{"vulnerability": "CVE-2023-45957", "sightings": [{"uuid": "a55420d0-5dbb-45ad-ab52-90bff8ab1d6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45957", "type": "seen", "source": "https://t.me/arpsyndicate/2365", "content": "#ExploitObserverAlert\n\nCVE-2023-45957\n\nDESCRIPTION: Exploit Observer has 3 entries related to CVE-2023-45957. A stored cross-site scripting (XSS) vulnerability in the component admin/AdminRequestSqlController.php of thirty bees before 1.5.0 allows attackers to execute arbitrary web script or HTML via $e->getMessage() error mishandling.\n\nFIRST-EPSS: 0.000450000", "creation_timestamp": "2024-01-03T21:58:39.000000Z"}, {"uuid": "9cab703f-dea1-4828-8a48-ff2731474b66", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45957", "type": "seen", "source": "https://t.me/ctinow/169644", "content": "https://ift.tt/oqsriQp\nCVE-2023-45957 | thirty bees up to 1.4.0 AdminRequestSqlController.php getMessage cross site scripting", "creation_timestamp": "2024-01-18T10:11:32.000000Z"}, {"uuid": "7fa2d12d-4a03-4a4e-a50f-8176d624b6b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-45957", "type": "seen", "source": "https://t.me/ctinow/158488", "content": "https://ift.tt/OvaCUXp\nCVE-2023-45957", "creation_timestamp": "2023-12-22T17:23:42.000000Z"}]}