{"vulnerability": "CVE-2023-51784", "sightings": [{"uuid": "35813f34-2489-491d-bf88-c9530bbf7d4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-51784", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4346", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-51784\n\ud83d\udd25 CVSS Score: 9.8 (CVSS_V3)\n\ud83d\udd39 Description: Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0, which could lead to Remote Code Execution.\u00a0Users are advised to upgrade to Apache InLong's 1.10.0 or cherry-pick [1] to solve it.\n\n[1]  https://github.com/apache/inlong/pull/9329\n\ud83d\udccf Published: 2024-01-03T12:30:21Z\n\ud83d\udccf Modified: 2025-02-13T19:30:07Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2023-51784\n2. https://github.com/apache/inlong/pull/9329\n3. https://github.com/apache/inlong/commit/1607837be28438c0ccae8da15afb653f2afed090\n4. https://github.com/apache/inlong\n5. https://lists.apache.org/thread/4nxbyl6mh5jgh0plk0qposbxwn6w9h8j\n6. http://www.openwall.com/lists/oss-security/2024/01/03/1", "creation_timestamp": "2025-02-13T20:15:50.000000Z"}, {"uuid": "d50d886b-3c1b-41e1-a289-85a355091edd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-51784", "type": "published-proof-of-concept", "source": "https://t.me/cibsecurity/74313", "content": "\u203c\ufe0fCVE-2023-51784\u203c\ufe0f\n\nImproper Control of Generation of Code 'Code Injection' vulnerability in Apache InLong.This issue affects Apache InLong from 1.5.0 through 1.9.0, which could lead to Remote Code Execution.\u00a0Users are advised to upgrade to Apache InLong's 1.10.0 or cherrypick 1 to solve it.  1  httpsgithub.comapacheinlongpull9329   \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:35:19.000000Z"}, {"uuid": "8c0aa691-32ed-4ac1-a207-dac681bc08d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-51784", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/2474", "content": "#ExploitObserverAlert\n\nCVE-2023-51784\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-51784. Improper Control of Generation of Code ('Code Injection') vulnerability in Apache InLong.This issue affects Apache InLong: from 1.5.0 through 1.9.0, which could lead to Remote Code Execution.\u00a0Users are advised to upgrade to Apache InLong's 1.10.0 or cherry-pick [1] to solve it.  [1]  https://github.com/apache/inlong/pull/9329", "creation_timestamp": "2024-01-05T13:14:09.000000Z"}, {"uuid": "686b90af-6478-4e8b-902b-bb131a75cadb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-51784", "type": "seen", "source": "https://t.me/ctinow/172098", "content": "https://ift.tt/BekfhzM\nCVE-2023-51784 | Apache InLong up to 1.9.0 code injection", "creation_timestamp": "2024-01-23T16:26:55.000000Z"}, {"uuid": "84a830e7-0005-4fdc-8d17-106da1217da8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-51784", "type": "seen", "source": "https://t.me/ctinow/162312", "content": "https://ift.tt/Kk4Hlmz\nCVE-2023-51784", "creation_timestamp": "2024-01-03T11:26:10.000000Z"}]}