{"vulnerability": "cve-2023-4532", "sightings": [{"uuid": "db5a7bd9-f652-4e2b-992a-b53fef89f59c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45326", "type": "seen", "source": "https://t.me/cibsecurity/73449", "content": "\u203c CVE-2023-45326 \u203c\n\nOnline Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'email' parameter of the routers/add-users.php resource does not validate the characters received and they are sent unfiltered to the database.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-02T17:22:53.000000Z"}, {"uuid": "d3e857f1-b9f4-4505-9de7-7864da3e7a82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45323", "type": "seen", "source": "https://t.me/cibsecurity/73451", "content": "\u203c CVE-2023-45323 \u203c\n\nOnline Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.\u00c2\u00a0The 'name' parameter of the routers/add-item.php resource does not validate the characters received and they are sent unfiltered to the database.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-02T17:22:58.000000Z"}, {"uuid": "4a03d73d-c839-4a1d-9984-5624c88223fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45329", "type": "seen", "source": "https://t.me/cibsecurity/73450", "content": "\u203c CVE-2023-45329 \u203c\n\nOnline Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'role' parameter of the routers/add-users.php resource does not validate the characters received and they are sent unfiltered to the database.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-02T17:22:57.000000Z"}, {"uuid": "d6f8a59f-fb28-4f33-9ce9-4aa469cbb7ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45328", "type": "seen", "source": "https://t.me/cibsecurity/73448", "content": "\u203c CVE-2023-45328 \u203c\n\nOnline Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'password' parameter of the routers/add-users.php resource does not validate the characters received and they are sent unfiltered to the database.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-02T17:22:53.000000Z"}, {"uuid": "4106c446-17d5-44f5-9c49-82674c802328", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4532", "type": "seen", "source": "https://t.me/cibsecurity/71252", "content": "\u203c CVE-2023-4532 \u203c\n\nAn issue has been discovered in GitLab affecting all versions starting from 16.2 before 16.2.8, all versions starting from 16.3 before 16.3.5, all versions starting from 16.4 before 16.4.1. Users were capable of linking CI/CD jobs of private projects which they are not a member of.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T12:37:29.000000Z"}]}