{"vulnerability": "cve-2023-5003", "sightings": [{"uuid": "3733f8fa-326e-4991-aa85-17ff0e386364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50030", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18624", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-50030\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: In the module \"Jms Setting\" (jmssetting) from Joommasters for PrestaShop, a guest can perform SQL injection in versions &lt;= 1.1.0. The method `JmsSetting::getSecondImgs()` has a sensitive SQL call that can be executed with a trivial http call and exploited to forge a blind SQL injection.\n\ud83d\udccf Published: 2024-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-17T16:03:52.058Z\n\ud83d\udd17 References:\n1. https://www.joommasters.com/\n2. https://security.friendsofpresta.org/modules/2024/01/16/jmssetting.html", "creation_timestamp": "2025-06-17T16:41:21.000000Z"}, {"uuid": "b38b51ad-de2b-4d48-ba0b-646a906efeca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-5003", "type": "seen", "source": "https://t.me/cibsecurity/72373", "content": "\u203c CVE-2023-5003 \u203c\n\nThe Active Directory Integration / LDAP Integration WordPress plugin before 4.1.10 stores sensitive LDAP logs in a buffer file when an administrator wants to export said logs. Unfortunately, this log file is never removed, and remains accessible to any users knowing the URL to do so.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T00:38:22.000000Z"}, {"uuid": "5e29a875-4703-42b0-b221-262b3b7f736b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50035", "type": "seen", "source": "https://t.me/cibsecurity/74006", "content": "\u203c\ufe0fCVE-2023-50035\u203c\ufe0f\n\nPHPGurukul Small CRM 3.0 is vulnerable to SQL Injection on the Users login panel because of \"password\" parameter is directly used in the SQL query without any sanitization and the SQL Injection payload being executed.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2023-12-30T01:43:22.000000Z"}, {"uuid": "c26a8f1b-2dba-44d6-8369-4a20d1105d0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50030", "type": "seen", "source": "https://t.me/ctinow/185387", "content": "https://ift.tt/VFJyQ9r\nCVE-2023-50030 | Jms Setting Module up to 1.1.0 on PrestaShop getSecondImgs sql injection", "creation_timestamp": "2024-02-15T10:21:02.000000Z"}, {"uuid": "53becb87-0401-4d72-9aba-8dfe64e4817f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50035", "type": "seen", "source": "https://t.me/ctinow/170894", "content": "https://ift.tt/okG729v\nCVE-2023-50035 | PHPGurukul Small CRM 3.0 User Login Panel password sql injection", "creation_timestamp": "2024-01-21T18:16:30.000000Z"}, {"uuid": "b9a8f86d-69c1-453c-a07c-49dc942646a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50038", "type": "seen", "source": "https://t.me/ctinow/170538", "content": "https://ift.tt/qXf3yMx\nCVE-2023-50038 | Textpattern CMS 4.8.8 unrestricted upload", "creation_timestamp": "2024-01-20T06:36:38.000000Z"}, {"uuid": "b7088bd0-a9a3-4c4b-9d13-9a3b1d76d7fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50030", "type": "seen", "source": "https://t.me/ctinow/173792", "content": "https://ift.tt/pEbmPLK\nCVE-2023-50030 Exploit", "creation_timestamp": "2024-01-25T21:11:33.000000Z"}, {"uuid": "e13e388a-c055-4eb3-9bf8-e68abc948b7a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50035", "type": "seen", "source": "https://t.me/ctinow/160698", "content": "https://ift.tt/yVdgNuS\nCVE-2023-50035", "creation_timestamp": "2023-12-29T22:26:53.000000Z"}, {"uuid": "722f2649-8c6b-434a-951b-6817646959e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50038", "type": "seen", "source": "https://t.me/ctinow/159961", "content": "https://ift.tt/AD0HSnp\nCVE-2023-50038", "creation_timestamp": "2023-12-28T08:26:11.000000Z"}, {"uuid": "e71ced4e-9c7a-4036-9206-d681f7d3e3f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50035", "type": "seen", "source": "https://t.me/ctinow/163763", "content": "https://ift.tt/3Pn70Re\nCVE-2023-50035 Exploit", "creation_timestamp": "2024-01-05T23:16:20.000000Z"}, {"uuid": "00bc0923-8ba8-4593-b316-2bd410c0ad42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-50038", "type": "seen", "source": "https://t.me/ctinow/163290", "content": "https://ift.tt/FXMzTvh\nCVE-2023-50038 Exploit", "creation_timestamp": "2024-01-04T23:16:45.000000Z"}]}