{"vulnerability": "CVE-2023-31541", "sightings": [{"uuid": "7ad741bb-e12e-44dc-a471-0408612fa7ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31541", "type": "published-proof-of-concept", "source": "https://t.me/HackerOne/3515", "content": "A unrestricted file upload vulnerability was discovered in the \u2018Browse and upload images\u2019 feature of the CKEditor v1.2.3 plugin for Redmine, which allows arbitrary files to be uploaded to the server.\n\nhttps://github.com/DreamD2v/CVE-2023-31541/blob/main/CVE-2023-31541.md", "creation_timestamp": "2023-06-27T16:22:20.000000Z"}, {"uuid": "d027fa01-bed0-49f0-92ae-c6a4f2c60d3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31541", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/808", "content": "CVE-2023-31541 : CKEditor plugin v1.2.3 - Arbitrary file upload\nVerified : \u2714\ufe0f\nPOC : https://github.com/DreamD2v/CVE-2023-31541/blob/main/CVE-2023-31541.md", "creation_timestamp": "2023-08-10T14:30:31.000000Z"}]}