{"vulnerability": "CVE-2023-2722", "sightings": [{"uuid": "0ca9b913-5b34-472b-b7aa-665fc9729289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27225", "type": "seen", "source": "https://t.me/cibsecurity/66034", "content": "\u203c CVE-2023-27225 \u203c\n\nA cross-site scripting (XSS) vulnerability in User Registration &amp; Login and User Management System with Admin Panel v3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the first and last name field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-06T07:32:26.000000Z"}, {"uuid": "525103e8-aefc-44ed-b156-7eb5cab4f3af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27229", "type": "seen", "source": "Telegram/Yk_oAfl37ZDG9pLANvF9lLNBUMSSbiYVpR0pILKpv5cfnKQ1", "content": "", "creation_timestamp": "2025-02-18T23:42:23.000000Z"}, {"uuid": "fb28614c-d942-4348-b02f-ff6faf3688db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27224", "type": "seen", "source": "https://t.me/cibsecurity/60521", "content": "\u203c CVE-2023-27224 \u203c\n\nAn issue found in NginxProxyManager v.2.9.19 allows an attacker to execute arbitrary code via a lua script to the configuration file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-22T23:36:05.000000Z"}, {"uuid": "56b0a6f4-63c2-461c-9c55-bf77756f9450", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2722", "type": "seen", "source": "https://t.me/cibsecurity/64254", "content": "\u203c CVE-2023-2722 \u203c\n\nUse after free in Autofill UI in Google Chrome on Android prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-16T22:30:47.000000Z"}, {"uuid": "9e6c0c06-1963-4a55-a2ae-c06893a6dd9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27229", "type": "seen", "source": "https://t.me/cibsecurity/60988", "content": "\u203c CVE-2023-27229 \u203c\n\nTOTOlink A7100RU V7.4cu.2313_B20191024 was discovered to contain a command injection vulnerability via the upBw parameter at /setting/setWanIeCfg.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-29T02:14:53.000000Z"}]}