{"vulnerability": "cve-2023-3373", "sightings": [{"uuid": "6733957a-5c6d-4710-9ca3-5442612f25b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33733", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4456", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-33733 reportlab RCE\nURL\uff1ahttps://github.com/c53elyas/CVE-2023-33733\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-05-30T22:33:02.000000Z"}, {"uuid": "65b5bac5-b2b8-4c0d-a0ed-07931fb4a210", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33734", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1373", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33734\n\ud83d\udd39 Description: BlueCMS v1.6 was discovered to contain a SQL injection vulnerability via the keywords parameter at search.php.\n\ud83d\udccf Published: 2023-05-30T00:00:00\n\ud83d\udccf Modified: 2025-01-13T19:49:19.345Z\n\ud83d\udd17 References:\n1. https://github.com/Peanuts-s/BlueCms", "creation_timestamp": "2025-01-13T20:07:22.000000Z"}, {"uuid": "ebb65b83-4687-4d2c-bdde-b75c5bb58e7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33731", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/807", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33731\n\ud83d\udd39 Description: Reflected Cross Site Scripting (XSS) in the view dashboard detail feature in Microworld Technologies eScan management console 14.0.1400.2281 allows remote attacker to inject arbitrary code via the URL directly.\n\ud83d\udccf Published: 2023-06-02T00:00:00\n\ud83d\udccf Modified: 2025-01-08T20:06:20.112Z\n\ud83d\udd17 References:\n1. https://owasp.org/www-community/attacks/xss/\n2. https://github.com/sahiloj/CVE-2023-33731/blob/main/CVE-2023-33731.md", "creation_timestamp": "2025-01-08T20:13:38.000000Z"}, {"uuid": "de3a4685-da06-4f44-9239-34ebefdb4819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3373", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5796", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-3373\n\ud83d\udd25 CVSS Score: 5.9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:L)\n\ud83d\udd39 Description: Predictable Exact Value from Previous Values vulnerability in Mitsubishi Electric Corporation GOT2000 Series GT21 model versions 01.49.000 and prior and GOT SIMPLE Series GS21 model versions 01.49.000 and prior allows a remote unauthenticated attacker to hijack data connections (session hijacking) or prevent legitimate users from establishing data connections (to cause DoS condition) by guessing the listening port of the data connection on FTP server and connecting to it.\n\ud83d\udccf Published: 2023-08-03T23:44:40.341Z\n\ud83d\udccf Modified: 2025-02-27T21:11:06.051Z\n\ud83d\udd17 References:\n1. https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2023-006_en.pdf\n2. https://jvn.jp/vu/JVNVU92167394/index.html\n3. https://www.cisa.gov/news-events/ics-advisories/icsa-23-215-01", "creation_timestamp": "2025-02-27T21:26:00.000000Z"}, {"uuid": "40826659-4db2-441c-b092-8a9cd7bbb3c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33736", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1145", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33736\n\ud83d\udd39 Description: A stored cross-site scripting (XSS) vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter.\n\ud83d\udccf Published: 2023-05-31T00:00:00\n\ud83d\udccf Modified: 2025-01-10T14:55:59.573Z\n\ud83d\udd17 References:\n1. https://github.com/jqhph/dcat-admin/issues/2027", "creation_timestamp": "2025-01-10T15:03:22.000000Z"}, {"uuid": "2094621c-3aa8-464f-a13a-cb549c60b461", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33733", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3076", "content": "Tools - Hackers Factory \n\nCVE-2023-33733\n\nThis write-up details how an RCE in Reportlab - was found and exploited. Due to the prevalence of Reportlab in HTML to PDF processing, this vulnerability may be reachable in many applications that process PDF files, making this an important one to patch and look out for.\n\nhttps://github.com/c53elyas/CVE-2023-33733\n\n#cve #cybersecurity #infosec\n\nLoki\n\nA Little Web Honeypot.\n\nhttps://github.com/TheKingOfDuck/Loki\n\n#cybersecurity #infosec\n\nPyrai - Mirai python variant\n\nThis is a working variant of the Mirai IOT botnet, this is fully written in Python3. In this paper I'm going to show you how to configure each script in order to setup your PyRai.\n\nhttps://github.com/readloud/PyRai\n\n#cybersecurity #infosec #redteam\n\nCVE-2023-33781\n\nD-Link DIR-842V2 v1.0.3 was discovered to allow a user to run an arbitrary binary when connecting to telnet. This vulnerability can be triggered using backup/restore functionality.\n\nhttps://github.com/s0tr/CVE-2023-33781\n\n#cve #cybersecurity #infosec\n\nCVE-2023-33782\n\nD-Link DIR-842V2 v1.0.3 was discovered to contain a command injection vulnerability in the iperf3 diagnostics functionality.\n\nhttps://github.com/s0tr/CVE-2023-33782\n\n#cve #cybersecurity #infosec\n\nHackBrowserData \n\nCommand-line tool for decrypting and exporting browser data ( passwords, history, cookies, bookmarks, credit cards, download records, localStorage and extension ) from the browser. It supports the most popular browsers on the market and runs on Windows, macOS and Linux.\n\nhttps://github.com/moonD4rk/HackBrowserData\n\n#infosec #pentesting #redteam\n\nVMClarity \n\nOpen source tool for agentless detection and management of Virtual Machine Software Bill Of Materials (SBOM) and security threats such as vulnerabilities, exploits, malware, rootkits, misconfigurations and leaked secrets.\n\nhttps://github.com/openclarity/vmclarity\n\n#cybersecurity #infosec #pentesting\n\nCVE-2023-33246 \n\nRocketMQ Remote Code Execution #Exploit.\n\nhttps://github.com/Malayke/CVE-2023-33246_RocketMQ_RCE_EXPLOIT\n\n#cve #cybersecurity #infosec\n\n2023-33381\n\nOS command injection on MitraStar GPT-2741GNAC.\n\nhttps://github.com/duality084/CVE-2023-33381-MitraStar-GPT-2741GNAC\n\n#cve #cybersecurity #infosec\n\nEyeballer\n\nEyeballer is meant for large-scope network penetration tests where you need to find \"interesting\" targets from a huge set of web-based hosts. Go ahead and use your favorite screenshotting tool like normal (EyeWitness or GoWitness) and then run them through Eyeballer to tell you what's likely to contain vulnerabilities, and what isn't.\n\nhttps://github.com/BishopFox/eyeballer\n\n#cybersecurity #infosec #pentesting\n\nMultichain Auditor\n\nObservations and tips for auditing protocols on multiple chains \ud83e\uddd0\n\nhttps://github.com/0xJuancito/multichain-auditor\n\n#cybersecurity #infosec\n\nCoraza - Web Application Firewall\n\nCoraza is an open source, enterprise-grade, high performance Web Application Firewall (WAF) ready to protect your beloved applications. It written in Go, supports ModSecurity SecLang rulesets and is 100% compatible with the OWASP Core Rule Set.\n\nhttps://github.com/corazawaf/coraza\n\n#cybersecurity #infosec\n\nCVE-2020-35489\n\nCVE-2020-35489 Vulnerability Scanner in #Wordpress Websites.\n\nhttps://github.com/reneoliveirajr/wp_CVE-2020-35489_checker\n\n#cybersecurity #infosec\n\nRegStrike\n\nA .reg payload generator.\n\nhttps://github.com/itaymigdal/RegStrike\n\n#infosec #pentesting #redteam\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-06-05T06:48:53.000000Z"}, {"uuid": "1c8a6b42-c104-48ed-b381-46efac70899a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33733", "type": "published-proof-of-concept", "source": "Telegram/bnpSz9QLT8OAZbU-jaPyUK7NPonpMEiuLd5-75miGbIW99s", "content": "", "creation_timestamp": "2023-11-16T09:43:18.000000Z"}, {"uuid": "410e70ba-0a72-4764-b30c-d486ce2d144e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33732", "type": "seen", "source": "https://t.me/cibsecurity/64837", "content": "\u203c CVE-2023-33732 \u203c\n\nCross Site Scripting (XSS) in the New Policy form in Microworld Technologies eScan management console 14.0.1400.2281 allows a remote attacker to inject arbitrary code via the vulnerable parameters type, txtPolicyType, and Deletefileval.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-01T01:28:07.000000Z"}, {"uuid": "d96e54e1-8076-4e31-9b6c-e5e9617bd199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33736", "type": "seen", "source": "https://t.me/cibsecurity/64816", "content": "\u203c CVE-2023-33736 \u203c\n\nA stored cross-site scripting (XSS) vulnerability in Dcat-Admin v2.1.3-beta allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-31T16:36:49.000000Z"}, {"uuid": "6e1047bf-79e6-4e56-a55e-033497172e97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33733", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8411", "content": "#exploit\n1. CVE-2022-25743, CVE-2023-21665:\nQualcomm Adreno/KGSL Unchecked Cast / Type Confusion\nhttps://packetstormsecurity.com/files/172663\n\n2. CVE-2023-33733:\nReportlab RCE\nhttps://github.com/c53elyas/CVE-2023-33733\n\n3. CVE-2023-33246:\nRocketMQ RCE\nhttps://github.com/Malayke/CVE-2023-33246_RocketMQ_RCE_EXPLOIT", "creation_timestamp": "2023-06-02T13:04:30.000000Z"}]}