{"vulnerability": "CVE-2023-28121", "sightings": [{"uuid": "880bd8f6-816c-4c29-acd0-6096475a0900", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "d8b3ac79-6db8-4d0b-8624-34789146280a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:52.000000Z"}, {"uuid": "d81b675b-37f5-49f8-8a16-f154b3dab365", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:01.000000Z"}, {"uuid": "24d0572c-dfa4-4a0b-91ca-7614bb3e10e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wp_woocommerce_payments_add_user.rb", "content": "", "creation_timestamp": "2023-07-10T22:46:41.000000Z"}, {"uuid": "3485ad02-88d9-4246-8cf8-02d2e66037d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:13:03.000000Z"}, {"uuid": "ef53e073-4921-4b72-90fc-c565d5b0ebe3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/m2bh_2uTO7lT6nRJJvicuCcCiy_Ywc6Uqe55inlVppsfEA", "content": "", "creation_timestamp": "2023-06-23T06:19:55.000000Z"}, {"uuid": "ba42fcb5-fd7f-46d6-9f17-fdef400a96f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/B60n2lWDK7jLE5e8-s-7e4w-VH0p8JzcJO0gc2rMX8T1jw", "content": "", "creation_timestamp": "2023-06-27T10:22:05.000000Z"}, {"uuid": "205177fb-fa65-45d1-992c-3e98701f6dc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/GtRJs7aVzHQ6wa5ur0WzW3xs3IfUUaTx-baNWE4TYuNqRg", "content": "", "creation_timestamp": "2023-07-02T09:28:32.000000Z"}, {"uuid": "61c14241-4f73-4213-a9ec-05203e8f7d12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/bmAdHh9N5DjRpLaY4sTw0dng-ZVNw7yR_pO8FZwdwQlsVA", "content": "", "creation_timestamp": "2023-07-03T11:31:34.000000Z"}, {"uuid": "15068c14-1e53-4a7b-ab59-692d542c164c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/O0EeykbZ-hdGaCyCs3Mw0CxYdZ5Q9cYfHf1hAuUBWK0C7Q", "content": "", "creation_timestamp": "2023-07-04T08:42:45.000000Z"}, {"uuid": "0388a0b9-7313-4b71-8ce6-16e5e7d9e7ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/6oHfE9siUX3olTL9xbpPrFPIqqoNPZxhAd0WWsKM8HQHSA", "content": "", "creation_timestamp": "2023-07-05T16:23:05.000000Z"}, {"uuid": "694d8ef8-e6fb-4b54-ae83-2d1607fabd07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/YZHcTAfS_lJe7Xn8NH8U2i8LMjbKZvwR8f2Vb_8MzsBKRg", "content": "", "creation_timestamp": "2023-07-05T15:54:33.000000Z"}, {"uuid": "e3b3c0ce-8db1-403f-871b-0d1d9b2c2eb8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/sl-qZPIIeH-9qUhTWOP_MMhjzTABlKmMdXjTuWLpRXTyKA", "content": "", "creation_timestamp": "2023-07-27T12:55:48.000000Z"}, {"uuid": "d7c4b3cf-1dc0-4109-8f48-f542f487f32d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/QKv_lY3QNqe0vat82-YetGproezk33A2fkthadZ3cSoMdQ", "content": "", "creation_timestamp": "2023-08-01T01:26:58.000000Z"}, {"uuid": "2a977cce-263f-4287-9e48-d2fb9b64244f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/3aejmkDgoYRVsfJyf34xskSpa9A224USP1R9_4xac6WlAQ", "content": "", "creation_timestamp": "2023-08-03T01:28:36.000000Z"}, {"uuid": "2567f8fd-05f7-43fd-97aa-cad44aee3b54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/HkumgqQ0jEAyNf9C1epzaXkjaJ2Usu4MZqwQajVMglKBSQ", "content": "", "creation_timestamp": "2023-08-02T12:27:43.000000Z"}, {"uuid": "06e152db-18be-4c39-a01e-fd142926b85c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/JOLVsO60dRUZOhBt296QpAlCm_qulNlUP27yRGPLi9x_yw", "content": "", "creation_timestamp": "2023-08-03T09:09:14.000000Z"}, {"uuid": "ac2f81b9-101a-4be7-b7ed-1298edcfeb17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/CQDw1o0l5ULFCYmk_J14Sg9eeXFZx0G604lPuOCQpZ4gbSg", "content": "", "creation_timestamp": "2023-10-10T10:41:15.000000Z"}, {"uuid": "6df3ac92-a609-468b-9358-57b93981631e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4733", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-28121 - WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation [ Mass Add Admin User ]\nURL\uff1ahttps://github.com/rio128128/Mass-CVE-2023-28121-kdoec\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-07-12T14:03:43.000000Z"}, {"uuid": "94cfa681-5fa5-4710-be73-901d78f3fb9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4728", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-28121 -  WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation [ Mass Add Admin User ]  \nURL\uff1ahttps://github.com/im-hanzou/Mass-CVE-2023-28121\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-07-12T03:08:17.000000Z"}, {"uuid": "6ef5ab15-4b04-40a4-b0d0-03323218cd3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/LDcqUn5IzGbWBIioaTa99jRqE7W07klVxxKLcncEBoTUzg", "content": "", "creation_timestamp": "2023-10-10T08:41:28.000000Z"}, {"uuid": "74fde4d8-b7b6-414c-84c0-1f9be945c72e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/iFxz07A4JBV9Vm3Ltk6MRlCo9PTVcrxvjouJc8GZ91Aodg", "content": "", "creation_timestamp": "2023-09-23T08:57:30.000000Z"}, {"uuid": "8b60b8b4-afa4-4828-bf32-225630347e6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/xmGrvZC6z_26tJLfWlCFMttFnMoKCiuzW0O-s-STZ5EfVg", "content": "", "creation_timestamp": "2023-06-16T16:19:30.000000Z"}, {"uuid": "2dd02e26-7272-4717-a1b7-f71dec1a6199", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/s54irAWPt87ijqxTIlyka52mFgHIbX9e6cxKMUaQkAjLdg", "content": "", "creation_timestamp": "2023-06-25T13:48:37.000000Z"}, {"uuid": "d7fd7393-b9b5-436f-95ca-5748984d0d1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/wtZ7ehjwYGaOuGeprXUV6XZbLXKamMgIrP2JZPmJadRzaw", "content": "", "creation_timestamp": "2023-08-02T10:27:43.000000Z"}, {"uuid": "2a05e672-41db-4f79-9909-2ca9d64f7cb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/tV0CXLvr02uyThUznAj3I1j5rb2q7AH8-YaSJGg_y-4S0g", "content": "", "creation_timestamp": "2023-07-31T23:27:04.000000Z"}, {"uuid": "8a879bb2-f473-4e1b-a878-f439b712e42c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/V2f_e6ftfaZbIaaOGbJN8Z5R3Fghplg3C60lmzKFGyw9Eg", "content": "", "creation_timestamp": "2023-08-09T06:14:19.000000Z"}, {"uuid": "9f126a2c-9677-4bd9-958d-47024ebb3a4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/pTCumJ6tXHIeU4W0SVG6oGmhRrZJql5bphwWLEHL87XFtw", "content": "", "creation_timestamp": "2023-08-02T23:28:35.000000Z"}, {"uuid": "20b4340f-41c1-4171-a3b4-b0fb25e8bd21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/1byVKEh5y5XF8XeeJrWlD2ua7kVunVBUaijb10AUNkFcDQ", "content": "", "creation_timestamp": "2023-07-04T06:42:45.000000Z"}, {"uuid": "bd7bdbf0-fb78-43e6-a547-2d5776d504ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/3AJb8ASRh1ofEToFzVFpPJV11cthF39hpmHy4lMK7qsPIw", "content": "", "creation_timestamp": "2023-06-18T03:47:46.000000Z"}, {"uuid": "8878c8a3-ac78-483b-8a2f-08510ad1134e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/OFg9kH-fJpwZ0xDRSjMVTArtNRrXBEtpHjHgergxuy6-Gw", "content": "", "creation_timestamp": "2023-06-27T07:31:38.000000Z"}, {"uuid": "3dde7e38-c5ff-4ffd-ae68-d1fd4627b283", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/C-PCV-5I1OS_s_KJ9A4g3YEMRZWehyRaSkMYBbT7QOQ2Hg", "content": "", "creation_timestamp": "2023-06-23T04:19:55.000000Z"}, {"uuid": "080efca7-9738-4942-aa1e-02fe61ecf0f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/CMIW68fqhRW_uXCZydput4wcbxPi31dtd4wo2aIa-FibQA", "content": "", "creation_timestamp": "2023-06-30T12:30:55.000000Z"}, {"uuid": "547d686d-b82d-4432-83df-8593a5e2596a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/kYL3o_qu8owuMZpGSa88kQD00HQlGzPTiBkwhqHiNyC5KQ", "content": "", "creation_timestamp": "2023-07-03T09:31:34.000000Z"}, {"uuid": "44bdb1db-7d96-45ef-8ddf-dbce72b0c196", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/xyRqC57OjvZj2n_zH6ow3xMs_jts2hcrvI-uVLFH7N1JkQ", "content": "", "creation_timestamp": "2023-07-27T10:55:48.000000Z"}, {"uuid": "c3f620c9-2ed4-42cb-9d03-6cc9144d94d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/Rn5KPI7kZOG0WzDSQOjqURsyQIFUgQHGMV1AYMMmgJBRwg", "content": "", "creation_timestamp": "2023-07-05T13:54:33.000000Z"}, {"uuid": "74ffa381-9616-435f-bec3-d87ddfb8008c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/NMB7AY8PGJDQx-AlnCQlJkHTX-5LbmM6MMpgJ-_f1sdnRg", "content": "", "creation_timestamp": "2023-11-02T00:11:10.000000Z"}, {"uuid": "ffbe11c2-4e5a-465c-a37b-2a45e5c46da4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/h1M1u-MV55njomuvyjDGVQ_RAs3FKVwXFIfHSvRqlfxCgA", "content": "", "creation_timestamp": "2023-11-13T17:35:19.000000Z"}, {"uuid": "b732fdaa-6c2b-4672-ac30-a20b0e1e7451", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/sL-4qwW4Y6Db_ecm_Eh_56Jv_NlkChqHM70qOVb8CybErA", "content": "", "creation_timestamp": "2023-08-11T10:19:35.000000Z"}, {"uuid": "0821e6e3-0b17-4ee7-a47e-740ed7ff8222", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "https://t.me/YAH_Channel/683", "content": "#infodigest\n\n\u0421\u043e\u0431\u0440\u0430\u043b\u0438 \u0434\u043b\u044f \u0432\u0430\u0441 \u0441\u0430\u043c\u044b\u0435 \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0438\u0437 \u0440\u0430\u0437\u043d\u044b\u0445 \u043a\u0430\u0442\u0435\u0433\u043e\u0440\u0438\u0439.\n\n\ud83e\udeb2 Bugs & Exploits\n1. WordPress \u00abWooCommerce Payments\u00bb plugin CVE-2023-28121\n2. Why ORMs and Prepared Statements Can't (Always) Win\n3. Exploiting XSS in hidden inputs and meta tags\n4. Encrypted Doesn't Mean Authenticated: ShareFile RCE (CVE-2023-24489)\n5. Exploiting Incorrectly Configured Load Balancer with XSS to Steal Cookies\n6. Chaining our way to Pre-Auth RCE in Metabase (CVE-2023-38646)\n7. Reversing Citrix Gateway for XSS\n8. Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway (Part 1)\n9. Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway (Part 2)\n10. HTML Over the Wire\n\n\ud83d\udee0 Tools\n11. CVSS Advisor (Escalation Techniques)\n12. shortscan\n\n\ud83d\udcd1 Burp extensions & tricks\n13. Improve your API Security Testing with Burp BCheck Scripts\n14. The top 10 community-created BChecks\n\n\ud83d\udcb0 Bug Bounty reports\n15. Bug Writeup: Stored XSS to Account Takeover (ATO) via GraphQL API\n16. Breaking TikTok: Our Journey to Finding an Account Takeover Vulnerability", "creation_timestamp": "2023-08-01T05:27:29.000000Z"}, {"uuid": "b69bf851-ea11-4fa9-874b-65a7deda9f2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/Od4sr1AD0gO-339nvi_cGhvJQhLN2uljIvuewqGX0_sayg", "content": "", "creation_timestamp": "2023-07-05T13:54:33.000000Z"}, {"uuid": "5a1d65b8-4cc2-4946-9c92-949393c16cd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/ghfwtD9bwWQ3hdPNhJgEhrr6k0y1PqGtYLWz8PPVGCkJrg", "content": "", "creation_timestamp": "2023-07-04T06:42:45.000000Z"}, {"uuid": "98e9afdb-c1f2-40cf-a88d-79d74eee7d25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/poxek/3043", "content": "#infodigest\n\n\u0421\u043e\u0431\u0440\u0430\u043b\u0438 \u0434\u043b\u044f \u0432\u0430\u0441 \u0441\u0430\u043c\u044b\u0435 \u0438\u043d\u0442\u0435\u0440\u0435\u0441\u043d\u044b\u0435 \u043d\u043e\u0432\u043e\u0441\u0442\u0438 \u0438\u0437 \u0440\u0430\u0437\u043d\u044b\u0445 \u043a\u0430\u0442\u0435\u0433\u043e\u0440\u0438\u0439.\n\n\ud83e\udeb2 Bugs & Exploits\n1. WordPress \u00abWooCommerce Payments\u00bb plugin CVE-2023-28121\n2. Why ORMs and Prepared Statements Can't (Always) Win\n3. Exploiting XSS in hidden inputs and meta tags\n4. Encrypted Doesn't Mean Authenticated: ShareFile RCE (CVE-2023-24489)\n5. Exploiting Incorrectly Configured Load Balancer with XSS to Steal Cookies\n6. Chaining our way to Pre-Auth RCE in Metabase (CVE-2023-38646)\n7. Reversing Citrix Gateway for XSS\n8. Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway (Part 1)\n9. Analysis of CVE-2023-3519 in Citrix ADC and NetScaler Gateway (Part 2)\n10. HTML Over the Wire\n\n\ud83d\udee0 Tools\n11. CVSS Advisor (Escalation Techniques)\n12. shortscan\n\n\ud83d\udcd1 Burp extensions & tricks\n13. Improve your API Security Testing with Burp BCheck Scripts\n14. The top 10 community-created BChecks\n\n\ud83d\udcb0 Bug Bounty reports\n15. Bug Writeup: Stored XSS to Account Takeover (ATO) via GraphQL API\n16. Breaking TikTok: Our Journey to Finding an Account Takeover Vulnerability", "creation_timestamp": "2023-08-02T15:22:57.000000Z"}, {"uuid": "27540875-cc80-4cf4-8efa-91d957e62ce4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/nWAf18PtEozcsIygflDQwRJGOPIJ9dl6ae0qMGqLxYyUzdU", "content": "", "creation_timestamp": "2024-01-30T03:18:43.000000Z"}, {"uuid": "eb6111f5-3c37-4c41-b38a-d5c70cf9f31b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/zHF_FBHp02FYFZNK7RaFYzGMkZyoIEJTGSZy8dPQtBH3mg", "content": "", "creation_timestamp": "2023-08-02T10:27:43.000000Z"}, {"uuid": "ad171d3b-7e1c-486a-bb97-f40fe8cf0f82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/OrmWZLdeKW9-0oqU0MGCAIdF_fmp7P1eXO2I7-7-HAgf1g", "content": "", "creation_timestamp": "2023-08-28T10:03:25.000000Z"}, {"uuid": "e770dfe3-a351-4a96-8000-b7d6b1d5d455", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/YAT9-A4h6uHODOAT1ziaFy1IoYhelwIS5YSRKSPZEYPRsg", "content": "", "creation_timestamp": "2023-06-23T04:19:55.000000Z"}, {"uuid": "bd678512-741c-4540-8ddc-acf28213bf24", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/TSLi5Ldb0xmmzVR17tjw3eU5s_Hr06t4WAuCgN7oMbeH9Q", "content": "", "creation_timestamp": "2023-07-04T06:42:45.000000Z"}, {"uuid": "0c8dd0f4-e4ff-4d2e-8a59-c0f1aafa0349", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/jXDnfS8LvvutK3DUlSBueMWFnB1FSZ2bRTsskw2Vo286-g", "content": "", "creation_timestamp": "2023-08-09T06:14:19.000000Z"}, {"uuid": "deeb3fe7-a0a1-4812-9098-cf9a89ccdf60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/2quKuflHpJ-0brMTrOqgGrdUwW0_noH1_oL9lOi5nu1yVg", "content": "", "creation_timestamp": "2023-07-31T23:26:59.000000Z"}, {"uuid": "5fcfdc8a-b911-4215-bc4d-97fde191a40b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/eBrEZklMNI-ivbkPMY0cgHwvu7enkvvfdd_cwKc2X4KM7Q", "content": "", "creation_timestamp": "2023-07-05T13:54:33.000000Z"}, {"uuid": "e2291ef9-8ae0-49cb-8105-e23350fa7c0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/dIme1C_CBmZiowQixKptrM8sSEU4kwLQgU9nYMfGsG3sDA", "content": "", "creation_timestamp": "2023-06-18T03:46:46.000000Z"}, {"uuid": "10b4a5d9-21d0-4fe4-bbf1-807511894615", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/LKNsJi7vwK7YyS1Un1zhdNzpJQxJ4Q2L9YWmGmFxEX2xaQ", "content": "", "creation_timestamp": "2023-07-27T10:55:48.000000Z"}, {"uuid": "c367f11d-eebe-4416-aa6b-8dc26eade297", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/Y_cFrVv07c_WO_CRM3Aez_CqCd4ywH0u6ZW3QSRJrSH5EA", "content": "", "creation_timestamp": "2023-06-30T12:29:46.000000Z"}, {"uuid": "4595e77d-50e1-40b3-887e-e95272def9b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/BLjp8hzXn8usKdzswXvHa4I8mbopp3YD8cOgi9r2VwQRDQ", "content": "", "creation_timestamp": "2023-08-02T23:28:35.000000Z"}, {"uuid": "3bebdebe-7715-4cd7-911f-2e4aad3de69c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/q6GK0mLKVX7QH7l2O_QuyHFQqX8JHqIEApnj5HpJoUTapg", "content": "", "creation_timestamp": "2023-08-02T10:27:43.000000Z"}, {"uuid": "fe2bbe37-4210-46ee-b293-b3448b3eb11b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/cyPBKd_QyJNOxdZO1n5SM4O3OlfyKPaJfxJ1pr2OPlBCAg", "content": "", "creation_timestamp": "2023-08-28T10:03:25.000000Z"}, {"uuid": "9d0c00b7-6a97-4be4-ad68-6b31180b960f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/HkH5kCYM4fKsu8-Z4NtF-Myjw3zOA3kGpzjiTbFQp2LtRg", "content": "", "creation_timestamp": "2023-08-11T10:19:35.000000Z"}, {"uuid": "d26614f3-f6c1-4ad1-9d46-7ee82bb19fb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/YmFyLIm3bOaLnOZ2B1qXTf6Jj3px16IlfJ_jE8oWZcxoEA", "content": "", "creation_timestamp": "2023-07-31T23:26:59.000000Z"}, {"uuid": "dd8f8561-126e-4226-ab32-0ea71e34f5d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/W440meSRLW9xY5F7pgK4VEAM9PSsljdc4D-GBibtCAYcUQ", "content": "", "creation_timestamp": "2023-08-09T06:14:19.000000Z"}, {"uuid": "6b0fde39-0357-4509-9959-75f787f135c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/H52Gy4pbp6XV-QxIr_UiL_cT9j2RoIaIlrn0PrK9tDnksg", "content": "", "creation_timestamp": "2024-01-17T10:26:31.000000Z"}, {"uuid": "02a8d958-2dc5-4a40-ad51-4c64a3458a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/V69juOA4E6JxFTJbsqIBJoKqVEQ0XeqEY6Ze5FyGhSaQGWc", "content": "", "creation_timestamp": "2023-11-02T00:14:47.000000Z"}, {"uuid": "cfff78f0-c01a-4620-b8f4-5db7ab086e8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/QZGWlkCIiR9Xb4XgpoeHgyZy7oQii97ardKIAfSt63NTbls", "content": "", "creation_timestamp": "2023-12-06T06:46:42.000000Z"}, {"uuid": "a57d1877-f577-45a4-9769-399ae9b2d5c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/kFJW0VNyGQjmvbgcl_wlpPfmjQ8tGsap7vkk384ohrH3Ie0", "content": "", "creation_timestamp": "2024-01-30T03:18:46.000000Z"}, {"uuid": "c645bf50-847d-41d1-ba52-0c944d182bca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/X4bX_VD4tiENL6F6wKHNLuhqGVHI975Y5CzoK1vzvNsb9Ws", "content": "", "creation_timestamp": "2024-01-17T10:26:31.000000Z"}, {"uuid": "4d49a06c-2b7d-4538-b9d8-0138393ba5ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/0ma5HfmeaH-auC8M0H0ZjmesCE-K9WE_GnCMBsK0tTI7IOU", "content": "", "creation_timestamp": "2024-01-17T09:02:07.000000Z"}, {"uuid": "c3e73618-3fc9-4f0d-80a3-74941f0a89d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/zNyrtde32x9owVNf18qt_9kDf1-jm8uVzdmcNn5gafhyGMQ", "content": "", "creation_timestamp": "2024-01-15T22:56:00.000000Z"}, {"uuid": "4f80ff11-5d71-46c7-a79a-c0ecce02770b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/vbIWPjZepaOfOUHXHlT55iDoXgYjsjjboL5r6zG8Kn_N7E8", "content": "", "creation_timestamp": "2024-01-17T13:06:53.000000Z"}, {"uuid": "712cdffd-42c0-45ba-aae7-4afffeed6f2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/7zQN5Ugs4YCsJ41zarKUYRWW9Foh7YA-sXcB6K7jgDcOAbI", "content": "", "creation_timestamp": "2023-11-02T00:19:35.000000Z"}, {"uuid": "2e3e40c9-50ca-4083-b57a-eb9e36baf56a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/PdtTEAARINZn-quTyQ2TzvEv9oAuQi6XGcGu6ne-rhgJXw", "content": "", "creation_timestamp": "2023-06-17T10:55:04.000000Z"}, {"uuid": "53996484-a68e-41f9-973b-8ed52608745c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/6b_a0qIpktldRge58o3GlqfhcK946Gc3bEtLo2SojFNSNA", "content": "", "creation_timestamp": "2023-08-09T08:14:25.000000Z"}, {"uuid": "8f332470-bf11-43e5-831a-09342c0b14e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/_SM-ur2rkE-6HSFsG9G0YVVnSmA9bx_yJV3ALJ5wLjjX3g", "content": "", "creation_timestamp": "2023-08-11T12:19:35.000000Z"}, {"uuid": "20810757-49d0-49e0-82d6-be19393dcf23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/HVj5Wc4aWgpsc5KxhTEgt-QOvP3ZPlVodFk6jfbLU-wR2Q", "content": "", "creation_timestamp": "2023-08-28T12:03:20.000000Z"}, {"uuid": "feb93315-794b-41d6-9585-8eaba19c6540", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/ANMZoOaaOAU8HS9CJNETMe986T15yk6hLXc6h2_XvV-6Eg", "content": "", "creation_timestamp": "2023-10-10T10:41:26.000000Z"}, {"uuid": "197ec003-6d8d-46fe-b80d-b3868ce0b764", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/sma_V9XZvGtwlUJGVSGQoIjh0cPurG-Y_VECXUgygsUfBQ", "content": "", "creation_timestamp": "2023-11-02T01:20:28.000000Z"}, {"uuid": "6f22e699-cdd9-4409-a021-fd9c986efa40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "exploited", "source": "Telegram/vF1-ZmCvx6gAET1aBN2grsDjIVatNqeklHEzqfznD4GBrLY", "content": "", "creation_timestamp": "2023-10-10T16:06:02.000000Z"}, {"uuid": "852ff4c8-3733-47b6-8f86-b2dfa99d3c47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/bexsop/415", "content": "https://github.com/im-hanzou/Mass-CVE-2023-28121", "creation_timestamp": "2024-06-21T08:01:35.000000Z"}, {"uuid": "597815cf-86c1-442d-be2f-9cf2ea31694e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "exploited", "source": "Telegram/yB8fDLFPDzEdipaqhojU3TzOjz0l6e7yPDhRvteqRinKAy8", "content": "", "creation_timestamp": "2023-07-18T12:23:05.000000Z"}, {"uuid": "41ac549e-f0a6-407a-87c0-553af9e6c2a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/7ZgdYFBqUSy_N4naW1W8yQqsd2Zy22nywzAeeB_kpzbCvu4", "content": "", "creation_timestamp": "2023-10-10T10:51:08.000000Z"}, {"uuid": "3a985164-5635-43d8-98b1-27c46537ec46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/lyC68m6U3KJcv7PLD6ZYnYwVeerEN1jsWpNojtlhsQTHF3Nm", "content": "", "creation_timestamp": "2024-01-14T09:14:21.000000Z"}, {"uuid": "13602db3-76a2-4b63-8671-615a33df9337", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/Wz2AHld4Gg05VVSbvRu4yOuGRAq8fJWEAhluEmNeN5tGSQ0", "content": "", "creation_timestamp": "2023-11-02T01:18:54.000000Z"}, {"uuid": "46d06366-d900-434e-8960-d741af66555f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/hitshare/2138", "content": "- CVE-2023-28121\n+ WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation | Mass Add Admin User \n\nShare for everybody \nDownload : \nhttps://github.com/im-hanzou/Mass-CVE-2023-28121\n\nShare & Support Us", "creation_timestamp": "2024-06-21T08:13:59.000000Z"}, {"uuid": "26976396-cfc4-4d87-a380-375a7da57e2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/fiola_tools/33", "content": "#WTS Wordpress Exploit CVE-2023-28121\n\n>> Full source code\n\nPrice? $20\nProof @fiolatoolspayment\nChannel @fiola_tools\nContact @GrazzMean", "creation_timestamp": "2023-06-04T12:58:07.000000Z"}, {"uuid": "eac1850b-fa30-4b02-967b-ad6ccd37dfa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/AGENTZSECURITY/743", "content": "", "creation_timestamp": "2024-12-31T18:04:02.000000Z"}, {"uuid": "7f9e5234-3661-45f2-9a8a-9a40981f6551", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/X7dBKDBwJAuXnUhleGVJQO-FhmMq3GaoHoQdBxODUNetbS8", "content": "", "creation_timestamp": "2023-09-23T11:03:39.000000Z"}, {"uuid": "f6325604-9464-41a5-8427-574c3098beea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/hXouRYaS8QPLd8IHv0aCpdjwqhnmH8cVqBKj-iJJ6YVHdgQ", "content": "", "creation_timestamp": "2023-11-02T01:20:30.000000Z"}, {"uuid": "c22f0f48-78cb-4dab-b4dd-16b1ae686c9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/-j2z3mScbOoFu45viXNT0g8fMdviuzcI5vwzXNOKP4J-pGA", "content": "", "creation_timestamp": "2023-10-10T10:41:16.000000Z"}, {"uuid": "5c79a245-2b87-4dc1-a37e-ae33a20eb0c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/OZWBoTJA61ku1oqtm9et1J5HpQz1ilJGgGi9XCyDfBn9_Qg", "content": "", "creation_timestamp": "2023-08-28T12:03:19.000000Z"}, {"uuid": "5ec0be5c-2493-40c9-b528-4d1bc7c8b320", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "exploited", "source": "Telegram/iQPOZOXr-Csl4cveODQgY6UUbM8SzrPzqb26dFwfHFWzZQ", "content": "", "creation_timestamp": "2023-07-18T09:48:58.000000Z"}, {"uuid": "f339bc71-9e65-4c05-91b0-6aa4f6314b1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/cyzfams/109", "content": "", "creation_timestamp": "2023-08-22T11:07:50.000000Z"}, {"uuid": "9bf4f853-1038-4770-b41e-5805e9b4a074", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/LeakingCode/13172", "content": "- CVE-2023-28121\n+ WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation | Mass Add Admin User \n\nShare for everybody \nDownload : \nhttps://github.com/im-hanzou/Mass-CVE-2023-28121\n\nShare & Support Us", "creation_timestamp": "2024-06-21T08:14:16.000000Z"}, {"uuid": "4b3ab07c-bff9-42d5-9e7e-7127f00cfc19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/LearnHacking1337/4177", "content": "2023 flash kiss   @harryhaxor", "creation_timestamp": "2024-01-21T14:27:49.000000Z"}, {"uuid": "429492a7-3f81-4e85-9023-04d2992a0dd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "exploited", "source": "https://t.me/KomunitiSiber/501", "content": "Cybercriminals Exploiting WooCommerce Payments Plugin Flaw to Hijack Websites\nhttps://thehackernews.com/2023/07/cybercriminals-exploiting-woocommerce.html\n\nThreat actors are actively exploiting a recently disclosed critical security flaw in the WooCommerce Payments WordPress plugin as part of a massive targeted campaign.\nThe flaw, tracked as\u00a0CVE-2023-28121\u00a0(CVSS score: 9.8), is a case of authentication bypass that enables unauthenticated attackers to impersonate arbitrary users and perform some actions as the impersonated user, including an", "creation_timestamp": "2023-07-18T09:35:19.000000Z"}, {"uuid": "ae743687-47cb-4193-b0ee-fc94f9cbd2ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/S2uy1Smk9mhzoKfF70Apfb4PIPTgKgtfhq2LKQic9pn4-zI", "content": "", "creation_timestamp": "2025-04-12T23:00:06.000000Z"}, {"uuid": "72d3c50c-3ce4-4ccb-b6bf-c84eaea24c94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/UIIil_OEKPCpY2SMStXdCBJaH7xM-W5ZaJi2JXSjxGtvPOo", "content": "", "creation_timestamp": "2025-02-28T04:00:06.000000Z"}, {"uuid": "eef7c44e-9bbb-4974-af6a-b7d4a94472bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/_kh4tpIJE3G1VDWw4P0GDOp7p10EZ4KOR9ZpNtd1C2-cicY", "content": "", "creation_timestamp": "2025-02-26T04:00:07.000000Z"}, {"uuid": "a6fb3891-1c63-4311-93ed-479d746be202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/BatosayTools/7", "content": "https://github.com/im-hanzou/Mass-CVE-2023-28121", "creation_timestamp": "2023-08-05T16:43:07.000000Z"}, {"uuid": "69bbfd2b-b530-4c34-84be-e0c940ab85a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/v3n0mhack/258", "content": "CVE-2023-28121 - WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation [ Mass Add Admin User ]\n\nMass exploit:\nhttps://github.com/im-hanzou/Mass-CVE-2023-28121", "creation_timestamp": "2023-07-23T11:16:10.000000Z"}, {"uuid": "ba49845e-13fe-46d9-a75b-713e2838c7bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/v3n0mhack/251", "content": "WP-CVE-2023-28121 | WooCommerce Payments: Unauthorized Admin Access Exploit\n\nLink : https://github.com/Jenderal92/CVE-2023-28121/\n\nOpen source \ud83d\ude42\n\nEnjoy \ud83d\ude0d\n\nWhen we up to 1.2k \n\nWill gift Cp \ud83d\udcaa\u2665\ufe0f", "creation_timestamp": "2023-07-21T00:22:20.000000Z"}, {"uuid": "2e2f2e1c-593c-4bf7-bde9-0ac2037e4df7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/72q_6K-Gw2SSBLexfL7RRBs4aQAazbzl569yjTYRGLrjOQ", "content": "", "creation_timestamp": "2023-07-22T15:31:47.000000Z"}, {"uuid": "7d76c878-8b83-4420-99ed-bcda049b2b0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3178", "content": "Hackers Factory \n\nAn ADCS Exploitation Automation Tool Weaponizing Certipy and Coercer\n\nhttps://github.com/grimlockx/ADCSKiller\n\nA collection of awesome API Security tools and resources. The focus goes to open-source tools and resources that benefit all the community.\n\nhttps://github.com/arainho/awesome-api-security#cheatsheets\n\nA collection of tiny XSS Payloads that can be used in different contexts.\n\nhttps://github.com/terjanq/Tiny-XSS-Payloads\n\nA collection of snippets of codes and commands to make your life easier!\n\nhttps://github.com/Kitsun3Sec/Pentest-Cheat-Sheets\n\nRedTeaming_CheatSheet\n\nhttps://github.com/H4CK3RT3CH/RedTeaming_CheatSheet\n\nYou just found a hidden gem \ud83d\udc8e This repo contains a massive amount (8000+) of WordPress related Nuclei templates. Updated daily!\n\nhttps://github.com/topscoder/nuclei-wordfence-cve\n\nWooCommerce Payments: Unauthorized Admin Access Exploit\n\nhttps://github.com/gbrsh/CVE-2023-28121\n\nFor those who use Burp Suite Sharpener, you can now get the latest version from\n\nhttps://github.com/irsdl/BurpSuiteSharpenerEx/\n\nNew release of crackmapexec is out ! 6.1.0\n\nhttps://github.com/mpgn/CrackMapExec/releases/tag/v6.1.0\n\nA swiss army knife for pentesting networks\n\nhttps://github.com/mpgn/CrackMapExec\n\n#infosec #cybersecurity #hackersfactory \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-09-04T11:59:07.000000Z"}, {"uuid": "56f9bab4-1058-464e-9108-293a7c862cfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3127", "content": "Tools \ud83d\udd27 \ud83d\udd28 \ud83d\udd27 \ud83d\udd28  -  Hackers Factory\n\n\u200b\u200bFirefox Decrypt\n\nA tool to extract passwords from Mozilla (Firefox\u2122, Waterfox\u2122, Thunderbird\u00ae, SeaMonkey\u00ae) profiles.\n\nhttps://github.com/unode/firefox_decrypt\n\n#infosec #pentesting #redteam\n\n\u200b\u200bmutation fuzzer\n\nMutate a binary to identify potential #exploit candidates.\n\nhttps://github.com/demetriusford/mutation-fuzzer\n\n#cybersecurity #infosec\n\n\u200b\u200bmasm32-kernel-programming\n\nmasm32 kernel programming, drivers, tutorials, examples, and tools (credits Four-F)\n\nhttps://github.com/therealdreg/masm32-kernel-programming\n\n#malware #cybersecurity #infosec\n\n\u200b\u200bXSS-Bypass-Filters\n\nhttps://github.com/Edr4/XSS-Bypass-Filters\n\n#infosec #bugbounty \n\n\u200b\u200bCVE-2023-3519\n\nThis #Nmap NSE script checks for the CVE-2023-3519 vulnerability in Citrix Gateway and Citrix AAA.\n\nhttps://github.com/dorkerdevil/CitrixFall\n\n#infosec \n\n\u200b\u200bCVE-2023-3519\n\nThe cve_2023_3519_inspector.py is a Python-based vulnerability scanner for detecting the CVE-2023-3519 vulnerability in Citrix Gateways. It performs a passive analysis and fingerprinting of target websites to assess their vulnerability based on a series of checks.\n\nhttps://github.com/securekomodo/citrixInspector\n\n#cve\n\n\u200b\u200bCVE-2023-28121\n\nWooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation [ Mass Add Admin User ]\n\nhttps://github.com/im-hanzou/Mass-CVE-2023-28121\n\n#cve\n\n\u200b\u200bCVE-2023-32681\n\nVulnerability in python-requests affects IBM InfoSphere Information Server.\n\nhttps://github.com/hardikmodha/POC-CVE-2023-32681\n\n#cve #poc #cybersecurity #infosec\n\n\u200b\u200bCloudflare Origin ip\n\nThis Python tool compares the HTTP response of the given subdomain to HTTP responses of a list of IPs addresses. This list is based on:\n\n\u2022 subdomains supplied by the user\n\u2022 subdomains found on external sources\n\u2022 IPs found external sources\n\nhttps://github.com/gwen001/cloudflare-origin-ip\n\n\u200b\u200bBucketLoot\n\nBucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.\n\nhttps://github.com/redhuntlabs/BucketLoot\n\n\u200b\u200bHtmlSmuggling\n\nit is malicious technique used by hackers to hide malware payloads in an encoded script in a specially crafted HTML attachment or web page.\n\nhttps://github.com/De3vil/HtmlSmuggling\n\n\u200b\u200bTGSThief\n\nI think a lot of people have seen the project GIUDA. It is an interesting way to get the TGS of a user whose logon session is just present on the computer. The problem is that its code is written in Pascal (the last time I wrote in Pascal was at school), so I had to rewrite the project in C++.\n\nhttps://github.com/MzHmO/TGSThief\n\n\u200b\u200bCVE-2023-28467\n\nCross-site scripting (XSS) vulnerability in the User CP module allows remote authenticated users to inject HTML via the user email field, triggered on the User CP Home page.\n\nAfter registration, the e-mail address is changed and the XSS payload is placed. Then, when \"User CP\" is entered, the vulnerability is triggered.\n\nhttps://github.com/ahmetaltuntas/CVE-2023-28467\n\n\u200b\u200bRandomTSScripts\n\nRandom collection of scripts useful for engagements, which don't really need their own repo.\n\nhttps://github.com/xpn/RandomTSScripts\n\n\u200b\u200bCVE-2023-38408 \n\nRemote Code Execution in OpenSSH's forwarded ssh-agent\n\nhttps://github.com/snowcra5h/CVE-2023-38408\n\n\u200b\u200bcombine\n\nRust in-memory dumper. Check your windows local security authority credential's safety with this awesome tool.\n\nhttps://github.com/m3f157O/combine_harvester\n\n\u200b\u200bTokenTactics v2\n\nA fork of the great TokenTactics with support for CAE and token endpoint v2.\n\nhttps://github.com/f-bader/TokenTacticsV2\n\n\u200b\u200bDeepCamera\n\nOpen-Source #AI #Camera. Empower any camera/CCTV with state-of-the-art AI, including facial recognition, person recognition(RE-ID) car detection, fall detection and more...\n\nhttps://github.com/SharpAI/DeepCamera\n\n\u200b\u200bAnalytics & AdBlocker\n\nProtect your #privacy while browsing the web.\n\nhttps://github.com/con-schy1/Analytics_AdBlocker\n\n#cybersecurity #infosec\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-07-25T11:56:20.000000Z"}, {"uuid": "ebb5d112-597d-4774-8cc0-34c63efba7af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3126", "content": "Tools \ud83d\udd27 \ud83d\udd28 \ud83d\udd27 \ud83d\udd28  - Hackers Factory\n\n\u200b\u200bTor / Darknet Links\n\nVerified darknet market and darknet service links on the Tor Network.\n\nhttps://github.com/DarkNetEye/tor-links\n\nWeb:\nhttps://darkneteye.com/\n\n#cybersecurity #infosec #privacy\n\n\u200b\u200bDragondoom\n\nThe PAKE Dragonfly is used as SAE in WPA3 authentication. A critical point during the authentication is when the password needs to be derived into an elliptic curve point.\n\nhttps://gitlab.inria.fr/ddealmei/artifact_dragondoom\n\n#cybersecurity #infosec\n\n\u200b\u200bwhatlicense\n\nFull tool chain to extract WinLicense secrets from a protected program then launch it bypassing all verification steps, utlizing an Intel PIN tool and license file builder.\n\nhttps://github.com/charlesnathansmith/whatlicense\n\n#infosec #pentesting #bugbounty\n\n\u200b\u200bCVE-2022-44875\n\nTesting CVE-2022-44875\n\nhttps://github.com/c0d30d1n/CVE-2022-44875-Test\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bWiFi-OSINT\n\nSome great Wifi, resources, tools and blogs if Wi-Fi #OSINT is your thing.\n\nhttps://github.com/cqcore/WiFi-OSINT\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bCVE-2023-35885\n\nCloudpanel 0-day Exploit\n\nhttps://github.com/datackmy/FallingSkies-CVE-2023-35885\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-3519\n\nThis script is a basic Citrix Scanner for CVE-2023-3519. We try to identify vulnerable Citrix Gateways/ADCs by looking at the HTTP headers.\n\nhttps://github.com/telekom-security/cve-2023-3519-citrix-scanner\n\n#cve #infosec #pentesting\n\n\u200b\u200bvala-vala-hey\n\nThis is a 0day root LPE for latest #Manjaro distro, tested on embedded ARM and x86_64 desktop installs.\n\nhttps://github.com/c-skills/vala-vala-hey\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2020-1472\n\nA Python script that uses the Impacket library to test vulnerability for the Zerologon exploit (CVE-2020-1472).\n\nhttps://github.com/SecuraBV/CVE-2020-1472\n\n#cve #cybersecurity #infosec\n\nEX-SQLi\n\nA tool for scanning and exploiting the famous SQL injection vulnerability in more than millions of sites. The exploit was programmed by the TYG team.\n\nhttps://github.com/mr-sami-x/SQLi\n\n#infosec #pentesting #redteam\n\n\u200b\u200bCVE-2023-38632\n\nAsync-sockets-cpp <0.3.1 TCP Packet tcpsocket.hpp Stack-based Overflow\n\nhttps://github.com/Halcy0nic/CVE-2023-38632\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bCVE-2023-3519\n\nThis Nuclei template checks for the presence of the CVE-2023-3519 vulnerability in a target web server.\n\nhttps://github.com/SalehLardhi/CVE-2023-3519\n\n#cybersecurity #infosec #pentesting\n\n\u200b\u200bCVE-2023-28121\n\nWooCommerce Payments: Unauthorized Admin Access #Exploit.\n\nhttps://github.com/gbrsh/CVE-2023-28121\n\n#cve #cybersecurity #infosec\n\n\u200b\u200bVanMoof Encryption Key Exporter\n\nExport all bike details (such as encryption key) of your VanMoof bikes.\n\nhttps://github.com/grossartig/vanmoof-encryption-key-exporter\n\nWeb:\nhttps://keyexporter.grossartig.io/\n\n#cybersecurity #infosec\n\n\u200b\u200bPowershellKerberos\n\nSome scripts to abuse kerberos using Powershell.\n\nhttps://github.com/MzHmO/PowershellKerberos\n\n#infosec #pentesting #redteam\n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-07-23T12:08:55.000000Z"}, {"uuid": "aaa36bd2-ee0a-4e33-b095-50e92b589a12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/v3n0mhack/299", "content": "WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation\n\nPython 2.7\n\nhttps://github.com/Jenderal92/WP-CVE-2023-28121/", "creation_timestamp": "2023-11-03T13:19:51.000000Z"}, {"uuid": "aeed8ee3-33ad-4339-b132-df47359c2ae3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/5GvrsE7qZAg5FzmdSSO2El9EfEG4BbeXFPJur9noPLsTEsg", "content": "", "creation_timestamp": "2023-06-18T05:46:45.000000Z"}, {"uuid": "ee9cc886-3f6f-455c-8643-acf275ebc740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/explotesti/330", "content": "\u27a1\ufe0f\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24  \ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\ud83d\udd24\u2b05\ufe0f\n\n\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20   \ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\ud83d\udd20\n\n       \ud835\ude43\ud835\ude3c\ud835\ude47\ud835\ude47\ud835\ude4a \ud835\ude42\ud835\ude50\ud835\ude54\ud835\ude4e \ud835\ude4e\ud835\ude3c\ud835\ude54\ud835\ude3c \ud835\ude4e\ud835\ude40\ud835\ude46\ud835\ude3c\ud835\ude4d\ud835\ude3c\ud835\ude49\ud835\ude42 \ud835\ude48\ud835\ude40\ud835\ude49\ud835\ude42\ud835\ude3c\ud835\ude3f\ud835\ude46\ud835\ude3c\ud835\ude49 \n   \ud835\ude46\ud835\ude50\ud835\ude4d\ud835\ude4e\ud835\ude50\ud835\ude4e \ud835\ude50\ud835\ude49\ud835\ude4f\ud835\ude50\ud835\ude46 \ud835\ude48\ud835\ude40\ud835\ude49\ud835\ude3f\ud835\ude3c\ud835\ude4b\ud835\ude3c\ud835\ude4f\ud835\ude46\ud835\ude3c\ud835\ude49 \ud835\ude3e\ud835\ude4b\ud835\ude3c\ud835\ude49\ud835\ude40\ud835\ude47+\ud835\ude52\ud835\ude40\ud835\ude3d\ud835\ude4e\ud835\ude43\ud835\ude40\ud835\ude47\ud835\ude47\n      \ud835\ude3f\ud835\ude40\ud835\ude49\ud835\ude42\ud835\ude3c\ud835\ude49 \ud835\ude3e\ud835\ude3c\ud835\ude4d\ud835\ude3c \ud835\ude48\ud835\ude50\ud835\ude3f\ud835\ude3c\ud835\ude43 \ud835\ude48\ud835\ude40\ud835\ude48\ud835\ude3c\ud835\ude46\ud835\ude3c\ud835\ude44 \ud835\ude4f\ud835\ude4a\ud835\ude4a\ud835\ude47\ud835\ude4e \ud835\ude40\ud835\ude53\ud835\ude4b\ud835\ude47\ud835\ude4a\ud835\ude44\ud835\ude4f\ud835\ude40\ud835\ude4d \ud835\ude3f\ud835\ude3c\ud835\ude4d\ud835\ude44 \ud835\ude46\ud835\ude3c\ud835\ude48\ud835\ude44\n\ud835\ude50\ud835\ude49\ud835\ude4f\ud835\ude50\ud835\ude46 \ud835\ude41\ud835\ude44\ud835\ude4f\ud835\ude50\ud835\ude4d\ud835\ude40 \ud835\ude3f\ud835\ude3c\ud835\ude49 \ud835\ude46\ud835\ude40\ud835\ude42\ud835\ude50\ud835\ude49\ud835\ude3c\ud835\ude3c\ud835\ude49 \ud835\ude49\ud835\ude54\ud835\ude3c \ud835\ude4e\ud835\ude44\ud835\ude47\ud835\ude3c\ud835\ude43\ud835\ude46\ud835\ude3c\ud835\ude49 \ud835\ude3e\ud835\ude43\ud835\ude40\ud835\ude3e\ud835\ude46 \ud835\ude3f\ud835\ude44\ud835\ude3d\ud835\ude3c\ud835\ude52\ud835\ude3c\ud835\ude43\n\n\u2b07\ufe0f\ud835\udc0f\ud835\udc11\ud835\udc08\ud835\udc15\ud835\udc00\ud835\udc13\ud835\udc04 & \ud835\udc0f\ud835\udc11\ud835\udc04\ud835\udc0c\ud835\udc08\ud835\udc14\ud835\udc0c \ud835\udc13\ud835\udc0e\ud835\udc0e\ud835\udc0b\ud835\udc12\u2b07\ufe0f\n\ud835\udc05\ud835\udc08\ud835\udc13\ud835\udc14\ud835\udc11\ud835\udc04 \ud835\udc13\ud835\udc0e\ud835\udc0e\ud835\udc0b\ud835\udc12 \ud835\udc04\ud835\udc17\ud835\udc0f\ud835\udc0b\ud835\udc0e\ud835\udc08\ud835\udc13 \ud83d\udd23\n\n\u27a1\ufe0fMENDAPATKAN CPANEL\n\u27a1\ufe0fMENDAPATKAN WEBSHELL RANDOM DA\n\u27a1\ufe0fMENDAPTKAN WEBSHELL HIGH DA\n\u27a1\ufe0fPEMBELAJARAN MENGAMANKAN SHELL\n\u27a1\ufe0fGRAB DOMAIN FRESH WP BEBAS DOMAIN\n\u27a1\ufe0fAUTO CRACK CPANEL + SMTP + AWS\n\u27a1\ufe0fGRAB DOMAIN SESUAI KEINGINAN\n\u27a1\ufe0fGRAB DOMAIN ALL CMS\n\u27a1\ufe0fGOOD FOR XMRPC. LARAVEL. ETC\n\u27a1\ufe0fAUTO REMOVE DUPLICATE LINE/SITE\n\u27a1\ufe0fAUTO DETECTING SHELL\n\u27a1\ufe0fAUTO DETECTING PROVIDER PATHEON\n\u27a1\ufe0fAUTO DETECTING PROVIDER GITHUB\n\u27a1\ufe0fAUTO DETECTING PROVIDER SHOPIFY\n\n\n\u2b07\ufe0f\ud835\ude4f\ud835\ude4a\ud835\ude4a\ud835\ude47\ud835\ude4e \ud835\ude3c\ud835\ude50\ud835\ude4f\ud835\ude4a \ud835\ude3c\ud835\ude50\ud835\ude4f\ud835\ude4a \ud835\ude3f\ud835\ude40\ud835\ude4f\ud835\ude40\ud835\ude3e\ud835\ude4f\u2b07\ufe0f\n\n  \u27a1\ufe0fAuto Detecting Mailer \n \u27a1\ufe0fAuto Detecting SFTP Config\n \u27a1\ufe0fAuto Detecting Uploader \n \u27a1\ufe0fAuto Detecting CVE-2023-32243\n \u27a1\ufe0fAuto Detecting CVE-2023-28121\n \u27a1\ufe0fAuto Detecting RFM\n \u27a1\ufe0fAuto Detecting MailAuto \n\u27a1\ufe0fDetecting Webshell Password \n\u27a1\ufe0f Auto Detecting ALL CMS \n\u27a1\ufe0fAuto Detecting Laravel / .env Vulnerability \n\u27a1\ufe0fAuto Detecting RCE Vulnerability \n\u27a1\ufe0f Auto Detecting RCE perl.alfa\n\u27a1\ufe0f Auto Detecting RCE Laravel Log \n\u27a1\ufe0fAuto Detecting Robots.txt \n\u27a1\ufe0fAuto Detecting Nginx/log\n\n\n\ud83d\udcb2PRICE/HARGA : 3.500.000\n\nDISKON NEW MEMBER : 2.900.000\n\nTOOLS EXPLOITER V1 : 1.500.000\n\nPASSWORD : PAY ME \n\n   COURSE MENDAPATKAN TERUTAMA CPANEL\nGAMPANG DAN SANGAT MUDAH , DENGAN TOOLS\n  KAMI, COURSE DENGAN BIMBINGAN SAMPAI MENDAPTKAN HASIL\nPEMBELAJARAN MELALUI ANYDESK/VIDEO\n\n\u2757\ufe0f\u2757\ufe0f\u2757\ufe0f\ud835\ude49\ud835\ude4a\ud835\ude4f\ud835\ude40: \ud835\ude4e\ud835\ude40\ud835\ude3d\ud835\ude40\ud835\ude47\ud835\ude50\ud835\ude48 \ud835\ude4a\ud835\ude4d\ud835\ude3f\ud835\ude40\ud835\ude4d \ud835\ude4e\ud835\ude44\ud835\ude47\ud835\ude3c\ud835\ude43\ud835\ude46\ud835\ude3c\ud835\ude49 \ud835\ude3e\ud835\ude43\ud835\ude40\ud835\ude3e\ud835\ude46 \ud835\ude4b\ud835\ude40\ud835\ude4e\ud835\ude3c\ud835\ude49 \ud835\ude4f\ud835\ude40\ud835\ude4d\ud835\ude4e\ud835\ude40\ud835\ude48\ud835\ude3c\ud835\ude4f \ud835\ude3f\ud835\ude44 \ud835\ude3e\ud835\ude43\ud835\ude3c\ud835\ude49\ud835\ude49\ud835\ude40\ud835\ude47 \ud835\ude46\ud835\ude3c\ud835\ude48\ud835\ude44\n\n\ud835\udc0f\ud835\udc00\ud835\udc18\ud835\udc0c\ud835\udc04\ud835\udc0d\ud835\udc13 \ud835\udc0c\ud835\udc04\ud835\udc13\ud835\udc07\ud835\udc0e\ud835\udc03\ud835\udc04  :  \ud83d\udcb0BTC  \ud83d\udcb3 USDT TRC 20   \ud83d\udc99 DANA\n\nJOIN CHANNEL/TESTI : t.me/explotesti\nORDER DM TELEGRAM : t.me/xploiter12", "creation_timestamp": "2024-01-23T06:14:55.000000Z"}, {"uuid": "bd36e211-61c0-48c2-9e95-7cc4b4221d8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "https://t.me/DymlesCode/99", "content": "..::: Random Tools :::..\n\ud83d\udfe2NEW ~> WooCommerce CVE-2023-28121\n\ud83d\udd24Vulnerability Result saved to woocommerce.txt\n\n#DarkCool\n#Update", "creation_timestamp": "2023-11-13T07:53:10.000000Z"}, {"uuid": "c3939a4c-f9b8-4a03-9fa0-4dbf583b52b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/801", "content": "CVE-2023-28121 : WooCommerce Payments 4.8.0 \u200c\u200c> 5.6.1\u00a0- Unauthorized Admin Access\nVerified : N/A\nPOC : https://github.com/gbrsh/CVE-2023-28121", "creation_timestamp": "2023-08-08T22:29:01.000000Z"}, {"uuid": "8a2e3621-9337-4c6d-9985-42b4cbdfe33d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/true_secator/6332", "content": "\u0410\u043d\u0430\u043b\u0438\u0442\u0438\u043a\u0438 \u043f\u0440\u0438\u043d\u0430\u0434\u043b\u0435\u0436\u0430\u0449\u0435\u0439 Google Mandiant \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e \u043d\u043e\u0432\u043e\u0439 \u0442\u0440\u0435\u0432\u043e\u0436\u043d\u043e\u0439 \u0442\u0435\u043d\u0434\u0435\u043d\u0446\u0438\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u043e\u0439 \u0441 \u0442\u0435\u043c, \u0447\u0442\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u044e\u0442 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0435\u0439 \u043f\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044e \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u044e 0-day \u0432 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Mandiant, \u0438\u0437 138 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b \u043a\u0430\u043a \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0435 \u0432 2023 \u0433\u043e\u0434\u0443, 97 (70,3%) \u0431\u044b\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u044b \u043a\u0430\u043a \u043d\u0443\u043b\u0438 \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u0435\u0449\u0435 \u0434\u043e \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u0438 \u0443\u0437\u043d\u0430\u043b\u0438 \u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u0438 \u043e\u0448\u0438\u0431\u043e\u043a \u0438\u043b\u0438 \u0441\u043c\u043e\u0433\u043b\u0438 \u0431\u044b \u0438\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u0438\u0442\u044c.\n\n\u0421 2020 \u043f\u043e 2022 \u0433\u043e\u0434 \u0441\u043e\u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 n-\u0434\u043d\u044f\u043c\u0438 (\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438) \u0438 \u043d\u0443\u043b\u0435\u0432\u044b\u043c\u0438 \u0434\u043d\u044f\u043c\u0438 (\u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f) \u043e\u0441\u0442\u0430\u0432\u0430\u043b\u043e\u0441\u044c \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u0441\u0442\u0430\u0431\u0438\u043b\u044c\u043d\u044b\u043c \u0438 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u043b\u043e 4:6, \u043d\u043e \u0432 2023 \u0433\u043e\u0434\u0443 \u0441\u043e\u043e\u0442\u043d\u043e\u0448\u0435\u043d\u0438\u0435 \u0438\u0437\u043c\u0435\u043d\u0438\u043b\u043e\u0441\u044c \u0434\u043e 3:7.\n\n\u041f\u0440\u0438\u0447\u0435\u043c \u044d\u0442\u043e \u0441\u0432\u044f\u0437\u0430\u043d\u043e \u043d\u0435 \u0441 \u0443\u043c\u0435\u043d\u044c\u0448\u0435\u043d\u0438\u0435\u043c \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 n-day, \u0430 \u0441 \u0440\u043e\u0441\u0442\u043e\u043c \u0447\u0438\u0441\u043b\u0430 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u0445 \u043d\u0443\u043b\u0435\u0439 \u0438 \u0443\u043b\u0443\u0447\u0448\u0435\u043d\u0438\u0435\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0435\u0439 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043f\u043e \u0438\u0445 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044e.\n\n\u0420\u043e\u0441\u0442 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438 \u0438 \u0434\u0438\u0432\u0435\u0440\u0441\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044f \u0446\u0435\u043b\u0435\u0432\u044b\u0445 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 \u0442\u0430\u043a\u0436\u0435 \u043e\u0442\u0440\u0430\u0436\u0430\u044e\u0442\u0441\u044f \u0432 \u043a\u043e\u043b\u0438\u0447\u0435\u0441\u0442\u0432\u0435 \u043f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a\u043e\u0432, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u044b\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043a\u043e\u0442\u043e\u0440\u043e\u0435 \u0432\u043e\u0437\u0440\u043e\u0441\u043b\u043e \u0432 2023 \u0433\u043e\u0434\u0443 \u0434\u043e \u0440\u0435\u043a\u043e\u0440\u0434\u043d\u044b\u0445 56 \u043f\u043e \u0441\u0440\u0430\u0432\u043d\u0435\u043d\u0438\u044e \u0441 44 \u0432 2022 \u0433\u043e\u0434\u0443.\n\n\u0414\u0440\u0443\u0433\u0438\u043c \u0432\u0430\u0436\u043d\u044b\u043c \u0442\u0440\u0435\u043d\u0434\u043e\u043c \u0441\u0442\u0430\u043b\u043e \u0441\u043e\u043a\u0440\u0430\u0449\u0435\u043d\u0438\u0435 \u0432\u0440\u0435\u043c\u0435\u043d\u0438, \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0433\u043e \u0434\u043b\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 TTE \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043d\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 (n-day \u0438\u043b\u0438 0-day), - \u0434\u043e \u043f\u044f\u0442\u0438 \u0434\u043d\u0435\u0439!\n\n\u0414\u043b\u044f \u0441\u0440\u0430\u0432\u043d\u0435\u043d\u0438\u044f, \u0432 2018-2019 \u0433\u043e\u0434\u0430\u0445 TTE \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u043b 63 \u0434\u043d\u044f, \u0430 \u0432 2021-2022 \u0433\u043e\u0434\u0430\u0445 - 32 \u0434\u043d\u044f, \u0447\u0442\u043e \u0434\u0430\u0432\u0430\u043b\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0434\u043b\u044f \u043f\u043b\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u043f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u044f \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u043b\u0438 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u043c\u0435\u0440 \u043f\u043e \u0441\u043c\u044f\u0433\u0447\u0435\u043d\u0438\u044e \u043f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u0439 \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c.\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0442\u0435\u043f\u0435\u0440\u044c, \u043a\u043e\u0433\u0434\u0430 TTE \u0441\u043e\u043a\u0440\u0430\u0442\u0438\u043b\u043e\u0441\u044c \u0434\u043e 5 \u0434\u043d\u0435\u0439, \u0442\u0430\u043a\u0438\u0435 \u0441\u0442\u0440\u0430\u0442\u0435\u0433\u0438\u0438, \u043a\u0430\u043a \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0430\u0446\u0438\u044f \u0441\u0435\u0442\u0438, \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0438 \u043e\u043f\u0435\u0440\u0430\u0442\u0438\u0432\u043d\u043e\u0435 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u0438\u043e\u0440\u0438\u0442\u0435\u0442\u043e\u0432 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439, \u0432\u044b\u0445\u043e\u0434\u044f\u0442 \u043d\u0430 \u043f\u0435\u0440\u0432\u044b\u0439 \u043f\u043b\u0430\u043d.\n\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441 \u044d\u0442\u0438\u043c Google \u0431\u043e\u043b\u044c\u0448\u0435 \u043d\u0435 \u0432\u0438\u0434\u0438\u0442 \u043a\u043e\u0440\u0440\u0435\u043b\u044f\u0446\u0438\u0438 \u043c\u0435\u0436\u0434\u0443 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u0435\u043c \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0438 TTE.\n\n\u0412 2023 \u0433\u043e\u0434\u0443 75% \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0431\u044b\u043b\u0438 \u043e\u0431\u043d\u0430\u0440\u043e\u0434\u043e\u0432\u0430\u043d\u044b \u0434\u043e \u043d\u0430\u0447\u0430\u043b\u0430 \u0438\u0445 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0443\u0441\u043b\u043e\u0432\u0438\u044f\u0445, \u0430 25% \u0431\u044b\u043b\u0438 \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u044b \u043f\u043e\u0441\u043b\u0435 \u0442\u043e\u0433\u043e, \u043a\u0430\u043a \u0445\u0430\u043a\u0435\u0440\u044b \u0443\u0436\u0435 \u043d\u0430\u0447\u0430\u043b\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u0412 \u043e\u0442\u0447\u0435\u0442\u0435 \u043f\u0440\u0438\u0432\u0435\u0434\u0435\u043d\u044b \u0434\u0432\u0430 \u043f\u0440\u0438\u043c\u0435\u0440\u0430, \u0434\u0435\u043c\u043e\u043d\u0441\u0442\u0440\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u0435 \u0432\u0437\u0430\u0438\u043c\u043e\u0441\u0432\u044f\u0437\u0438 \u043c\u0435\u0436\u0434\u0443 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c\u044e \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u043e\u0432 \u0438 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u044c\u044e: CVE-2023-28121 (\u043f\u043b\u0430\u0433\u0438\u043d WordPress) \u0438 CVE-2023-27997 (Fortinet FortiOS).\n\n\u0412 \u043f\u0435\u0440\u0432\u043e\u043c \u0441\u043b\u0443\u0447\u0430\u0435 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c \u0447\u0435\u0440\u0435\u0437 \u0442\u0440\u0438 \u043c\u0435\u0441\u044f\u0446\u0430 \u043f\u043e\u0441\u043b\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0438 \u0447\u0435\u0440\u0435\u0437 \u0434\u0435\u0441\u044f\u0442\u044c \u0434\u043d\u0435\u0439 \u043f\u043e\u0441\u043b\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438 PoC, \u0430 \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 FortiOS - \u043f\u0440\u0430\u043a\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0441\u0440\u0430\u0437\u0443 \u0431\u044b\u043b\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0432 PoC, \u043d\u043e \u043f\u0435\u0440\u0432\u044b\u0439 \u0441\u043b\u0443\u0447\u0430\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0431\u044b\u043b \u0437\u0430\u0444\u0438\u043a\u0441\u0438\u0440\u043e\u0432\u0430\u043d \u0447\u0435\u0442\u044b\u0440\u0435 \u043c\u0435\u0441\u044f\u0446\u0430 \u0441\u043f\u0443\u0441\u0442\u044f.\n\n\u0421\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u043c\u043e\u0442\u0438\u0432\u0430\u0446\u0438\u044f \u0441\u0443\u0431\u044a\u0435\u043a\u0442\u0430 \u0443\u0433\u0440\u043e\u0437\u044b, \u0446\u0435\u043b\u0435\u0432\u0430\u044f \u0446\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0438 \u043e\u0431\u0449\u0430\u044f \u0441\u043b\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0430\u0442\u0430\u043a\u0438 - \u0432\u0441\u0435 \u044d\u0442\u043e \u043f\u0440\u043e\u0434\u043e\u043b\u0436\u0430\u0435\u0442 \u0438\u0433\u0440\u0430\u0442\u044c \u0440\u043e\u043b\u044c \u0432 TTE, \u043e\u0434\u043d\u0430\u043a\u043e \u043a\u0430\u043a\u0443\u044e-\u043b\u0438\u0431\u043e \u043a\u043e\u0440\u0440\u0435\u043b\u044f\u0446\u0438\u044e \u0441 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e\u0441\u0442\u044c\u044e PoC \u0442\u0435\u043f\u0435\u0440\u044c \u043c\u043e\u0436\u043d\u043e \u043d\u0435 \u0443\u0447\u0438\u0442\u044b\u0432\u0430\u0442\u044c \u0432\u043e\u0432\u0441\u0435.", "creation_timestamp": "2024-10-17T18:15:05.000000Z"}, {"uuid": "c37bf7c6-c11a-4e49-bfc4-07621533523e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3929", "content": "\ud83d\udc7e\ud83c\udf7aWindows11 Exploits : https://system32.ink/windows11-exploits/\n\n\ud83d\udca9\ud83d\udca5TCL Chinese Theatres Data Leak : https://system32.ink/tcl-chinese-theatres-data-leak/\n\n\u2b50\ud83d\udd30Chrome CVE-2023-2033 PoC : https://system32.ink/chrome-cve-2023-2033-poc/\n\n\ud83d\udc7e\ud83d\udca5\u26a1Cloudpanel 0-day Exploit : https://system32.ink/cloudpanel-0-day-exploit-cve-2023-35885/\n\n\u2623\ufe0f\u26a1WooCommerce Payments: Unauthorized Admin Access Exploit : https://system32.ink/woocommerce-payments-unauthorized-admin-access-exploit-cve-2023-28121/\n\n@Crackcodes | System32.ink | Crackcodes.in", "creation_timestamp": "2023-07-23T16:31:42.000000Z"}, {"uuid": "23b7c1f9-e378-41b6-8473-685f64f4d448", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/3925", "content": "\ud83d\udc7e\ud83c\udf7aWindows11 Exploits : https://system32.ink/windows11-exploits/\n\n\ud83d\udca9\ud83d\udca5TCL Chinese Theatres Data Leak : https://system32.ink/tcl-chinese-theatres-data-leak/\n\n\u2b50\ud83d\udd30Chrome CVE-2023-2033 PoC : https://system32.ink/chrome-cve-2023-2033-poc/\n\n\ud83d\udc7e\ud83d\udca5\u26a1Cloudpanel 0-day Exploit : https://system32.ink/cloudpanel-0-day-exploit-cve-2023-35885/\n\n\u2623\ufe0f\u26a1WooCommerce Payments: Unauthorized Admin Access Exploit : https://system32.ink/woocommerce-payments-unauthorized-admin-access-exploit-cve-2023-28121/\n\n@Crackcodes | System32.ink | Crackcodes.in", "creation_timestamp": "2023-07-23T03:58:34.000000Z"}, {"uuid": "4c21a597-06d7-447a-8cc2-f3f6fe4571ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/fnpenmJ_f7_fFmjB1Ud6RWgOGDO_V8bAt6A4dv99uS-fjwM", "content": "", "creation_timestamp": "2023-07-04T08:42:45.000000Z"}, {"uuid": "a1e7ed65-af53-440f-a1e6-2444786720b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/DailyToolz/1069", "content": "WooCommerce Payments < 5.6.2 - Unauthenticated Privilege Escalation\nhttps://github.com/Jenderal92/WP-CVE-2023-28121\n\n- @DailyToolz", "creation_timestamp": "2023-11-08T09:35:40.000000Z"}, {"uuid": "e423623f-8763-4de1-b321-bf850dd653bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/moKYuzk-US9A_0xXsKl2H3XHNwFMbJ0u6T6mjav3Z3AsU5E", "content": "", "creation_timestamp": "2023-08-03T01:28:36.000000Z"}, {"uuid": "76f18b18-6d75-44ad-b37a-fc487f952884", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/_GmyDuEe1pQ9e3VNJpgawokzdwcEhYt6NHtd1keQuDP72-E", "content": "", "creation_timestamp": "2023-07-05T15:54:33.000000Z"}, {"uuid": "7d08f630-aef2-46b2-9472-46cba897d7de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/AK7kZa44LQ4J_DZv36e-bguK-tTZfaKbqCqG9vrn00Yzo-0", "content": "", "creation_timestamp": "2023-08-01T01:27:04.000000Z"}, {"uuid": "a354275d-8de2-40c7-8177-767a9023a304", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/bKmqDzemxeCyhkSLgEuzxbxLvXm_WubP7NDARkXRAiSMmTs", "content": "", "creation_timestamp": "2023-07-27T12:55:48.000000Z"}, {"uuid": "095ee2d8-2f9d-4cc2-8765-a23950d63ea9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/1I529TvcSi_jikcOAxPTnPycQ-z4pKQPk6GTNAOzk5pjdUQ", "content": "", "creation_timestamp": "2023-06-30T14:29:46.000000Z"}, {"uuid": "679e94ce-4467-4127-8f73-2800d3a76f7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/yMAPDfRJm3jSJlTi8HQQLiAMSOAh9-sKBpHEYl4dUa75JFA", "content": "", "creation_timestamp": "2023-06-23T06:19:55.000000Z"}, {"uuid": "2278f7fb-bec8-442f-a690-4644593007cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/KrpOwO2z9FRMuq1662lxDKMPblkpRsQ-dVv3hLzeC2cmqwo", "content": "", "creation_timestamp": "2023-06-18T05:46:45.000000Z"}, {"uuid": "beb3551c-d84d-4a9f-bdd7-e1cd2508dbdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/SPxJ9Lx5EcANGJOCm5qxQNKpKJ-C4-1SHqsuqftXyGl4a5E", "content": "", "creation_timestamp": "2023-06-16T18:18:29.000000Z"}, {"uuid": "3d632166-88a8-4aa3-8812-06b4429592e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/LrHtNa--zbx6w-3LzmyGswx-TZfvgs4sa0lB0MNRVXMSnbo", "content": "", "creation_timestamp": "2023-09-23T10:57:29.000000Z"}, {"uuid": "6912a120-ddd7-48ac-a6a8-8f2002dd07ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/Frd3FSofgLCxgj0SOoXhdl1p0gfYDt3U84REsH3J76yujBU", "content": "", "creation_timestamp": "2023-08-11T12:19:34.000000Z"}, {"uuid": "ec940d43-be18-48a4-9231-5490768277d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/QavFLzoJfdRy-kF6kcGhIDuSDFIYRC_kPrC-Hj8fWrOF0rY", "content": "", "creation_timestamp": "2023-08-09T08:14:19.000000Z"}, {"uuid": "0b2abe4d-beae-406f-9899-69a88eaafa8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/xRhQAxigkk1Mv7cmyPhdivbzVpI2ctQT1vAAGQiFl-OYVpo", "content": "", "creation_timestamp": "2023-07-03T11:30:34.000000Z"}, {"uuid": "e36f87b7-a9ef-41d9-baa3-ee60ada079f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/_E8odMkMfchLmpyHqcmZI0L2wWVsU5JvQfCYF-kQL8lMpms", "content": "", "creation_timestamp": "2023-08-02T12:27:43.000000Z"}, {"uuid": "aecc9f3e-2d6e-4c2f-949d-6094a1f03b97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/cslQrZ8oXN9qBLawBV4NKFyOgzw7ZfYLdXja5A657KF-5tg", "content": "", "creation_timestamp": "2023-08-28T12:03:25.000000Z"}, {"uuid": "0cdc52ee-c1d9-4b75-807d-bb087fe54d8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/qeRTtTEm_QCgMnTw4Bc8fXpnelFz7ZTwH-E0we9AqmEL-tc", "content": "", "creation_timestamp": "2023-11-02T01:20:30.000000Z"}, {"uuid": "4607ab79-6542-4a8a-916c-08e1a3d32cff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "Telegram/JBr0UQOVhvCQEnlc9uvUecqWRkkn4neJMHe2WLRzDNz5z08", "content": "", "creation_timestamp": "2023-10-10T10:41:30.000000Z"}, {"uuid": "a85f6397-2534-483a-acef-35940ef61f88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/VLLbCF1qssaXkXQLkiL5C8Z3wdUZ3U-jOUkA-yaI1ysb0hk", "content": "", "creation_timestamp": "2023-06-27T09:31:38.000000Z"}, {"uuid": "28af0919-f2b2-43b6-b8c1-7768cc0e47fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/e5NsjXWqwFSWFCWWl0inlWdJLIeW-TfHLVBAW0pHGQqitio", "content": "", "creation_timestamp": "2023-06-25T15:49:39.000000Z"}, {"uuid": "aa035d67-698c-49a6-9aa7-2f06af0ac8cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "seen", "source": "Telegram/FhmVmT7Wy1dZyGiCPc1z2FYeNP5DYqt41RqbapAGKUD4Q24", "content": "", "creation_timestamp": "2023-06-16T18:18:30.000000Z"}, {"uuid": "3f51cc04-bc60-454d-b131-d818221cfc97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "exploited", "source": "https://t.me/information_security_channel/50291", "content": "WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin\nhttps://www.securityweek.com/wordpress-sites-hacked-via-critical-vulnerability-in-woocommerce-payments-plugin/\n\nAttackers have started exploiting CVE-2023-28121, a recent critical vulnerability in the WooCommerce Payments WordPress plugin.\nThe post WordPress Sites Hacked via Critical Vulnerability in WooCommerce Payments Plugin (https://www.securityweek.com/wordpress-sites-hacked-via-critical-vulnerability-in-woocommerce-payments-plugin/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2023-07-18T16:56:02.000000Z"}, {"uuid": "389a0878-893d-4719-9ad7-1abd126de27f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "exploited", "source": "https://t.me/thehackernews/3609", "content": "Beware! A critical security flaw (CVE-2023-28121) in the WooCommerce Payments #WordPress plugin is currently being actively exploited by threat actors. \n \nIn addition to this, Rapid7 has also discovered ongoing exploitation of Adobe ColdFusion flaws (including CVE-2023-29298), resulting in web shell deployments. \n \nRead details here: https://thehackernews.com/2023/07/cybercriminals-exploiting-woocommerce.html", "creation_timestamp": "2023-07-18T08:02:30.000000Z"}, {"uuid": "7f0a9b97-56e7-4a55-b46c-0e1043fba319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8707", "content": "#exploit\n1. CVE-2023-28121:\nWooCommerce Payments: Unauthorized Admin Access Exploit\nhttps://github.com/gbrsh/CVE-2023-28121\n]-> https://github.com/Jenderal92/CVE-2023-28121\n\n2. CVE-2023-35885:\nCloudpanel 0-day Exploit\nhttps://github.com/datackmy/FallingSkies-CVE-2023-35885", "creation_timestamp": "2023-07-21T10:59:01.000000Z"}, {"uuid": "13f29a58-94b4-4255-9b30-efb9de2cdf0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-28121", "type": "published-proof-of-concept", "source": "https://t.me/fiola_channel/21", "content": "#WTS Wordpress Exploit CVE-2023-28121\n\n>> Full source code\n\nPrice? $20\nProof @fiolatoolspayment\nChannel @fiola_tools\nContact @GrazzMean", "creation_timestamp": "2024-10-10T15:20:28.000000Z"}]}