{"vulnerability": "CVE-2023-2368", "sightings": [{"uuid": "4d2adc1f-46b0-450f-a668-5678d7aa9e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2368", "type": "seen", "source": "https://t.me/cibsecurity/63048", "content": "\u203c CVE-2023-2368 \u203c\n\nA vulnerability was found in SourceCodester Faculty Evaluation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php?page=manage_questionnaire. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-227644.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-28T16:27:24.000000Z"}, {"uuid": "5c11e968-40e1-4cc0-ba1a-bc4092584b00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23688", "type": "seen", "source": "https://t.me/cibsecurity/64107", "content": "\u203c CVE-2023-23688 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Sumo Social Share Boost plugin &lt;=\u00c2\u00a04.4 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:39:59.000000Z"}, {"uuid": "edb63dff-eabb-449c-9306-4d2cad344ef8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23680", "type": "seen", "source": "https://t.me/cibsecurity/64511", "content": "\u203c CVE-2023-23680 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Bob Goetz WP-TopBar plugin &lt;=\u00c2\u00a05.36 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T12:25:36.000000Z"}, {"uuid": "81305d3a-4995-4d69-bad5-3e0f3fb8ef1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23689", "type": "seen", "source": "https://t.me/cibsecurity/59132", "content": "\u203c CVE-2023-23689 \u203c\n\nDell PowerScale nodes A200, A2000, H400, H500, H600, H5600, F800, F810 integrated hardware management software contains an uncontrolled resource consumption vulnerability. This may allow an unauthenticated network host to impair built-in hardware management functionality and trigger OneFS data protection mechanism causing a denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-28T20:28:00.000000Z"}, {"uuid": "8e72aea2-cc9a-407f-9e0f-c76a2b252d3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23681", "type": "seen", "source": "https://t.me/cibsecurity/61170", "content": "\u203c CVE-2023-23681 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Labib Ahmed Image Hover Effects For WPBakery Page Builder plugin &lt;= 4.0 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-30T16:26:19.000000Z"}, {"uuid": "be4348b5-98da-4998-8edb-9f57a49f3139", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23685", "type": "seen", "source": "https://t.me/cibsecurity/61384", "content": "\u203c CVE-2023-23685 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in RadiusTheme Portfolio \u00e2\u20ac\u201c WordPress Portfolio plugin &lt;= 2.8.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-04T16:30:35.000000Z"}, {"uuid": "5f70e8f8-cc6e-4d81-9cdc-ead04ad871d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23686", "type": "seen", "source": "https://t.me/cibsecurity/61383", "content": "\u203c CVE-2023-23686 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Brett Shumaker Simple Staff List plugin &lt;= 2.2.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-04T16:30:34.000000Z"}, {"uuid": "6ecf3546-7700-4b4e-a5ec-dbff239b971f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23687", "type": "seen", "source": "https://t.me/cibsecurity/56864", "content": "\u203c CVE-2023-23687 \u203c\n\nAuth. Stored Cross-Site Scripting (XSS) vulnerability in Youtube shortcode &lt;= 1.8.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-23T20:24:02.000000Z"}]}