{"vulnerability": "CVE-2023-3182", "sightings": [{"uuid": "71658e69-f1bd-4e5d-9fc4-c394e158409a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31822", "type": "seen", "source": "https://t.me/cibsecurity/66676", "content": "\u203c CVE-2023-31822 \u203c\n\nAn issue found in Entetsu Store v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Entetsu Store function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:58.000000Z"}, {"uuid": "de02f33e-b0ca-4af2-ab5b-17edfcecd17e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31820", "type": "seen", "source": "https://t.me/cibsecurity/66675", "content": "\u203c CVE-2023-31820 \u203c\n\nAn issue found in Shizutetsu Store v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:57.000000Z"}, {"uuid": "6a873c4a-9444-4c64-bfcb-d34b742cecc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31821", "type": "seen", "source": "https://t.me/cibsecurity/66672", "content": "\u203c CVE-2023-31821 \u203c\n\nAn issue found in ALBIS Co. ALBIS v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp ALBIS function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:51.000000Z"}, {"uuid": "f9fdd0da-5bda-46a0-87c6-5446fc70054d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31823", "type": "seen", "source": "https://t.me/cibsecurity/66671", "content": "\u203c CVE-2023-31823 \u203c\n\nAn issue found in Marui Co Marui Official app v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Marui Official Store function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:50.000000Z"}, {"uuid": "0595cc89-1f0f-4d6b-93c3-c62eebee1e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31825", "type": "seen", "source": "https://t.me/cibsecurity/66670", "content": "\u203c CVE-2023-31825 \u203c\n\nAn issue found in Inageya v.13.4.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp Inageya function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:49.000000Z"}, {"uuid": "a2753a51-a8db-4e65-a51d-aaf5e3791425", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31824", "type": "seen", "source": "https://t.me/cibsecurity/66668", "content": "\u203c CVE-2023-31824 \u203c\n\nAn issue found in DERICIA Co. Ltd, DELICIA v.13.6.1 allows a remote attacker to gain access to sensitive information via the channel access token in the miniapp DELICIA function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-13T18:11:44.000000Z"}, {"uuid": "54a295c4-b88a-41d1-9d02-a25f7533c1f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31826", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2171", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-31826\n\ud83d\udd39 Description: Skyscreamer Open Source Nevado JMS v1.3.2 does not perform security checks when receiving messages. This allows attackers to execute arbitrary commands via supplying crafted data.\n\ud83d\udccf Published: 2023-05-23T00:00:00\n\ud83d\udccf Modified: 2025-01-17T17:48:01.118Z\n\ud83d\udd17 References:\n1. http://nevado.skyscreamer.org/\n2. https://github.com/skyscreamer/nevado/releases\n3. https://novysodope.github.io/2023/04/01/95/\n4. https://github.com/skyscreamer/nevado/issues/121", "creation_timestamp": "2025-01-17T17:57:02.000000Z"}, {"uuid": "4155b507-4163-46f3-93cf-c38934468d6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-31826", "type": "seen", "source": "https://t.me/cibsecurity/64599", "content": "\u203c CVE-2023-31826 \u203c\n\nSkyscreamer Open Source Nevado JMS v1.3.2 does not perform security checks when receiving messages. This allows attackers to execute arbitrary commands via supplying crafted data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-23T07:25:19.000000Z"}]}