{"vulnerability": "CVE-2023-36250", "sightings": [{"uuid": "12577679-87c1-47c6-ba6d-d20d3ca2cef2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36250", "type": "published-proof-of-concept", "source": "https://t.me/dilagrafie/3176", "content": "Hackers Factory \n\nSocial engineering tool [Access Webcam & Microphone & Location Finder] With Python\n\nhttps://github.com/ultrasecurity/Storm-Breaker\n\nEternalHush - new free advanced open-source c2 framework\n\nhttps://github.com/APT64/EternalHushFramework\n\nVMWare Aria Operations for Networks (vRealize Network Insight) Static SSH key RCE (CVE-2023-34039)\n\nhttps://github.com/sinsinology/CVE-2023-34039\n\nCSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.\n\nhttps://github.com/BrunoTeixeira1996/CVE-2023-36250\n\nA collection of tools for security research on Starlink's User Terminal\n\nhttps://github.com/quarkslab/starlink-tools\n\nSession Hijacking Visual Exploitation\n\nhttps://github.com/doyensec/Session-Hijacking-Visual-Exploitation\n\nPwn2Own Vancouver 2023 Ubuntu LPE exploit\n\nhttps://github.com/synacktiv/CVE-2023-35001\n\nMaking Favicon.ico based Recon Great again \n\nhttps://github.com/devanshbatham/FavFreak\n\nA modern tool written in Python that automates your xss findings.\n\nhttps://github.com/faiyazahmad07/xss_vibes\n\nGet PROXY List that gets updated everyday\n\nhttps://github.com/TheSpeedX/PROXY-List\n\n#infosec #cybersecurity #hackersfactory \n\nhttps://t.me/dilagrafie", "creation_timestamp": "2023-09-04T16:29:39.000000Z"}, {"uuid": "dcc24bcb-9fdc-4730-b1aa-e42e9d64b3f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36250", "type": "published-proof-of-concept", "source": "https://t.me/cKure/11486", "content": "\u25a0\u25a0\u25a1\u25a1\u25a1 CVE-2023-36250: CSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.\n\nhttps://github.com/BrunoTeixeira1996/CVE-2023-36250", "creation_timestamp": "2023-09-02T11:09:21.000000Z"}, {"uuid": "121819d6-1834-4c20-bd28-08361728748f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36250", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8956", "content": "#exploit\n1. CVE-2023-36250:\nCSV Injection in GNOME time tracker\nhttps://github.com/BrunoTeixeira1996/CVE-2023-36250\n\n2. CVE-2023-35001:\nUbuntu nftables oob read/write exploit\nhttps://github.com/synacktiv/CVE-2023-35001", "creation_timestamp": "2023-09-02T12:17:01.000000Z"}, {"uuid": "bb411766-d234-4a1e-a8e3-1d7110484c7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-36250", "type": "seen", "source": "https://t.me/cibsecurity/70453", "content": "\u203c CVE-2023-36250 \u203c\n\nCSV Injection vulnerability in GNOME time tracker version 3.0.2, allows local attackers to execute arbitrary code via crafted .tsv file when creating a new record.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-04T08:41:09.000000Z"}]}