{"vulnerability": "CVE-2023-4051", "sightings": [{"uuid": "0f862f60-75f4-4a4a-aa8d-68bca42058e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40519", "type": "seen", "source": "https://t.me/cibsecurity/71530", "content": "\u203c CVE-2023-40519 \u203c\n\nA cross-site scripting (XSS) vulnerability in the bpk-common/auth/login/index.html login portal in Broadpeak Centralized Accounts Management Auth Agent 01.01.00.19219575_ee9195b0, 01.01.01.30097902_fd999e76, and 00.12.01.9565588_1254b459 allows remote attackers to inject arbitrary web script or HTML via the disconnectMessage parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-04T00:24:31.000000Z"}, {"uuid": "e3f65a79-921d-4ef8-84b9-9a594eda7b94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4051", "type": "seen", "source": "https://t.me/cibsecurity/67505", "content": "\u203c CVE-2023-4051 \u203c\n\nA website could have obscured the full screen notification by using the file open dialog. This could have led to user confusion and possible spoofing attacks. This vulnerability affects Firefox < 116.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-01T22:57:53.000000Z"}]}