{"vulnerability": "CVE-2023-2724", "sightings": [{"uuid": "a52a8b8e-22f0-49ab-a64a-d175ad6b997a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27247", "type": "seen", "source": "Telegram/mDW1yT5IA90kxTeVl_qHyKDk0RW1BmgT_OXUbvVVjJEoKmgK", "content": "", "creation_timestamp": "2025-02-18T23:42:23.000000Z"}, {"uuid": "652673ee-4fbf-4fac-9382-3f629947d1ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27240", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:12:57.000000Z"}, {"uuid": "72973356-dc93-464d-a5b0-7c25a3c5b44b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27246", "type": "seen", "source": "Telegram/jvP52WtD74nH5X51KfaApqekIO7OKDP5wLxcC-rZQHsCSWlW", "content": "", "creation_timestamp": "2025-02-18T23:42:22.000000Z"}, {"uuid": "4c85190a-ede1-4a42-ad4f-8efa5d21c16b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-2724", "type": "seen", "source": "https://t.me/cibsecurity/64257", "content": "\u203c CVE-2023-2724 \u203c\n\nType confusion in V8 in Google Chrome prior to 113.0.5672.126 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-16T22:30:50.000000Z"}, {"uuid": "ba95f9c9-15e5-4773-8cb7-7a77e4287a92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27245", "type": "seen", "source": "https://t.me/cibsecurity/60806", "content": "\u203c CVE-2023-27245 \u203c\n\nA cross-site scripting (XSS) vulnerability in File Management Project 1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field under the Edit User module.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-27T20:50:06.000000Z"}, {"uuid": "9bf4fd58-3087-4f09-b8a2-1d7168f2c2ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27246", "type": "seen", "source": "https://t.me/cibsecurity/60909", "content": "\u203c CVE-2023-27246 \u203c\n\nAn arbitrary file upload vulnerability in the Virtual Disk of MK-Auth 23.01K4.9 allows attackers to execute arbitrary code via uploading a crafted .htaccess file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-28T22:39:45.000000Z"}, {"uuid": "0bea18fa-3023-4b0f-90d0-b1f798430ef5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27247", "type": "seen", "source": "https://t.me/cibsecurity/60908", "content": "\u203c CVE-2023-27247 \u203c\n\nAn issue in Cynet Client Agent v4.6.0.8010 allows attackers with Administrator rights to disable the EDR functions via disabling process privilege tokens.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-28T22:39:44.000000Z"}, {"uuid": "78acbab0-3bf7-456e-a1b0-368fe980ecaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27241", "type": "seen", "source": "https://t.me/cibsecurity/60821", "content": "\u203c CVE-2023-27241 \u203c\n\nSourceCodester Water Billing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the lastname text box under the Add Client module.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-27T20:56:09.000000Z"}, {"uuid": "879ed0fe-f69d-4fb3-b0e3-bbf3be4294d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-27240", "type": "seen", "source": "https://t.me/cibsecurity/60043", "content": "\u203c CVE-2023-27240 \u203c\n\nTenda AX3 V16.03.12.11 was discovered to contain a command injection vulnerability via the lanip parameter at /goform/AdvSetLanip.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-15T11:24:41.000000Z"}]}