{"vulnerability": "cve-2023-3175", "sightings": [{"uuid": "4139588c-e014-432b-b712-913db7d4c3bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31753", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4774", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aProof of Concept for CVE-2023-31753 - eNdonesia Portal 8.7\nURL\uff1ahttps://github.com/khmk2k/CVE-2023-31753\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-07-20T14:16:24.000000Z"}, {"uuid": "ecade554-7155-43ba-965a-2df87d62df3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31752", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2215", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31752\n\ud83d\udd39 Description: SourceCodester Employee and Visitor Gate Pass Logging System v1.0 is vulnerable to SQL Injection via /employee_gatepass/classes/Login.php.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-17T20:06:30.330Z\n\ud83d\udd17 References:\n1. https://github.com/4O4NtFd/bug_report/blob/main/SQLI2/SQLi-2.md", "creation_timestamp": "2025-01-17T20:58:04.000000Z"}, {"uuid": "68833dbc-3cb6-41b5-88f8-99c3c3d4114d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31752", "type": "seen", "source": "https://t.me/cibsecurity/64648", "content": "\u203c CVE-2023-31752 \u203c\n\nSourceCodester Employee and Visitor Gate Pass Logging System v1.0 is vulnerable to SQL Injection via /employee_gatepass/classes/Login.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T00:37:21.000000Z"}, {"uuid": "c471d64f-9f28-4ecb-b02b-5ed6f9db5433", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31753", "type": "seen", "source": "https://t.me/cibsecurity/67060", "content": "\u203c CVE-2023-31753 \u203c\n\nSQL injection vulnerability in diskusi.php in eNdonesia 8.7, allows an attacker to execute arbitrary SQL commands via the \"rid=\" parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-21T00:42:47.000000Z"}, {"uuid": "fe8d4504-a361-452c-8968-71b042c42430", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31756", "type": "seen", "source": "https://t.me/cibsecurity/64458", "content": "\u203c CVE-2023-31756 \u203c\n\nA command injection vulnerability exists in the administrative web portal in TP-Link Archer VR1600V devices running firmware Versions &lt;= 0.1.0. 0.9.1 v5006.0 Build 220518 Rel.32480n which allows remote attackers, authenticated to the administrative web portal as an administrator user to open an operating system level shell via the 'X_TP_IfName' parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-19T16:43:13.000000Z"}, {"uuid": "5bd180f7-159c-4ee1-b104-a968737c4b58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31759", "type": "seen", "source": "https://t.me/cibsecurity/64662", "content": "\u203c CVE-2023-31759 \u203c\n\nWeak Security in the 433MHz keyfob of Kerui W18 Alarm System v1.0 allows attackers to gain full access via a code replay attack.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T07:26:43.000000Z"}]}