{"vulnerability": "CVE-2023-2271", "sightings": [{"uuid": "3a230e86-2def-476b-9876-2632d35be9c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2271", "type": "seen", "source": "https://t.me/cibsecurity/68636", "content": "\u203c CVE-2023-2271 \u203c\n\nThe Tiempo.com WordPress plugin through 0.1.2 does not have CSRF check when deleting its shortcode, which could allow attackers to make logged in admins delete arbitrary shortcode via a CSRF attack\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-16T16:47:25.000000Z"}, {"uuid": "df5e92d0-dbad-4fe2-83d6-441d4bc0289b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22717", "type": "seen", "source": "https://t.me/cibsecurity/64127", "content": "\u203c CVE-2023-22717 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in nCrafts FormCraft plugin <=\u00c2\u00a01.2.6 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:43:20.000000Z"}, {"uuid": "1c5fbc36-ca7a-419d-95c3-dc2bb18523bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22711", "type": "seen", "source": "https://t.me/cibsecurity/63726", "content": "\u203c CVE-2023-22711 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Agent Evolution IMPress Listings plugin <=\u00c2\u00a02.6.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-10T12:20:27.000000Z"}, {"uuid": "fe3e9355-c244-408d-b1b3-478f1408b493", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22713", "type": "seen", "source": "https://t.me/cibsecurity/63220", "content": "\u203c CVE-2023-22713 \u203c\n\nAuth. (contributor+) Cross-Site Scripting (XSS) vulnerability in WordPress Download Manager Gutenberg Blocks by WordPress Download Manager plugin <=\u00c2\u00a02.1.8 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-03T16:30:56.000000Z"}, {"uuid": "c4026dd4-4260-4b50-a08d-4308205b79bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22710", "type": "seen", "source": "https://t.me/cibsecurity/63531", "content": "\u203c CVE-2023-22710 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in chilidevs Return and Warranty Management System for WooCommerce plugin <=\u00c2\u00a01.2.3 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T02:37:58.000000Z"}, {"uuid": "bc93f297-c079-425c-95fd-e8d1c7949843", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22714", "type": "seen", "source": "https://t.me/cibsecurity/64501", "content": "\u203c CVE-2023-22714 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Supsystic Coming Soon by Supsystic plugin <=\u00c2\u00a01.7.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T12:25:21.000000Z"}, {"uuid": "787030b4-9598-4e6b-b3b9-b33e43196756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22716", "type": "seen", "source": "https://t.me/cibsecurity/60572", "content": "\u203c CVE-2023-22716 \u203c\n\nAuth. (admin+) Cross-Site Scripting vulnerability in OOPSpam OOPSpam Anti-Spam plugin <= 1.1.35 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-23T17:41:46.000000Z"}, {"uuid": "775f151d-cadb-4988-8120-600ab62a0455", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22712", "type": "seen", "source": "https://t.me/cibsecurity/60571", "content": "\u203c CVE-2023-22712 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in TemplatesNext TemplatesNext ToolKit plugin <= 3.2.7 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-23T17:41:45.000000Z"}, {"uuid": "fe5e8ee7-acf7-4897-b51d-f6e96d786ea3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-22715", "type": "seen", "source": "https://t.me/cibsecurity/60580", "content": "\u203c CVE-2023-22715 \u203c\n\nAuth. (admin+) Cross-Site Scripting (XSS) vulnerability in Lester 'GaMerZ' Chan WP-CommentNavi plugin <= 1.12.1 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-23T17:41:56.000000Z"}]}