{"vulnerability": "CVE-2023-2392", "sightings": [{"uuid": "47d1e780-bc82-46d4-b264-360fa9e4a4f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "seen", "source": "https://t.me/cKure/11086", "content": "To exploit CVE-2023-23924. An SVG contacting image tag with capitalized letters is sufficient.", "creation_timestamp": "2023-06-07T18:04:16.000000Z"}, {"uuid": "18887e83-5eef-481e-b40c-35c143c06759", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "seen", "source": "https://t.me/cKure/11085", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 CVE-2023-23924: Dompdf up to 2.0.1 on PHP7 SVG Parser deserialization restoring in RCE.", "creation_timestamp": "2023-06-07T18:01:31.000000Z"}, {"uuid": "ea3df662-4b76-4cdf-b1fc-26040ec1673c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3737", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-23924 PoC\nURL\uff1ahttps://github.com/motikan2010/CVE-2023-23924\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-02-01T18:35:28.000000Z"}, {"uuid": "a6b1e73f-45c7-4c26-aac5-1bbdedc1e51b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3739", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-23924 PoC\nURL\uff1ahttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-02-01T20:21:44.000000Z"}, {"uuid": "e87ec2f3-3847-4b5a-a599-70220059f474", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3740", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-23924 PoC\nURL\uff1ahttps://github.com/Live-Hack-CVE/CVE-2023-22664\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-02-01T20:33:33.000000Z"}, {"uuid": "ad3b0a52-eba6-42f4-8050-29d5242e6206", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23927", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5303", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23927\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: Craft is a platform for creating digital experiences. When you insert a payload inside a label name or instruction of an entry type, an cross-site scripting (XSS) happens in the quick post widget on the admin dashboard. This issue has been fixed in version 4.3.7.\n\n\ud83d\udccf Published: 2023-03-03T21:58:26.183Z\n\ud83d\udccf Modified: 2025-02-25T15:02:32.273Z\n\ud83d\udd17 References:\n1. https://github.com/craftcms/cms/security/advisories/GHSA-qcrj-6ffc-v7hq\n2. https://github.com/craftcms/cms/blob/develop/CHANGELOG.md#437---2023-02-03\n3. https://user-images.githubusercontent.com/53917092/215604129-d5b75608-5a24-4eb3-906f-55b192310298.mp4", "creation_timestamp": "2025-02-25T15:23:25.000000Z"}, {"uuid": "5d1e3d35-8681-46af-b7ec-e803279a6fa3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23929", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/5309", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-23929\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0.\n\n\ud83d\udccf Published: 2023-03-03T23:37:50.748Z\n\ud83d\udccf Modified: 2025-02-25T15:02:00.830Z\n\ud83d\udd17 References:\n1. https://github.com/vantage6/vantage6/security/advisories/GHSA-4w59-c3gc-rrhp\n2. https://github.com/vantage6/vantage6/commit/48ebfca42359e9a6743e9598684585e2522cdce8", "creation_timestamp": "2025-02-25T15:23:30.000000Z"}, {"uuid": "cbe46511-cbeb-4c87-8bbe-b47edf72a58b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "seen", "source": "https://t.me/proxy_bar/1350", "content": "CVE-2023-23924  \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0430 Dompdf - RCE\nCVSS score: 10 !!!\n\u041a\u043e\u043d\u043a\u0440\u0435\u0442\u043d\u0435\u0435 \u043e \u0434\u044b\u0440\u043a\u0435 \u0442\u0443\u0442\n\n#php #vuln #poc", "creation_timestamp": "2023-02-01T05:35:13.000000Z"}, {"uuid": "7e216dd7-9282-4846-8762-06ee4a6c7956", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2392", "type": "seen", "source": "https://t.me/cibsecurity/63097", "content": "\u203c CVE-2023-2392 \u203c\n\nA vulnerability was found in Netgear SRX5308 up to 4.3.5-3. It has been classified as problematic. Affected is an unknown function of the file scgi-bin/platform.cgi?page=time_zone.htm of the component Web Management Interface. The manipulation of the argument ManualDate.minutes leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-227670 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-29T00:27:39.000000Z"}, {"uuid": "6e47da3b-84f4-4a3a-b8db-b6e898fa016d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23929", "type": "seen", "source": "https://t.me/cibsecurity/59416", "content": "\u203c CVE-2023-23929 \u203c\n\nvantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. Currently, the refresh token is valid indefinitely. The refresh token should get a validity of 24-48 hours. A fix was released in version 3.8.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-04T02:35:42.000000Z"}, {"uuid": "81244b61-daf6-42ce-b04d-25d28b9cf3e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23927", "type": "seen", "source": "https://t.me/cibsecurity/59402", "content": "\u203c CVE-2023-23927 \u203c\n\nCraft is a platform for creating digital experiences. When you insert a payload inside a label name or instruction of an entry type, an cross-site scripting (XSS) happens in the quick post widget on the admin dashboard. This issue has been fixed in version 4.3.7.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-04T00:35:26.000000Z"}, {"uuid": "82160b1e-b298-4381-b77f-90908379f014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23925", "type": "seen", "source": "https://t.me/cibsecurity/57505", "content": "\u203c CVE-2023-23925 \u203c\n\nSwitcher Client is a JavaScript SDK to work with Switcher API which is cloud-based Feature Flag. Unsanitized input flows into Strategy match operation (EXIST), where it is used to build a regular expression. This may result in a Regular expression Denial of Service attack (reDOS). This issue has been patched in version 3.1.4. As a workaround, avoid using Strategy settings that use REGEX in conjunction with EXIST and NOT_EXIST operations.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-03T22:20:56.000000Z"}, {"uuid": "d8d7a1d1-6f68-4655-8b2c-3956051cedad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23920", "type": "seen", "source": "https://t.me/cibsecurity/58809", "content": "\u203c CVE-2023-23920 \u203c\n\nAn untrusted search path vulnerability exists in Node.js. <19.6.1, <18.14.1, <16.19.1, and <14.21.3 that could allow an attacker to search and potentially load ICU data when running with elevated privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-23T22:18:31.000000Z"}, {"uuid": "95f1b8a6-22d0-43e6-b198-3eab27980095", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23926", "type": "seen", "source": "https://t.me/cibsecurity/58330", "content": "\u203c CVE-2023-23926 \u203c\n\nAPOC (Awesome Procedures on Cypher) is an add-on library for Neo4j. An XML External Entity (XXE) vulnerability found in the apoc.import.graphml procedure of APOC core plugin prior to version 5.5.0 in Neo4j graph database. XML External Entity (XXE) injection occurs when the XML parser allows external entities to be resolved. The XML parser used by the apoc.import.graphml procedure was not configured in a secure way and therefore allowed this. External entities can be used to read local files, send HTTP requests, and perform denial-of-service attacks on the application. Abusing the XXE vulnerability enabled assessors to read local files remotely. Although with the level of privileges assessors had this was limited to one-line files. With the ability to write to the database, any file could have been read. Additionally, assessors noted, with local testing, the server could be crashed by passing in improperly formatted XML. The minimum version containing a patch for this vulnerability is 5.5.0. Those who cannot upgrade the library can control the allowlist of the procedures that can be used in your system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-16T18:12:38.000000Z"}, {"uuid": "0a4cdabc-1a07-4393-aca4-50060b7e0fbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23928", "type": "seen", "source": "https://t.me/cibsecurity/57237", "content": "\u203c CVE-2023-23928 \u203c\n\nreason-jose is a JOSE implementation in ReasonML and OCaml.`Jose.Jws.validate` does not check HS256 signatures. This allows tampering of JWS header and payload data if the service does not perform additional checks. Such tampering could expose applications using reason-jose to authorization bypass. Applications relying on JWS claims assertion to enforce security boundaries may be vulnerable to privilege escalation. This issue has been patched in version 0.8.2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-01T07:13:49.000000Z"}, {"uuid": "5e40dee7-6fee-456d-b0ce-3e34b7a4213e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2618", "content": "#CVE-2023\nThis is a proof of concept for CVE-2023-24610\n\nhttps://github.com/abbisQQ/CVE-2023-24610\n\nCVE-2023-23924 PoC\n\nhttps://github.com/motikan2010/CVE-2023-23924\n\nCVE-2023-23924 PoC\n\nhttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\nCVE-2023-23924 PoC\n\nhttps://github.com/Live-Hack-CVE/CVE-2023-22664\n\n@BlueRedTeam", "creation_timestamp": "2023-03-09T08:14:27.000000Z"}, {"uuid": "d844c61b-d068-4fc5-a304-b6a01402d590", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2623", "content": "#CVE-2023\n\nCVE-2023-23924 PoC\nhttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\nCVE-2023-23924 PoC\nhttps://github.com/Live-Hack-CVE/CVE-2023-22664\n\n\nAdobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit\nhttps://github.com/hacksysteam/CVE-2023-21608\n\n@BlueRedTeam", "creation_timestamp": "2023-03-17T09:11:32.000000Z"}, {"uuid": "5b6d51dc-e111-478d-8294-803069fd5869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-23924", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/7674", "content": "#exploit\n1. CVE-2022-4510, CVE-2023-0591,\nCVE-2023-0592, CVE-2023-0593:\nRCE in ReFirm Labs binwalk\nhttps://onekey.com/blog/security-advisory-remote-command-execution-in-binwalk\n\n2. CVE-2023-23924:\nCritical-Severity RCE Flaw Found in Dompdf Library\nhttps://securityonline.info/cve-2023-23924-critical-severity-rce-flaw-found-in-popular-dompdf-library", "creation_timestamp": "2023-02-02T11:01:01.000000Z"}, {"uuid": "6acaceb2-a272-4696-b6f7-d73a6e46fdfb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2023-23924", "type": "published-proof-of-concept", "source": "https://github.com/dompdf/dompdf/security/advisories/GHSA-3cw5-7cxw-v5qg", "content": "", "creation_timestamp": "2023-01-31T13:33:16.000000Z"}]}