{"vulnerability": "CVE-2023-4077", "sightings": [{"uuid": "f515ee21-1708-413e-8dd7-3ae0e1c0fdb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40779", "type": "seen", "source": "https://t.me/cibsecurity/70511", "content": "\u203c CVE-2023-40779 \u203c\n\nAn issue in IceWarp Mail Server Deep Castle 2 v.13.0.1.2 allows a remote attacker to execute arbitrary code via a crafted request to the URL.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-14T22:34:53.000000Z"}, {"uuid": "174d3c21-da98-4728-9343-41b427981b88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40771", "type": "seen", "source": "https://t.me/cibsecurity/69673", "content": "\u203c CVE-2023-40771 \u203c\n\nSQL injection vulnerability in DataEase v.1.18.9 allows a remote attacker to obtain sensitive information via a crafted string outside of the blacklist function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-01T20:15:24.000000Z"}]}