{"vulnerability": "cve-2023-4631", "sightings": [{"uuid": "e6fb703b-db7d-4b3c-ad77-db9e574e5dea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-46316", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "f98eed0a-3f38-41e7-9e4e-7e8836a62d4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4631", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5194", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aRepository for CVE-2023-4631 vulnerability. \nURL\uff1ahttps://github.com/b0marek/CVE-2023-4631\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-09-24T08:44:50.000000Z"}, {"uuid": "c7b87b14-78f7-4de2-9154-d201d180e2a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46316", "type": "seen", "source": "https://t.me/arpsyndicate/737", "content": "#ExploitObserverAlert\n\nCVE-2023-46316\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-46316. In buc Traceroute 2.0.12 through 2.1.2 before 2.1.3, the wrapper scripts do not properly parse command lines.\n\nFIRST-EPSS: 0.000430000\nNVD-IS: 3.6\nNVD-ES: 1.8", "creation_timestamp": "2023-11-29T12:57:36.000000Z"}, {"uuid": "584c3c2a-9c1e-4c3f-9c8d-3a28e82c77e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46311", "type": "seen", "source": "https://t.me/ctinow/157080", "content": "https://ift.tt/YVxTi7P\nCVE-2023-46311", "creation_timestamp": "2023-12-20T15:23:31.000000Z"}, {"uuid": "16aab8ad-8166-4bb6-b2eb-6304c2c48d7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4631", "type": "seen", "source": "https://t.me/arpsyndicate/1792", "content": "#ExploitObserverAlert\n\nCVE-2023-4631\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-4631. The DoLogin Security WordPress plugin before 3.7 uses headers such as the X-Forwarded-For to retrieve the IP address of the request, which could lead to IP spoofing.\n\nFIRST-EPSS: 0.000460000\nNVD-IS: 1.4\nNVD-ES: 3.9", "creation_timestamp": "2023-12-12T02:06:45.000000Z"}, {"uuid": "1f2d9701-0933-4158-b156-678e0e7f86f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46316", "type": "published-proof-of-concept", "source": "https://t.me/hackingbra/78", "content": "CVE-2023-46316:\nTraceroute Privilege Escalation\nhttps://packetstormsecurity.com/files/176660/Traceroute-2.1.2-Privilege-Escalation.html\n\nLinux Kernel GSM Multiplexing Race Condition LPE Vulnerability\nhttps://github.com/Nassim-Asrir/ZDI-24-020\n]-> scripts for automatically extracting symbol offsets for Ubuntu/CentOS/RHEL kernels:\nhttps://github.com/Nassim-Asrir/ZDI-24-020/tree/main/symbols", "creation_timestamp": "2024-01-23T18:51:28.000000Z"}, {"uuid": "5b8ae215-cfe8-450c-8034-fd3fe61f66c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46316", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9835", "content": "#exploit\n1. CVE-2023-46316:\nTraceroute Privilege Escalation\nhttps://packetstormsecurity.com/files/176660/Traceroute-2.1.2-Privilege-Escalation.html\n\n2. CVE-2023-6546:\nLinux Kernel GSM Multiplexing Race Condition LPE Vulnerability\nhttps://github.com/Nassim-Asrir/ZDI-24-020\n]-> scripts for automatically extracting symbol offsets for Ubuntu/CentOS/RHEL kernels:\nhttps://github.com/Nassim-Asrir/ZDI-24-020/tree/main/symbols", "creation_timestamp": "2025-04-24T03:08:34.000000Z"}, {"uuid": "e723d358-12a5-4690-8b42-27aea79e4a71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46317", "type": "seen", "source": "https://t.me/cibsecurity/72751", "content": "\u203c CVE-2023-46317 \u203c\n\nKnot Resolver before 5.7.0 performs many TCP reconnections upon receiving certain nonsensical responses from servers.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-23T02:37:09.000000Z"}, {"uuid": "d376566f-4a84-48ac-ae3f-45ccb7989008", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46315", "type": "seen", "source": "https://t.me/cibsecurity/72755", "content": "\u203c CVE-2023-46315 \u203c\n\nThe zanllp sd-webui-infinite-image-browsing (aka Infinite Image Browsing) extension before 977815a for stable-diffusion-webui (aka Stable Diffusion web UI), if Gradio authentication is enabled without secret key configuration, allows remote attackers to read any local file via /file?path= in the URL, as demonstrated by reading /proc/self/environ to discover credentials.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-23T02:37:13.000000Z"}, {"uuid": "e4cb73ad-8cd1-4ef6-9bf0-fbf342b5ba2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46311", "type": "seen", "source": "https://t.me/ctinow/167830", "content": "https://ift.tt/wrb5inz\nCVE-2023-46311 | gVectors Team Comments wpDiscuz Plugin up to 7.6.3 on WordPress authorization", "creation_timestamp": "2024-01-13T14:21:21.000000Z"}, {"uuid": "51d711d6-b313-4ce5-be44-e7d39a068d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-46316", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2557", "content": "#exploit\n1. CVE-2023-46316:\nTraceroute Privilege Escalation\nhttps://packetstormsecurity.com/files/176660/Traceroute-2.1.2-Privilege-Escalation.html\n\n2. CVE-2023-6546:\nLinux Kernel GSM Multiplexing Race Condition LPE Vulnerability\nhttps://github.com/Nassim-Asrir/ZDI-24-020\n]-> scripts for automatically extracting symbol offsets for Ubuntu/CentOS/RHEL kernels:\nhttps://github.com/Nassim-Asrir/ZDI-24-020/tree/main/symbols", "creation_timestamp": "2024-08-16T09:02:40.000000Z"}]}