{"vulnerability": "CVE-2023-1381", "sightings": [{"uuid": "40c4fa50-50a2-479e-9299-ad60925a4dee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1381", "type": "seen", "source": "https://t.me/cibsecurity/61766", "content": "\u203c CVE-2023-1381 \u203c\n\nThe WP Meta SEO WordPress plugin before 4.5.5 does not validate image file paths before attempting to manipulate the image files, leading to a PHAR deserialization vulnerability. Furthermore, the plugin contains a gadget chain which may be used in certain configurations to achieve remote code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-10T18:36:08.000000Z"}, {"uuid": "3e820ad0-62ef-4c36-91a1-f6f3a1631dba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-1381", "type": "seen", "source": "Telegram/4L6HqWQhJXhmNMVg9OZgAVCHfLE4z2mHXVJEGuoxEYVyC3Mm", "content": "", "creation_timestamp": "2025-02-14T10:03:11.000000Z"}]}