{"vulnerability": "CVE-2023-4839", "sightings": [{"uuid": "f6e2ca56-d4a6-421f-960a-bb0b811726e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48395", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17124", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-48395\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: Kaifa Technology WebITR is an online attendance system, it has insufficient validation for user input within a special function. A remote attacker with regular user privilege can exploit this vulnerability to inject arbitrary SQL commands to read database.\n\ud83d\udccf Published: 2023-12-15T09:27:22.243Z\n\ud83d\udccf Modified: 2025-05-21T14:25:53.216Z\n\ud83d\udd17 References:\n1. https://www.twcert.org.tw/tw/cp-132-7625-a0b9c-1.html", "creation_timestamp": "2025-05-21T14:46:24.000000Z"}, {"uuid": "5071b8d4-1e7f-48ee-ad81-2688d5d67c2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48396", "type": "seen", "source": "https://t.me/cvedetector/2030", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-48396 - Apache SeaTunnel Hardcoded JWT Key SSRF\", \n  \"Content\": \"CVE ID : CVE-2023-48396 \nPublished : July 30, 2024, 9:15 a.m. | 43\u00a0minutes ago \nDescription : Web Authentication vulnerability in Apache SeaTunnel.\u00a0Since the jwt key is hardcoded in the application, an attacker can forge  \nany token to log in any user.  \n  \nAttacker can get\u00a0secret key in\u00a0/seatunnel-server/seatunnel-app/src/main/resources/application.yml and then create a token.  \nThis issue affects Apache SeaTunnel: 1.0.0.  \n  \nUsers are recommended to upgrade to version 1.0.1, which fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-30T14:14:44.000000Z"}, {"uuid": "3750588e-f501-412b-85ed-82e8a18119c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4839", "type": "seen", "source": "Telegram/od5o4I5TB6aBkP31Rl0rKp_jZONub_QKglZirx_SK589mrBi", "content": "", "creation_timestamp": "2025-02-14T10:03:08.000000Z"}, {"uuid": "2d9a16c4-e8f3-4326-966b-1e03ec14a811", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4839", "type": "seen", "source": "https://t.me/ctinow/206358", "content": "https://ift.tt/0hOGLk3\nCVE-2023-4839", "creation_timestamp": "2024-03-13T03:27:00.000000Z"}, {"uuid": "aee8169d-d0ef-4a61-9613-f67844a92ba8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4839", "type": "seen", "source": "https://t.me/ctinow/206356", "content": "https://ift.tt/0hOGLk3\nCVE-2023-4839", "creation_timestamp": "2024-03-13T03:26:58.000000Z"}, {"uuid": "c813463a-1509-4987-8007-852ecb38baee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48399", "type": "seen", "source": "https://t.me/ctinow/161095", "content": "https://ift.tt/zGXZ5Mf\nCVE-2023-48399 | Google Android protocolmiscadapter.cpp Init information disclosure", "creation_timestamp": "2023-12-31T14:41:22.000000Z"}, {"uuid": "a6524060-9e96-4dc0-827c-bad6c88786eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48398", "type": "seen", "source": "https://t.me/ctinow/161079", "content": "https://ift.tt/IM1KAS0\nCVE-2023-48398 | Google Android protocolnetadapter.cpp ProtocolNetAcBarringInfo information disclosure", "creation_timestamp": "2023-12-31T13:41:44.000000Z"}, {"uuid": "2e38dc23-b9fa-4865-94b6-248732ce8bf6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48397", "type": "seen", "source": "https://t.me/ctinow/161077", "content": "https://ift.tt/iLEOjQH\nCVE-2023-48397 | Google Android protocolcalladapter.cpp Init information disclosure", "creation_timestamp": "2023-12-31T13:16:52.000000Z"}]}