{"vulnerability": "CVE-2023-23078", "sightings": [{"uuid": "5ac78c6f-9a13-4c09-9b6d-5fbb6b0394d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23078", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9099", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23078\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Cross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.\n\ud83d\udccf Published: 2023-02-01T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-27T14:19:08.435Z\n\ud83d\udd17 References:\n1. https://bugbounty.zohocorp.com/bb/#/bug/101000006458675?tab=originator\n2. https://www.manageengine.com/products/service-desk/CVE-2023-23078.html", "creation_timestamp": "2025-03-27T14:27:38.000000Z"}, {"uuid": "fdc255f9-8f38-4da4-8caa-d2f935019597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23078", "type": "seen", "source": "https://t.me/cibsecurity/57340", "content": "\u203c CVE-2023-23078 \u203c\n\nCross site scripting (XSS) vulnerability in Zoho ManageEngine ServiceDesk Plus 14 via the comment field when changing the credentials in the Assets.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-01T22:14:12.000000Z"}]}