{"vulnerability": "cve-2023-4397", "sightings": [{"uuid": "99c21676-360f-4f16-9fc3-9ba11552464c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43971", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8119", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-43971\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Cross Site Scripting vulnerability in ACG-faka v1.1.7 allows a remote attacker to execute arbitrary code via the encode parameter in Index.php.\n\ud83d\udccf Published: 2024-07-17T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-19T17:49:54.798Z\n\ud83d\udd17 References:\n1. https://github.com/lizhipay/acg-faka/issues/72\n2. https://gist.github.com/N0boy-0/7251856fed517eb6358d8cae03099b7b", "creation_timestamp": "2025-03-19T18:19:41.000000Z"}, {"uuid": "0520e44a-5498-474f-ac09-56d9f819c4f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43971", "type": "seen", "source": "https://t.me/cvedetector/1128", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-43971 - ACG-Faka Cross Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2023-43971 \nPublished : July 17, 2024, 10:15 p.m. | 38\u00a0minutes ago \nDescription : Cross Site Scripting vulnerability in ACG-faka v1.1.7 allows a remote attacker to execute arbitrary code via the encode parameter in Index.php. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-18T00:55:03.000000Z"}, {"uuid": "a0b552d1-6749-45f7-9d4a-4251a8fbb084", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43976", "type": "seen", "source": "https://t.me/cibsecurity/71519", "content": "\u203c CVE-2023-43976 \u203c\n\nAn issue in CatoNetworks CatoClient before v.5.4.0 allows attackers to escalate privileges and winning the race condition (TOCTOU) via the PrivilegedHelperTool component.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-04T09:50:08.000000Z"}]}