{"vulnerability": "cve-2023-3751", "sightings": [{"uuid": "b0791362-ceb1-4ca5-9b30-056fd1f44d29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37516", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnltvfbvqm2y", "content": "", "creation_timestamp": "2025-04-24T23:20:31.214265Z"}, {"uuid": "f4495a43-b4a8-4738-8ad7-9efe2cdbfe96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37516", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13349", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-37516\n\ud83d\udd25 CVSS Score: 3.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N)\n\ud83d\udd39 Description: Missing \"no cache\" headers in HCL Leap permits user directory information to be cached.\n\ud83d\udccf Published: 2025-04-24T20:37:20.565Z\n\ud83d\udccf Modified: 2025-04-24T20:37:20.565Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0119900", "creation_timestamp": "2025-04-24T21:07:17.000000Z"}, {"uuid": "d63a01b5-05d3-4d29-a041-6b69d986c7fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37517", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo37f4lbx52h", "content": "", "creation_timestamp": "2025-05-01T01:56:06.602822Z"}, {"uuid": "f61258e0-32c6-4cb9-9441-66f4208718ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37517", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14187", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-37517\n\ud83d\udd25 CVSS Score: 3.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:L/I:N/A:N)\n\ud83d\udd39 Description: Missing \"no cache\" headers in HCL Leap permits sensitive data to be cached.\n\ud83d\udccf Published: 2025-04-30T21:11:44.164Z\n\ud83d\udccf Modified: 2025-04-30T21:11:44.164Z\n\ud83d\udd17 References:\n1. https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0120722", "creation_timestamp": "2025-04-30T22:14:24.000000Z"}, {"uuid": "16b9043e-b39e-4283-9501-b0d6d602d311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37517", "type": "seen", "source": "https://t.me/cvedetector/24173", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-37517 - HCL Leap Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2023-37517 \nPublished : April 30, 2025, 10:15 p.m. | 1\u00a0hour, 52\u00a0minutes ago \nDescription : Missing \"no cache\" headers in HCL Leap permits sensitive data to be cached. \nSeverity: 3.2 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-01T02:17:34.000000Z"}, {"uuid": "a94bb48d-687b-4207-8b44-e51a7e1fb201", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37516", "type": "seen", "source": "https://t.me/cvedetector/23708", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2023-37516 - HCL Leap Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2023-37516 \nPublished : April 24, 2025, 9:15 p.m. | 1\u00a0hour, 20\u00a0minutes ago \nDescription : Missing \"no cache\" headers in HCL Leap permits user directory information to be cached. \nSeverity: 3.2 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-25T00:47:55.000000Z"}, {"uuid": "221801ad-042f-4f76-986d-cd65297ec863", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37518", "type": "seen", "source": "https://t.me/ctinow/190530", "content": "https://ift.tt/bnO5XqV\nCVE-2023-37518 | HCL BigFix ServiceNow Data Flow up to 1.2 code injection (KB0110202)", "creation_timestamp": "2024-02-22T08:37:20.000000Z"}, {"uuid": "01c7d31a-edb8-4f82-884d-03356b45f416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37518", "type": "seen", "source": "https://t.me/ctinow/176098", "content": "https://ift.tt/gUFSdwu\nCVE-2023-37518", "creation_timestamp": "2024-01-30T17:21:53.000000Z"}, {"uuid": "ae3060f3-340b-41a8-b3c8-d7e4a60f3b95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37519", "type": "seen", "source": "https://t.me/ctinow/158048", "content": "https://ift.tt/HrGDlnm\nCVE-2023-37519", "creation_timestamp": "2023-12-21T23:21:27.000000Z"}, {"uuid": "8c1ddd94-595e-4fa2-b3b1-8ab8fc4535ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3751", "type": "seen", "source": "https://t.me/cibsecurity/66993", "content": "\u203c CVE-2023-3751 \u203c\n\nA vulnerability was found in Super Store Finder 3.6. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /index.php of the component POST Parameter Handler. The manipulation of the argument products leads to sql injection. The attack can be launched remotely. The identifier VDB-234421 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-19T07:27:49.000000Z"}, {"uuid": "6e62a513-3908-4635-8c71-107988efbe92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37513", "type": "seen", "source": "https://t.me/cibsecurity/68288", "content": "\u203c CVE-2023-37513 \u203c\n\nWhen the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-12T01:52:55.000000Z"}, {"uuid": "a9e3ab46-e0f7-4f57-b7f8-1e8e0b008d46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37511", "type": "seen", "source": "https://t.me/cibsecurity/68308", "content": "\u203c CVE-2023-37511 \u203c\n\nIf certain App Transport Security (ATS) settings are set in a certain manner, insecure loading of web content can be achieved.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-11T07:32:23.000000Z"}, {"uuid": "8b0dab7e-556d-4a03-aa63-0c6585ff4d97", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-37512", "type": "seen", "source": "https://t.me/cibsecurity/68295", "content": "\u203c CVE-2023-37512 \u203c\n\nWhen the app is put to the background and the user goes to the task switcher of iOS, the app snapshot is not blurred which may reveal sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-11T07:29:34.000000Z"}]}