{"vulnerability": "CVE-2023-4996", "sightings": [{"uuid": "9e9f6abb-6d49-472c-90ed-d875d8eec644", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6122", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco\nURL\uff1ahttps://github.com/mbadanoiu/CVE-2023-49964\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-12-09T11:00:14.000000Z"}, {"uuid": "9201a47a-df22-4b8d-8f5e-c95e4e945311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49965", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9155", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49965\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SpaceX Starlink Wi-Fi router Gen 2 before 2023.48.0 allows XSS via the ssid and password parameters on the Setup Page.\n\ud83d\udccf Published: 2024-04-05T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-27T16:57:40.374Z\n\ud83d\udd17 References:\n1. https://hackintoanetwork.com/blog/2023-starlink-router-gen2-xss-eng/", "creation_timestamp": "2025-03-27T17:26:47.000000Z"}, {"uuid": "d7ec3e81-6b39-4748-846d-c40b3bac676c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "seen", "source": "https://t.me/ctinow/161298", "content": "https://ift.tt/v9M8DsS\nCVE-2023-49964 | Hyland Alfresco Community Edition up to 7.2.0 Template folder.get.html.ftl injection", "creation_timestamp": "2024-01-01T13:02:29.000000Z"}, {"uuid": "56640ab6-edb7-49fd-80e1-da1769a7dea8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49961", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18794", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49961\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access Manager 3.x and 4.x have Incorrect Access Control which can lead to sensitive data exposure.\n\ud83d\udccf Published: 2024-01-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-18T16:02:55.762Z\n\ud83d\udd17 References:\n1. https://www.wallix.com/support/alerts/", "creation_timestamp": "2025-06-18T16:43:44.000000Z"}, {"uuid": "017d1030-8943-484b-bd14-754513bb499e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4996", "type": "seen", "source": "https://t.me/cibsecurity/73601", "content": "\u203c CVE-2023-4996 \u203c\n\nNetskope was made aware of a security vulnerability in its NSClient product for version 100 & prior where a malicious non-admin user can disable the Netskope client by using a specially-crafted package. The root cause of the problem was a user control code when called by a Windows ServiceController did not validate the permissions associated with the user before executing the user control code. This user control code had permissions to terminate the NSClient service.\u00c2\u00a0\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-06T14:25:47.000000Z"}, {"uuid": "b0edfb07-ac7c-4d58-bad1-bb4d143c4e2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49961", "type": "seen", "source": "https://t.me/ctinow/173655", "content": "https://ift.tt/fOkvuF4\nCVE-2023-49961 | WALLIX Bastion/Access Manager access control", "creation_timestamp": "2024-01-25T18:21:07.000000Z"}, {"uuid": "42a13718-4ac5-4e41-accc-243011d5f55c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49961", "type": "seen", "source": "https://t.me/ctinow/164671", "content": "https://ift.tt/YaN8Zg6\nCVE-2023-49961", "creation_timestamp": "2024-01-08T22:26:43.000000Z"}, {"uuid": "b06df3c1-e28b-4514-88d0-9587c98a398f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/darkcommunityofficial/189", "content": "#exploit\n\n1. #SonicWall WXA - Authentication Bypass and #RCE Vulnerability\n\nhttps://www.praetorian.com/blog/sonicwall-wxa-authentication-bypass-and-rce-vulnerability\n\n2. #CVE-2023-49964:\nFreeMarker Server-Side Template Injection in #Alfresco\n\nhttps://github.com/mbadanoiu/CVE-2023-49964\n\n3. CVE-2022-21392:\n#LPE via NMR SUID in #Oracle Enterprise Manager\n\nhttps://github.com/mbadanoiu/CVE-2022-21392", "creation_timestamp": "2023-12-11T06:53:58.000000Z"}, {"uuid": "bed66e88-69ca-499d-a1a4-822f5c8c1332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49969", "type": "seen", "source": "https://t.me/ctinow/199783", "content": "https://ift.tt/4kEuyVx\nCVE-2023-49969", "creation_timestamp": "2024-03-05T01:32:45.000000Z"}, {"uuid": "2a419e0d-cc3a-475b-adad-4cd9a219f4db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49968", "type": "seen", "source": "https://t.me/ctinow/199782", "content": "https://ift.tt/IYTEr8y\nCVE-2023-49968", "creation_timestamp": "2024-03-05T01:32:43.000000Z"}, {"uuid": "9cbbdf36-e656-406e-9375-16ac5b9ebba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49969", "type": "seen", "source": "https://t.me/ctinow/199792", "content": "https://ift.tt/4kEuyVx\nCVE-2023-49969", "creation_timestamp": "2024-03-05T01:32:59.000000Z"}, {"uuid": "33061272-1095-4d06-9c1c-56082ba9d056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49968", "type": "seen", "source": "https://t.me/ctinow/199791", "content": "https://ift.tt/IYTEr8y\nCVE-2023-49968", "creation_timestamp": "2024-03-05T01:32:58.000000Z"}, {"uuid": "81f598ac-9413-4b89-b72a-03285ae943e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9557", "content": "#exploit\n1. SonicWall WXA - Authentication Bypass and RCE Vulnerability\nhttps://www.praetorian.com/blog/sonicwall-wxa-authentication-bypass-and-rce-vulnerability\n\n2. CVE-2023-49964:\nFreeMarker Server-Side Template Injection in Alfresco\nhttps://github.com/mbadanoiu/CVE-2023-49964\n\n3. CVE-2022-21392:\nLPE via NMR SUID in Oracle Enterprise Manager\nhttps://github.com/mbadanoiu/CVE-2022-21392", "creation_timestamp": "2023-12-10T12:43:01.000000Z"}, {"uuid": "8056f6db-6ec4-4e0c-8e81-5fd6be9b178c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49967", "type": "seen", "source": "https://t.me/ctinow/160949", "content": "https://ift.tt/p2JrD3I\nCVE-2023-49967 | Typecho 1.2.1 /index.php/action/xmlrpc resource consumption (Issue 1648)", "creation_timestamp": "2023-12-30T19:01:46.000000Z"}, {"uuid": "435a4e45-c8e0-407b-b056-7e9a1b31ceb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2236", "content": "#exploit\n1. SonicWall WXA - Authentication Bypass and RCE Vulnerability\nhttps://www.praetorian.com/blog/sonicwall-wxa-authentication-bypass-and-rce-vulnerability\n\n2. CVE-2023-49964:\nFreeMarker Server-Side Template Injection in Alfresco\nhttps://github.com/mbadanoiu/CVE-2023-49964\n\n3. CVE-2022-21392:\nLPE via NMR SUID in Oracle Enterprise Manager\nhttps://github.com/mbadanoiu/CVE-2022-21392", "creation_timestamp": "2024-08-16T08:56:10.000000Z"}]}