{"vulnerability": "CVE-2023-4937", "sightings": [{"uuid": "527a9e9a-0d64-4cc2-ad5f-b9d2cf38b59c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2023-49371", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3lxsqigshuv25", "content": "", "creation_timestamp": "2025-09-01T23:20:09.952808Z"}, {"uuid": "d942fce4-8749-4375-893d-d3eba9da0146", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4937", "type": "seen", "source": "https://t.me/cibsecurity/72646", "content": "\u203c CVE-2023-4937 \u203c\n\nThe BEAR for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.1.3.3. This is due to missing or incorrect nonce validation on the woobe_bulkoperations_apply_default_combination function. This makes it possible for unauthenticated attackers to manipulate products via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-20T12:35:02.000000Z"}, {"uuid": "87c2f58a-4722-4167-9d80-4a48a43fa9ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49373", "type": "seen", "source": "https://t.me/ctinow/159025", "content": "https://ift.tt/0IwaE3M\nCVE-2023-49373 | JFinalCMS 5.0.0 /admin/slide/delete cross-site request forgery", "creation_timestamp": "2023-12-24T14:31:39.000000Z"}, {"uuid": "9b6166ca-d8d4-490b-bac6-9a7ff7e5990c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49376", "type": "seen", "source": "https://t.me/ctinow/159034", "content": "https://ift.tt/tCspiwY\nCVE-2023-49376 | JFinalCMS 5.0.0 /admin/tag/delete cross-site request forgery", "creation_timestamp": "2023-12-24T15:26:15.000000Z"}, {"uuid": "60ab3f85-1528-4c01-a1d8-7ef3d049ea62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49374", "type": "seen", "source": "https://t.me/ctinow/159033", "content": "https://ift.tt/8lAPuTb\nCVE-2023-49374 | JFinalCMS 5.0.0 /admin/slide/update cross-site request forgery", "creation_timestamp": "2023-12-24T15:26:14.000000Z"}, {"uuid": "ec779616-9eeb-4bcc-954b-3082a4d6884c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49372", "type": "seen", "source": "https://t.me/ctinow/159024", "content": "https://ift.tt/SE6OhFI\nCVE-2023-49372 | JFinalCMS 5.0.0 /admin/slide/save cross-site request forgery", "creation_timestamp": "2023-12-24T14:31:38.000000Z"}, {"uuid": "c71e75e7-fe17-4c25-91f4-6a044abcb059", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49375", "type": "seen", "source": "https://t.me/ctinow/159019", "content": "https://ift.tt/36hWPfB\nCVE-2023-49375 | JFinalCMS 5.0.0 update cross-site request forgery", "creation_timestamp": "2023-12-24T13:41:29.000000Z"}, {"uuid": "8de68f92-d8ce-443c-ad26-fd26babca37f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49377", "type": "seen", "source": "https://t.me/ctinow/159018", "content": "https://ift.tt/wbTpdgr\nCVE-2023-49377 | JFinalCMS 5.0.0 /admin/tag/update cross-site request forgery", "creation_timestamp": "2023-12-24T13:41:27.000000Z"}, {"uuid": "c1b0e1ab-a821-4064-9934-70d6290a6d87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49379", "type": "seen", "source": "https://t.me/ctinow/159016", "content": "https://ift.tt/rFwqnYx\nCVE-2023-49379 | JFinalCMS 5.0.0 /admin/friend_link/save cross-site request forgery", "creation_timestamp": "2023-12-24T13:41:25.000000Z"}, {"uuid": "4f01967b-744b-4216-8a6c-f20c327909a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49378", "type": "seen", "source": "https://t.me/ctinow/159014", "content": "https://ift.tt/45xkrhJ\nCVE-2023-49378 | JFinalCMS 5.0.0 /admin/form/save cross-site request forgery", "creation_timestamp": "2023-12-24T13:41:23.000000Z"}]}