{"vulnerability": "CVE-2023-4333", "sightings": [{"uuid": "76727489-6cd1-46ff-a60e-2e875ef3464e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43336", "type": "seen", "source": "https://t.me/cibsecurity/73431", "content": "\u203c CVE-2023-43336 \u203c\n\nSangoma Technologies FreePBX before cdr 15.0.18, 16.0.40, 15.0.16, and 16.0.17 was discovered to contain an access control issue via a modified parameter value, e.g., changing extension=self to extension=101.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-02T15:28:55.000000Z"}, {"uuid": "cd4c5afd-f17a-4349-865c-6a4427b2b251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4333", "type": "seen", "source": "https://t.me/cibsecurity/68572", "content": "\u203c CVE-2023-4333 \u203c\n\nBroadcom RAID Controller web interface is vulnerable to exposure of sensitive data and the keys used for encryption are accessible to any local user on Windows\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-15T22:30:48.000000Z"}, {"uuid": "ec7a48a3-c3db-46b9-bb35-ef8263f42d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43331", "type": "seen", "source": "https://t.me/cibsecurity/71119", "content": "\u203c CVE-2023-43331 \u203c\n\nA cross-site scripting (XSS) vulnerability in the Add User function of Small CRM v3.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-27T18:49:00.000000Z"}]}