{"vulnerability": "cve-2023-3997", "sightings": [{"uuid": "7531b469-0c95-4a4a-9133-b839b7e0d350", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39970", "type": "published-proof-of-concept", "source": "https://t.me/t1915t/718", "content": "", "creation_timestamp": "2025-05-01T23:10:05.000000Z"}, {"uuid": "d75f1cac-8668-48a0-b829-e9892f741f6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39970", "type": "published-proof-of-concept", "source": "https://t.me/t1915t/717", "content": "Exploit CVE-2023-39970\n\nFree Tools\nBy 1915 TEAM\nCode By:  Ameer", "creation_timestamp": "2025-05-01T23:10:05.000000Z"}, {"uuid": "ee3b2827-94ce-4155-a196-0c25d17e5eb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39975", "type": "seen", "source": "https://t.me/ctinow/182240", "content": "https://ift.tt/Iv6UHR0\nCVE-2023-39975 | Oracle MySQL Server 8.0.34 and prior/8.1.0 Packaging double free", "creation_timestamp": "2024-02-09T21:01:48.000000Z"}, {"uuid": "8827e7eb-5354-472b-a8d2-487ffae3e8e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39975", "type": "seen", "source": "https://t.me/ctinow/182235", "content": "https://ift.tt/e2s0YML\nCVE-2023-39975 | Oracle MySQL Cluster 8.0.34 and prior/8.1.0 double free", "creation_timestamp": "2024-02-09T20:22:03.000000Z"}, {"uuid": "0745e0c3-29bc-4370-9c92-7d2ceacacd36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39972", "type": "seen", "source": "https://t.me/cibsecurity/68791", "content": "\u203c CVE-2023-39972 \u203c\n\nImproper Access Control vulnerability in AcyMailing Enterprise component for Joomla. It allows unauthorized users to create new mailing lists.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:39.000000Z"}, {"uuid": "0d6ff097-61fa-41e1-a18e-7ce07065dfe8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39971", "type": "seen", "source": "https://t.me/cibsecurity/68801", "content": "\u203c CVE-2023-39971 \u203c\n\nImproper Neutralization of Input During Web Page Generation vulnerability in AcyMailing Enterprise component for Joomla allows XSS. This issue affects AcyMailing Enterprise component for Joomla: 6.7.0-8.6.3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:52.000000Z"}, {"uuid": "56d9da51-a54f-4b45-ba7f-4d4e85146b5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39975", "type": "seen", "source": "https://t.me/cibsecurity/68664", "content": "\u203c CVE-2023-39975 \u203c\n\nkdc/do_tgs_req.c in MIT Kerberos 5 (aka krb5) 1.21 before 1.21.2 has a double free that is reachable if an authenticated user can trigger an authorization-data handling failure. Incorrect data is copied from one ticket to another.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-16T18:52:41.000000Z"}, {"uuid": "841959df-468b-49ae-9367-4514456b54b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39974", "type": "seen", "source": "https://t.me/cibsecurity/68803", "content": "\u203c CVE-2023-39974 \u203c\n\nExposure of Sensitive Information vulnerability in AcyMailing Enterprise component for Joomla. It allows unauthorized actors to get the number of subscribers in a specific list.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:54.000000Z"}, {"uuid": "1f24f790-9647-408c-aa4e-b48637827154", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39973", "type": "seen", "source": "https://t.me/cibsecurity/68794", "content": "\u203c CVE-2023-39973 \u203c\n\nImproper Access Control vulnerability in AcyMailing Enterprise component for Joomla. It allows the unauthorized removal of attachments from campaigns.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:45.000000Z"}, {"uuid": "5ca44cac-8a49-4158-af9d-a46b27fb7dbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39970", "type": "seen", "source": "https://t.me/cibsecurity/68792", "content": "\u203c CVE-2023-39970 \u203c\n\nUnrestricted Upload of File with Dangerous Type vulnerability in AcyMailing component for Joomla. It allows remote code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:40.000000Z"}]}