384-70e3-4dd6-9de5-7013d95b0cf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31584", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2491", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31584\n\ud83d\udd39 Description: GitHub repository cu/silicon commit a9ef36 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the User Input field.\n\ud83d\udccf Published: 2023-05-22T00:00:00\n\ud83d\udccf Modified: 2025-01-21T21:35:51.697Z\n\ud83d\udd17 References:\n1. https://github.com/cu/silicon\n2. https://github.com/rootd4ddy/CVE-2023-31584", "creation_timestamp": "2025-01-21T22:01:08.000000Z"}, {"uuid": "1fe8cc5f-c9a1-4119-858d-85e8937f8e30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31585", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15626", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31585\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Grocery-CMS-PHP-Restful-API v1.3 is vulnerable to File Upload via /admin/add-category.php.\n\ud83d\udccf Published: 2025-05-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-08T20:46:47.696Z\n\ud83d\udd17 References:\n1. https://github.com/ajayrandhawa/Grocery-CMS-PHP-Restful-API/issues/5\n2. https://gist.github.com/f1rstb100d/487f27964a28b100bd57f38e144f2d35", "creation_timestamp": "2025-05-08T21:25:38.000000Z"}, {"uuid": "a74d96ba-e817-4326-8a85-7801c5293908", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31585", "type": "seen", "source": "https://t.me/cvedetector/24858", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-31585 - Grocery-CMS-PHP Unauthenticated File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2023-31585 \nPublished : May 8, 2025, 9:15 p.m. | 17\u00a0minutes ago \nDescription : Grocery-CMS-PHP-Restful-API v1.3 is vulnerable to File Upload via /admin/add-category.php. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-09T00:18:50.000000Z"}, {"uuid": "a4b28323-0b37-4fbd-8846-469422b2a788", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31581", "type": "seen", "source": "https://t.me/cibsecurity/72837", "content": "\u203c CVE-2023-31581 \u203c\n\nDromara Sureness before v1.0.8 was discovered to use a hardcoded key.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-25T22:39:23.000000Z"}, {"uuid": "39aa3416-6c6a-4927-bd23-47c596cebba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31582", "type": "seen", "source": "https://t.me/ctinow/180962", "content": "https://ift.tt/C5zvABn\nCVE-2023-31582 | Oracle Communications Cloud Native Core Unified Data Repository Signaling unknown vulnerability", "creation_timestamp": "2024-02-07T21:17:03.000000Z"}, {"uuid": "2a68b757-3d47-4031-b7c1-56c8c790982d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31582", "type": "seen", "source": "https://t.me/ctinow/180901", "content": "https://ift.tt/QrnM6Xq\nCVE-2023-31582 | Oracle Communications Cloud Native Core Network Repository Function Install/Upgrade unknown vulnerability", "creation_timestamp": "2024-02-07T18:46:59.000000Z"}, {"uuid": "a94f4cb0-9904-4bf2-93c7-112ecbb6e342", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31582", "type": "seen", "source": "https://t.me/ctinow/180850", "content": "https://ift.tt/leuVOTx\nCVE-2023-31582 | Oracle Communications Cloud Native Core Network Exposure Function Platform entropy", "creation_timestamp": "2024-02-07T17:41:58.000000Z"}, {"uuid": "6433022a-3e33-4bb3-94e9-b56b57138d26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3158", "type": "seen", "source": "https://t.me/cibsecurity/66510", "content": "\u203c CVE-2023-3158 \u203c\n\nThe Mail Control plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an email subject in versions up to, and including, 0.2.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-12T12:48:35.000000Z"}, {"uuid": "aa2c1aae-fd65-49ee-a55b-0f48be757395", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31587", "type": "seen", "source": "https://t.me/cibsecurity/64213", "content": "\u203c CVE-2023-31587 \u203c\n\nTenda AC5 router V15.03.06.28 was discovered to contain a remote code execution (RCE) vulnerability via the Mac parameter at ip/goform/WriteFacMac.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-17T21:11:37.000000Z"}, {"uuid": "02ab54a2-48a8-4e66-9991-915b8ee42dd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31584", "type": "seen", "source": "https://t.me/cibsecurity/64560", "content": "\u203c CVE-2023-31584 \u203c\n\nGitHub repository cu/silicon commit a9ef36 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the User Input field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T22:24:50.000000Z"}]}