{"vulnerability": "cve-2023-4388", "sightings": [{"uuid": "1b4bf169-b477-4d7d-8ce7-344c6fe20643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43885", "type": "seen", "source": "https://t.me/arpsyndicate/2321", "content": "#ExploitObserverAlert\n\nCVE-2023-43885\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-43885. Missing error handling in the HTTP server component of Tenda RX9 Pro Firmware V22.03.02.20 allows authenticated attackers to arbitrarily lock the device.\n\nFIRST-EPSS: 0.000450000\nNVD-IS: 5.2\nNVD-ES: 2.8", "creation_timestamp": "2024-01-03T13:17:22.000000Z"}, {"uuid": "442864b5-39a5-4b2f-bacc-24bd011c405c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4388", "type": "seen", "source": "https://t.me/cibsecurity/72354", "content": "\u203c CVE-2023-4388 \u203c\n\nThe EventON WordPress plugin before 2.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T00:32:22.000000Z"}, {"uuid": "c8947036-723a-45eb-be3d-822a50f70da8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-43884", "type": "seen", "source": "https://t.me/cibsecurity/71210", "content": "\u203c CVE-2023-43884 \u203c\n\nA Cross-site scripting (XSS) vulnerability in Reference ID from the panel Transactions, of Subrion v4.2.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into 'Reference ID' parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-28T18:37:07.000000Z"}]}