{"vulnerability": "CVE-2023-2903", "sightings": [{"uuid": "a212d081-cda1-487e-9078-7dbdc969b81a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29032", "type": "seen", "source": "https://t.me/thehackernews/3624", "content": "Multiple critical flaws in Apache OpenMeetings, a web conferencing solution, exposed admin accounts to control and malicious code execution. \n \n\u2705 CVE-2023-28936 \n\u2705 CVE-2023-29032 \n\u2705 CVE-2023-29246 \n \nRead details: https://thehackernews.com/2023/07/apache-openmeetings-web-conferencing.html", "creation_timestamp": "2023-07-20T18:14:25.000000Z"}, {"uuid": "7ab215ae-83a0-40a1-ad68-977ce15e46af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29030", "type": "seen", "source": "https://t.me/cibsecurity/63910", "content": "\u203c CVE-2023-29030 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as a phishing attack, is required for successful exploitation of this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:20:35.000000Z"}, {"uuid": "72eb81a5-44a9-40b7-ae8a-9796bc986e7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29031", "type": "seen", "source": "https://t.me/cibsecurity/63907", "content": "\u203c CVE-2023-29031 \u203c\n\nA cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as a phishing attack, is required for successful exploitation of this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T22:15:37.000000Z"}, {"uuid": "b9cc9501-3ebd-4b43-9420-7b5120230d6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-29032", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/8755", "content": "#WebApp_Security\n1. Tool to discover vulnerabilities in web applications\nhttps://github.com/Zigrin-Security/CakeFuzzer\n2. Apache OpenMeetings Vulnerabilities through Unexpected Application State (CVE-2023-28936, CVE-2023-29032, CVE-2023-29246)\nhttps://www.sonarsource.com/blog/a-twist-in-the-code-openmeetings-vulnerabilities-through-unexpected-application-state", "creation_timestamp": "2023-07-29T12:17:01.000000Z"}]}