{"vulnerability": "CVE-2023-3998", "sightings": [{"uuid": "3ffb48ad-a17d-4758-8faa-01e48e01e734", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3998", "type": "seen", "source": "https://t.me/cibsecurity/72656", "content": "\u203c CVE-2023-3998 \u203c\n\nThe wpDiscuz plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the userRate function in versions up to, and including, 7.6.3. This makes it possible for unauthenticated attackers to increase or decrease the rating of a post.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-20T12:35:13.000000Z"}, {"uuid": "bf95530c-0d44-49d4-a8de-4850267fdd41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39988", "type": "seen", "source": "https://t.me/cibsecurity/69756", "content": "\u203c CVE-2023-39988 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in ???(std.Cloud) WxSync plugin <=\u00c2\u00a02.7.23 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-04T14:16:09.000000Z"}, {"uuid": "eb77315b-700f-4327-a9e7-e0ea916e178e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-39987", "type": "seen", "source": "https://t.me/cibsecurity/69770", "content": "\u203c CVE-2023-39987 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Ajay Lulia wSecure Lite plugin <=\u00c2\u00a02.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-04T14:16:27.000000Z"}]}