{"vulnerability": "cve-2023-38759", "sightings": [{"uuid": "3922995b-5d5b-4069-8a99-0dd9cb0c0a01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-38759", "type": "seen", "source": "https://t.me/cibsecurity/68007", "content": "\u203c CVE-2023-38759 \u203c\n\nCross Site Request Forgery (CSRF) vulnerability in wger Project wger Workout Manager 2.2.0a3 allows a remote attacker to gain privileges via the user-management feature in the gym/views/gym.py, templates/gym/reset_user_password.html, templates/user/overview.html, core/views/user.py, and templates/user/preferences.html, core/forms.py components.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-08T20:14:20.000000Z"}]}