{"vulnerability": "CVE-2023-2437", "sightings": [{"uuid": "83d20f93-8f0f-4e72-9310-257351a5a09a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2437", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m4jermq6vq2b", "content": "", "creation_timestamp": "2025-10-31T21:02:44.412843Z"}, {"uuid": "f6cd36d1-72b6-410f-9c63-93bba6be8c86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2437", "type": "published-proof-of-concept", "source": "https://t.me/v3n0mhack/322", "content": "UserPro &lt;= 5.1.1 \u2013 Authentication Bypass to Administrator\nCVE-2023-2437\ud83e\udd2d", "creation_timestamp": "2024-03-03T14:37:37.000000Z"}, {"uuid": "d0811143-da67-42f4-80b3-d373d8b7499a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2437", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mj3pexyr4y2p", "content": "", "creation_timestamp": "2026-04-09T21:02:35.902306Z"}, {"uuid": "bced2e0a-30a9-4a45-9e2b-6a187e9862fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24378", "type": "seen", "source": "https://t.me/cibsecurity/61564", "content": "\u203c CVE-2023-24378 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Codeat Glossary plugin &lt;= 2.1.27 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-06T18:27:13.000000Z"}, {"uuid": "a4129a5a-6368-4504-a8c2-51924a21839f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24376", "type": "seen", "source": "https://t.me/cibsecurity/63530", "content": "\u203c CVE-2023-24376 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability\u00c2\u00a0in Nico Graff WP Simple Events plugin &lt;=\u00c2\u00a01.0 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T02:37:57.000000Z"}, {"uuid": "5af73317-4f9d-4444-b64a-7a162b0d7339", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24374", "type": "seen", "source": "https://t.me/cibsecurity/61561", "content": "\u203c CVE-2023-24374 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Photon WP Material Design Icons for Page Builders plugin &lt;= 1.4.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-06T18:27:10.000000Z"}, {"uuid": "dfbde528-e4ff-4091-a8cc-19f9733f9d20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24372", "type": "seen", "source": "https://t.me/cibsecurity/63577", "content": "\u203c CVE-2023-24372 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in USB Memory Direct Simple Custom Author Profiles plugin &lt;=\u00c2\u00a01.0.0 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-09T14:38:25.000000Z"}, {"uuid": "b7d05b4a-6851-4d9f-b5ca-dddfd425ad12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2437", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/9447", "content": "#exploit\n1. CVE-2023-2437, CVE-2023-2446,\nCVE-2023-2448, CVE-2023-2449, CVE-2023-6009:\nWordPress UserPro 5.1.x - Password Reset / Authentication Bypass / Escalation\nhttps://packetstormsecurity.com/files/175871/WordPress-UserPro-5.1.x-Password-Reset-Authentication-Bypass-Escalation.html\n\n2. CVE-2023-4211:\nUaF in ARM Mali GPU Driver\nhttps://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2023/CVE-2023-4211.html", "creation_timestamp": "2023-11-23T10:58:01.000000Z"}, {"uuid": "914ff1a6-0416-44fe-bfda-a171f1d43527", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2437", "type": "seen", "source": "https://t.me/Rootsec_2/2051", "content": "#exploit\n1. CVE-2023-2437, CVE-2023-2446,\nCVE-2023-2448, CVE-2023-2449, CVE-2023-6009:\nWordPress UserPro 5.1.x - Password Reset / Authentication Bypass / Escalation\nhttps://packetstormsecurity.com/files/175871/WordPress-UserPro-5.1.x-Password-Reset-Authentication-Bypass-Escalation.html\n\n2. CVE-2023-4211:\nUaF in ARM Mali GPU Driver\nhttps://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2023/CVE-2023-4211.html", "creation_timestamp": "2024-08-16T08:51:14.000000Z"}, {"uuid": "6893190b-754e-466f-b966-2582a09143ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2437", "type": "seen", "source": "https://t.me/Rootsec_2/1998", "content": "#exploit\n1. CVE-2023-2437, CVE-2023-2446,\nCVE-2023-2448, CVE-2023-2449, CVE-2023-6009:\nWordPress UserPro 5.1.x - Password Reset / Authentication Bypass / Escalation\nhttps://packetstormsecurity.com/files/175871/WordPress-UserPro-5.1.x-Password-Reset-Authentication-Bypass-Escalation.html\n\n2. CVE-2023-4211:\nUaF in ARM Mali GPU Driver\nhttps://googleprojectzero.github.io/0days-in-the-wild//0day-RCAs/2023/CVE-2023-4211.html", "creation_timestamp": "2024-08-16T08:51:05.000000Z"}]}