{"vulnerability": "CVE-2023-24610", "sightings": [{"uuid": "7c6d05f0-9fdb-420c-908f-e3e60a802b32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24610", "type": "seen", "source": "https://t.me/cibsecurity/57298", "content": "\u203c CVE-2023-24610 \u203c\n\nNOSH 4a5cfdb allows remote authenticated users to execute PHP arbitrary code via the \"practice logo\" upload feature. The client-side checks can be bypassed. This may allow attackers to steal Protected Health Information because the product is for health charting.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-01T16:14:25.000000Z"}, {"uuid": "51806dc9-3ea7-4553-9fe7-85410d4cd188", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24610", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3735", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aThis is a proof of concept for CVE-2023-24610\nURL\uff1ahttps://github.com/abbisQQ/CVE-2023-24610\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-02-01T16:32:22.000000Z"}, {"uuid": "e218cb24-eaea-4fcb-93c2-9fc3bf26bc7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-24610", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2618", "content": "#CVE-2023\nThis is a proof of concept for CVE-2023-24610\n\nhttps://github.com/abbisQQ/CVE-2023-24610\n\nCVE-2023-23924 PoC\n\nhttps://github.com/motikan2010/CVE-2023-23924\n\nCVE-2023-23924 PoC\n\nhttps://github.com/Live-Hack-CVE/CVE-2023-20916\n\nCVE-2023-23924 PoC\n\nhttps://github.com/Live-Hack-CVE/CVE-2023-22664\n\n@BlueRedTeam", "creation_timestamp": "2023-03-09T08:14:27.000000Z"}]}