{"vulnerability": "CVE-2023-2258", "sightings": [{"uuid": "416064b4-1764-422f-9ac0-25a406e06d36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22581", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7140", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-22581\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: White Rabbit Switch contains a vulnerability which makes it possible for an attacker\u00a0to perform system commands under the context of the web application (the default\u00a0installation makes the webserver run as the root user).\n\ud83d\udccf Published: 2023-04-24T08:14:53.037Z\n\ud83d\udccf Modified: 2025-03-11T13:07:29.325Z\n\ud83d\udd17 References:\n1. https://csirt.divd.nl/CVE-2023-22581/\n2. https://csirt.divd.nl/DIVD-2022-00068/", "creation_timestamp": "2025-03-11T13:39:59.000000Z"}, {"uuid": "c41365ec-9bac-4ab5-9a86-35e97add45dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22584", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/922", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-22584\n\ud83d\udd39 Description: The Danfoss AK-EM100 stores login credentials in cleartext.\n\ud83d\udccf Published: 2023-06-11T13:17:01.948Z\n\ud83d\udccf Modified: 2025-01-09T07:56:42.422Z\n\ud83d\udd17 References:\n1. https://csirt.divd.nl/CVE-2023-22584/\n2. https://csirt.divd.nl/DIVD-2023-00021/", "creation_timestamp": "2025-01-09T08:17:42.000000Z"}, {"uuid": "808e3cf2-5299-4fce-bcd4-f053fcbbbf96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22586", "type": "seen", "source": "https://t.me/cibsecurity/65125", "content": "\u203c CVE-2023-22586 \u203c\n\nThe Danfoss AK-EM100 web applications allow for Local File Inclusion in the file parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-11T18:33:25.000000Z"}, {"uuid": "6d609d58-f753-40e7-b1cd-bb8fe92c7a12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2258", "type": "seen", "source": "https://t.me/cibsecurity/62774", "content": "\u203c CVE-2023-2258 \u203c\n\nImproper Neutralization of Formula Elements in a CSV File in GitHub repository alfio-event/alf.io prior to 2.0-M4-2304.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-25T00:19:40.000000Z"}, {"uuid": "1a118513-f7d3-45fb-8897-23746dee2342", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22580", "type": "seen", "source": "https://t.me/cibsecurity/58331", "content": "\u203c CVE-2023-22580 \u203c\n\nDue to improper input filtering in the sequalize js library, can malicious queries lead to sensitive information disclosure.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-16T18:12:39.000000Z"}]}