{"vulnerability": "cve-2023-4996", "sightings": [{"uuid": "9e9f6abb-6d49-472c-90ed-d875d8eec644", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/6122", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-49964: FreeMarker Server-Side Template Injection in Alfresco\nURL\uff1ahttps://github.com/mbadanoiu/CVE-2023-49964\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-12-09T11:00:14.000000Z"}, {"uuid": "017d1030-8943-484b-bd14-754513bb499e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4996", "type": "seen", "source": "https://t.me/cibsecurity/73601", "content": "\u203c CVE-2023-4996 \u203c\n\nNetskope was made aware of a security vulnerability in its NSClient product for version 100 & prior where a malicious non-admin user can disable the Netskope client by using a specially-crafted package. The root cause of the problem was a user control code when called by a Windows ServiceController did not validate the permissions associated with the user before executing the user control code. This user control code had permissions to terminate the NSClient service.\u00c2\u00a0\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-06T14:25:47.000000Z"}, {"uuid": "9201a47a-df22-4b8d-8f5e-c95e4e945311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49965", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9155", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49965\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: SpaceX Starlink Wi-Fi router Gen 2 before 2023.48.0 allows XSS via the ssid and password parameters on the Setup Page.\n\ud83d\udccf Published: 2024-04-05T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-27T16:57:40.374Z\n\ud83d\udd17 References:\n1. https://hackintoanetwork.com/blog/2023-starlink-router-gen2-xss-eng/", "creation_timestamp": "2025-03-27T17:26:47.000000Z"}, {"uuid": "56640ab6-edb7-49fd-80e1-da1769a7dea8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49961", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18794", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49961\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: WALLIX Bastion 7.x, 8.x, 9.x and 10.x and WALLIX Access Manager 3.x and 4.x have Incorrect Access Control which can lead to sensitive data exposure.\n\ud83d\udccf Published: 2024-01-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-18T16:02:55.762Z\n\ud83d\udd17 References:\n1. https://www.wallix.com/support/alerts/", "creation_timestamp": "2025-06-18T16:43:44.000000Z"}, {"uuid": "bed66e88-69ca-499d-a1a4-822f5c8c1332", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49969", "type": "seen", "source": "https://t.me/ctinow/199783", "content": "https://ift.tt/4kEuyVx\nCVE-2023-49969", "creation_timestamp": "2024-03-05T01:32:45.000000Z"}, {"uuid": "b06df3c1-e28b-4514-88d0-9587c98a398f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/darkcommunityofficial/189", "content": "#exploit\n\n1. #SonicWall WXA - Authentication Bypass and #RCE Vulnerability\n\nhttps://www.praetorian.com/blog/sonicwall-wxa-authentication-bypass-and-rce-vulnerability\n\n2. #CVE-2023-49964:\nFreeMarker Server-Side Template Injection in #Alfresco\n\nhttps://github.com/mbadanoiu/CVE-2023-49964\n\n3. CVE-2022-21392:\n#LPE via NMR SUID in #Oracle Enterprise Manager\n\nhttps://github.com/mbadanoiu/CVE-2022-21392", "creation_timestamp": "2023-12-11T06:53:58.000000Z"}, {"uuid": "2a419e0d-cc3a-475b-adad-4cd9a219f4db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49968", "type": "seen", "source": "https://t.me/ctinow/199782", "content": "https://ift.tt/IYTEr8y\nCVE-2023-49968", "creation_timestamp": "2024-03-05T01:32:43.000000Z"}, {"uuid": "9cbbdf36-e656-406e-9375-16ac5b9ebba3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49969", "type": "seen", "source": "https://t.me/ctinow/199792", "content": "https://ift.tt/4kEuyVx\nCVE-2023-49969", "creation_timestamp": "2024-03-05T01:32:59.000000Z"}, {"uuid": "33061272-1095-4d06-9c1c-56082ba9d056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49968", "type": "seen", "source": "https://t.me/ctinow/199791", "content": "https://ift.tt/IYTEr8y\nCVE-2023-49968", "creation_timestamp": "2024-03-05T01:32:58.000000Z"}, {"uuid": "42a13718-4ac5-4e41-accc-243011d5f55c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49961", "type": "seen", "source": "https://t.me/ctinow/164671", "content": "https://ift.tt/YaN8Zg6\nCVE-2023-49961", "creation_timestamp": "2024-01-08T22:26:43.000000Z"}, {"uuid": "b0edfb07-ac7c-4d58-bad1-bb4d143c4e2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49961", "type": "seen", "source": "https://t.me/ctinow/173655", "content": "https://ift.tt/fOkvuF4\nCVE-2023-49961 | WALLIX Bastion/Access Manager access control", "creation_timestamp": "2024-01-25T18:21:07.000000Z"}, {"uuid": "8056f6db-6ec4-4e0c-8e81-5fd6be9b178c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49967", "type": "seen", "source": "https://t.me/ctinow/160949", "content": "https://ift.tt/p2JrD3I\nCVE-2023-49967 | Typecho 1.2.1 /index.php/action/xmlrpc resource consumption (Issue 1648)", "creation_timestamp": "2023-12-30T19:01:46.000000Z"}, {"uuid": "d7ec3e81-6b39-4748-846d-c40b3bac676c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "seen", "source": "https://t.me/ctinow/161298", "content": "https://ift.tt/v9M8DsS\nCVE-2023-49964 | Hyland Alfresco Community Edition up to 7.2.0 Template folder.get.html.ftl injection", "creation_timestamp": "2024-01-01T13:02:29.000000Z"}, {"uuid": "81f598ac-9413-4b89-b72a-03285ae943e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9557", "content": "#exploit\n1. SonicWall WXA - Authentication Bypass and RCE Vulnerability\nhttps://www.praetorian.com/blog/sonicwall-wxa-authentication-bypass-and-rce-vulnerability\n\n2. CVE-2023-49964:\nFreeMarker Server-Side Template Injection in Alfresco\nhttps://github.com/mbadanoiu/CVE-2023-49964\n\n3. CVE-2022-21392:\nLPE via NMR SUID in Oracle Enterprise Manager\nhttps://github.com/mbadanoiu/CVE-2022-21392", "creation_timestamp": "2023-12-10T12:43:01.000000Z"}, {"uuid": "435a4e45-c8e0-407b-b056-7e9a1b31ceb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-49964", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2236", "content": "#exploit\n1. SonicWall WXA - Authentication Bypass and RCE Vulnerability\nhttps://www.praetorian.com/blog/sonicwall-wxa-authentication-bypass-and-rce-vulnerability\n\n2. CVE-2023-49964:\nFreeMarker Server-Side Template Injection in Alfresco\nhttps://github.com/mbadanoiu/CVE-2023-49964\n\n3. CVE-2022-21392:\nLPE via NMR SUID in Oracle Enterprise Manager\nhttps://github.com/mbadanoiu/CVE-2022-21392", "creation_timestamp": "2024-08-16T08:56:10.000000Z"}]}