{"vulnerability": "CVE-2023-37988", "sightings": [{"uuid": "b35bc7ef-9f48-4e03-b24a-d2269d72ca72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "Telegram/M_5LD2ttx5rMY6ipbEbR_NSCvrDEss0d3-thqMCCSp2wHw", "content": "", "creation_timestamp": "2023-10-24T19:46:01.000000Z"}, {"uuid": "761624f9-2e78-44ba-a0a8-44a2efea3563", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lwpcbpo3nm2c", "content": "", "creation_timestamp": "2025-08-18T21:02:50.437813Z"}, {"uuid": "07e97061-fe2b-444d-84ac-dbaf76a5cee1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5317", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-37988 - Wordpress/Plugin - Contact Form Generator &lt; Reflected Cross-Site Scripting [RXSS]\nURL\uff1ahttps://github.com/codeb0ss/CVE-2023-37988-PoC\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-10-07T23:43:05.000000Z"}, {"uuid": "2f167f23-96fc-4e39-926c-11ab89eba107", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "seen", "source": "https://t.me/cibsecurity/68180", "content": "\u203c CVE-2023-37988 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in Creative Solutions Contact Form Generator plugin &lt;=\u00c2\u00a02.5.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T14:15:40.000000Z"}, {"uuid": "8b76c557-5324-443e-a28e-e6edc173582b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "https://t.me/codeb0ss/1225", "content": "", "creation_timestamp": "2023-10-08T01:39:24.000000Z"}, {"uuid": "a314752f-f7fe-4c88-aa93-687487024528", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "https://t.me/reverse_dungeon/3364", "content": "#exploit\n1. Emulating and Exploiting UEFI Firmware\nhttps://margin.re/2023/09/emulating-and-exploiting-uefi-firmware\n\n2. Updated SMM backdoor for UEFI based platforms\nhttps://github.com/Cr4sh/SmmBackdoorNg\n\n3. CVE-2023-37988:\nWordpress/Plugin (Contact Form Generator) - RXSS\nhttps://github.com/codeb0ss/CVE-2023-37988-PoC", "creation_timestamp": "2024-02-24T16:46:06.000000Z"}, {"uuid": "d36a83b0-a152-4372-a9f1-4075c61aa7c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "https://t.me/LearnExploit/5573", "content": "CVE-2023-37988 - Wordpress/Plugin - Contact Form Generator [RXSS] \n\nGithub\n\n#CVE #Wordpress #RXSS \n \u2014\u2014\u2014\u2014\u2014\u2014\u200c\n0Day.Today\n@LearnExploit\n@Tech_Army", "creation_timestamp": "2023-10-10T12:31:40.000000Z"}, {"uuid": "cc934984-1357-4f8d-8215-65aa1c49233e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9164", "content": "#exploit\n1. Emulating and Exploiting UEFI Firmware\nhttps://margin.re/2023/09/emulating-and-exploiting-uefi-firmware\n\n2. Updated SMM backdoor for UEFI based platforms\nhttps://github.com/Cr4sh/SmmBackdoorNg\n\n3. CVE-2023-37988:\nWordpress/Plugin/Contact Form Generator - RXSS\nhttps://github.com/codeb0ss/CVE-2023-37988-PoC", "creation_timestamp": "2024-01-17T22:03:35.000000Z"}, {"uuid": "0eec4291-3aec-452c-9941-4886bf4b2b9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37988", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/1302", "content": "#exploit\n1. Emulating and Exploiting UEFI Firmware\nhttps://margin.re/2023/09/emulating-and-exploiting-uefi-firmware\n\n2. Updated SMM backdoor for UEFI based platforms\nhttps://github.com/Cr4sh/SmmBackdoorNg\n\n3. CVE-2023-37988:\nWordpress/Plugin/Contact Form Generator - RXSS\nhttps://github.com/codeb0ss/CVE-2023-37988-PoC", "creation_timestamp": "2024-08-16T08:32:35.000000Z"}]}