{"vulnerability": "cve-2023-3874", "sightings": [{"uuid": "0843f40c-0827-4533-b3ee-c0aedb172130", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "Telegram/vWAIVOeT_IzeuZIw0wF5sXcBTpojv-A8JZVrt0MMrvV-", "content": "", "creation_timestamp": "2023-10-22T23:38:20.000000Z"}, {"uuid": "beb308b3-689b-4e23-adee-e37106a37bf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38740", "type": "seen", "source": "https://t.me/cibsecurity/72384", "content": "\u203c CVE-2023-38740 \u203c\n\nIBM Db2 for Linux, UNIX, and Windows (includes Db2 Connect Server) 11.5 is vulnerable to a denial of service with a specially crafted SQL statement. IBM X-Force ID: 262613.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T02:32:19.000000Z"}, {"uuid": "299b3f2d-d8ae-49e6-8de2-a26d5fca5f8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3874", "type": "seen", "source": "https://t.me/arpsyndicate/2374", "content": "#ExploitObserverAlert\n\nCVE-2023-3874\n\nDESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-3874. A vulnerability, which was classified as critical, was found in Campcodes Beauty Salon Management System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-235236.\n\nFIRST-EPSS: 0.000640000\nNVD-IS: 3.6\nNVD-ES: 3.9", "creation_timestamp": "2024-01-03T22:49:27.000000Z"}, {"uuid": "a72a1bfa-f148-48c9-b229-cd0b8f961180", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38741", "type": "seen", "source": "https://t.me/cibsecurity/68473", "content": "\u203c CVE-2023-38741 \u203c\n\nIBM TXSeries for Multiplatforms 8.1, 8.2, and 9.1 is vulnerable to a denial of service, caused by improper enforcement of the timeout on individual read operations. By conducting a slowloris-type attacks, a remote attacker could exploit this vulnerability to cause a denial of service. IBM X-Force ID: 262905.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:19:48.000000Z"}, {"uuid": "44b46ab3-2a03-419f-b4bb-bc3e21ac6282", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3217", "content": "Hackers Factory \n\nFast and customizable Firebase api and Project ID extractor .\n\nhttps://github.com/ProjectNull0/Firebase-exploit\n\n403/401 Bypass Methods + Bash Automation + Your Support \n\nhttps://github.com/Dheerajmadhukar/4-ZERO-3\n\nGCP-Pentest-Checklist - Reposting\n\nhttps://github.com/CyberSecurityUP/GCP-Pentest-Checklist\n\nOfficial repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( \u200c\u00b0 \u200c\u0296 \u200c\u00b0)...\n\nhttps://github.com/hktalent/scan4all\n\nUses a Exploit found by\u00a0@Willy-JL\u00a0and\u00a0@ECTO-1A\u00a0to crash IOS17 devices over bluetooth.\n\nhttps://github.com/RapierXbox/ESP32-Sour-Apple\n\nFind secrets and passwords in container images and file systems\n\nhttps://github.com/deepfence/SecretScanner\n\nManageEngine ADManager Command Injection\n\nhttps://github.com/PetrusViet/CVE-2023-38743\n\nCombining Sealighter with unpatched exploits to run the Threat-Intelligence ETW Provider\n\nhttps://github.com/pathtofile/SealighterTI\n\nSnoopy Command Logger is a small library that logs all program executions on your Linux/BSD system.\n\nhttps://github.com/a2o/snoopy\n\nA small and portable Windows C library for sandbox detection\n\nhttps://github.com/kargisimos/detenv\n\n\u514d\u8d39\u7684 ChatGPT \u955c\u50cf\u7f51\u7ad9\u5217\u8868\uff0c\u6301\u7eed\u66f4\u65b0\u3002List of free ChatGPT mirror sites, continuously updated\n\nhttps://github.com/LiLittleCat/awesome-free-chatgpt\n\nDocuments Exfiltration project for fun and educational purposes\n\nhttps://github.com/TheD1rkMtr/DocPlz\n\nDorks for Google, Shodan and BinaryEdge\n\nhttps://github.com/iGotRootSRC/Dorkers\n\nAwesome VirusTotal Intelligence Search Queries\n\nhttps://github.com/Neo23x0/vti-dorks\n\nTake a list of domains, crawl urls and scan for endpoints, secrets, api keys, file extensions, tokens and more\n\nhttps://github.com/edoardottt/cariddi\n\nA lightweight tool for scraping current and historic Google Analytics data\n\nhttps://github.com/jclark1913/osint-google-analytics\n\nAthena OS is an Arch Linux-based distro focused on Cybersecurity. Learn, practice and enjoy with any hacking tool!\n\nhttps://github.com/Athena-OS/athena-iso\n\nOSINT tool to find informations about a github user (email2username, username2email, creation date\n\nhttps://github.com/hippiiee/osgint\n\nOSCP Cheatsheet \n\nhttps://github.com/0xSojalSec/OSCP-Cheatsheet\n\nThis repository contains Open Source freely usable Threat Intel feeds that can be used without additional requirements. Contains multiple types such as IP, URL, CVE and Hash.\n\nhttps://github.com/Bert-JanP/Open-Source-Threat-Intel-Feeds\n\nFree web-application vulnerability and version scanner\n\nhttps://github.com/fgeek/pyfiscan\n\nKubernetes Attack Graph\n\nhttps://github.com/DataDog/KubeHound\n\n#infosec #cybersecurity #hackersfactory \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-10-08T23:47:00.000000Z"}, {"uuid": "880afe90-bc03-4139-84a9-18cccf8992db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "seen", "source": "https://t.me/cibsecurity/70231", "content": "\u203c CVE-2023-38743 \u203c\n\nZoho ManageEngine ADManager Plus before Build 7200 allows admin users to execute commands on the host machine.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-11T22:27:55.000000Z"}, {"uuid": "6f27982f-602c-4d6f-9cc6-e1f99fdcbbf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38745", "type": "seen", "source": "https://t.me/cibsecurity/67195", "content": "\u203c CVE-2023-38745 \u203c\n\nPandoc before 3.1.6 allows arbitrary file write: this can be triggered by providing a crafted image element in the input when generating files via the --extract-media option or outputting to PDF format. This allows an attacker to create or overwrite arbitrary files, depending on the privileges of the process running Pandoc. It only affects systems that pass untrusted user input to Pandoc and allow Pandoc to be used to produce a PDF or with the --extract-media option. NOTE: this issue exists because of an incomplete fix for CVE-2023-35936 (failure to properly account for double encoded path names).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-25T07:26:33.000000Z"}, {"uuid": "2f3ef3ac-27ed-46e1-856f-4609d12da2d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38744", "type": "seen", "source": "https://t.me/cibsecurity/67637", "content": "\u203c CVE-2023-38744 \u203c\n\nDenial-of-service (DoS) vulnerability due to improper validation of specified type of input issue exists in the built-in EtherNet/IP port of the CJ Series CJ2 CPU unit and the communication function of the CS/CJ Series EtherNet/IP unit. If an affected product receives a packet which is specially crafted by a remote unauthenticated attacker, the unit of the affected product may fall into a denial-of-service (DoS) condition. Affected products/versions are as follows: CJ2M CPU Unit CJ2M-CPU3[] Unit version of the built-in EtherNet/IP section Ver. 2.18 and earlier, CJ2H CPU Unit CJ2H-CPU6[]-EIP Unit version of the built-in EtherNet/IP section Ver. 3.04 and earlier, CS/CJ Series EtherNet/IP Unit CS1W-EIP21 V3.04 and earlier, and CS/CJ Series EtherNet/IP Unit CJ1W-EIP21 V3.04 and earlier.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T12:40:06.000000Z"}, {"uuid": "b7d54338-8fab-4b8c-a6da-80bf3dd3c9fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38747", "type": "seen", "source": "https://t.me/cibsecurity/67648", "content": "\u203c CVE-2023-38747 \u203c\n\nHeap-based buffer overflow vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T12:40:17.000000Z"}, {"uuid": "544826cf-c03a-44ff-9631-b1e8fef14f35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38746", "type": "seen", "source": "https://t.me/cibsecurity/67643", "content": "\u203c CVE-2023-38746 \u203c\n\nOut-of-bounds read vulnerability/issue exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T12:40:12.000000Z"}, {"uuid": "00ba0902-9513-4c6b-a30d-ea094832b742", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38748", "type": "seen", "source": "https://t.me/cibsecurity/67630", "content": "\u203c CVE-2023-38748 \u203c\n\nUse after free vulnerability exists in CX-Programmer Included in CX-One CXONE-AL[][]D-V4 V9.80 and earlier. By having a user open a specially crafted CXP file, information disclosure and/or arbitrary code execution may occur.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-07T06:19:07.000000Z"}, {"uuid": "2154866d-a3d9-4ebc-b747-f70013d513b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3874", "type": "seen", "source": "https://t.me/cibsecurity/67205", "content": "\u203c CVE-2023-3874 \u203c\n\nA vulnerability, which was classified as critical, was found in Campcodes Beauty Salon Management System 1.0. Affected is an unknown function of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-235236.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-25T07:40:21.000000Z"}, {"uuid": "427d9ddc-40d5-4431-9c1e-48774e930459", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9136", "content": "#exploit\n1. MSIFortune - LPE with MSI Installers\nhttps://badoption.eu/blog/2023/10/03/MSIFortune.html\n\n2. CVE-2023-38743:\nManageEngine ADManager Command Injection\nhttps://github.com/PetrusViet/CVE-2023-38743\n\n3. IOS 17 Crash Exploit\nhttps://github.com/RapierXbox/ESP32-Sour-Apple\n\n4. CVE-2023-4911:\n\"Looney Tunables\"\nLPE in the glibc's ld*so\nhttps://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege-escalation-glibc-ld-so.txt\n]-> https://github.com/RickdeJager/CVE-2023-4911", "creation_timestamp": "2023-10-06T06:39:32.000000Z"}, {"uuid": "354b7531-a643-429d-a070-4a43cf5c2c5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1222", "content": "https://petrusviet.medium.com/cve-2023-38743-manageengine-admanager-command-injection-6afccbb196fe", "creation_timestamp": "2023-10-05T16:38:00.000000Z"}, {"uuid": "fc92cee0-974c-423a-801d-9aa088766d3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38743", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/1252", "content": "#exploit\n1. MSIFortune - LPE with MSI Installers\nhttps://badoption.eu/blog/2023/10/03/MSIFortune.html\n\n2. CVE-2023-38743:\nManageEngine ADManager Command Injection\nhttps://github.com/PetrusViet/CVE-2023-38743\n\n3. IOS17 Crash Exploit\nhttps://github.com/RapierXbox/ESP32-Sour-Apple", "creation_timestamp": "2024-08-16T08:32:27.000000Z"}]}