{"vulnerability": "CVE-2023-4820", "sightings": [{"uuid": "622ee9d1-eb41-4824-95ac-30e103e4562f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4820", "type": "seen", "source": "Telegram/fmMwbYT05aaEY25wQ5VStTURHe5pQR65zspbP6aeUlPSHMTA", "content": "", "creation_timestamp": "2025-03-06T02:16:33.000000Z"}, {"uuid": "578bdfde-0d4d-4b4d-a0ab-9d99f041b88a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48201", "type": "seen", "source": "https://t.me/arpsyndicate/3277", "content": "#ExploitObserverAlert\n\nCVE-2023-48201\n\nDESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-48201. Cross Site Scripting (XSS) vulnerability in Sunlight CMS v.8.0.1, allows remote authenticated attackers to execute arbitrary code and escalate privileges via a crafted script to the Content text editor component.", "creation_timestamp": "2024-01-28T11:08:39.000000Z"}, {"uuid": "eaaa119d-a837-4c64-ba8b-6da75ad6456e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-4820", "type": "seen", "source": "https://t.me/cibsecurity/72356", "content": "\u203c CVE-2023-4820 \u203c\n\nThe PowerPress Podcasting plugin by Blubrry WordPress plugin before 11.0.12 does not sanitize and escape the media url field in posts, which could allow users with privileges as low as contributor to inject arbitrary web scripts that could target a site admin or superadmin.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-17T00:32:24.000000Z"}, {"uuid": "aa816611-1faf-457d-82de-2740b2ad0ded", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48202", "type": "seen", "source": "https://t.me/arpsyndicate/3290", "content": "#ExploitObserverAlert\n\nCVE-2023-48202\n\nDESCRIPTION: Exploit Observer has 2 entries in 2 file formats related to CVE-2023-48202. Cross-Site Scripting (XSS) vulnerability in Sunlight CMS 8.0.1 allows an authenticated low-privileged user to escalate privileges via a crafted SVG file in the File Manager component.", "creation_timestamp": "2024-01-28T12:35:43.000000Z"}, {"uuid": "c42b6522-cce1-4528-b1d3-03b8cfe12b41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48202", "type": "seen", "source": "https://t.me/ctinow/189303", "content": "https://ift.tt/hjDFOnW\nCVE-2023-48202 | Sunlight CMS 8.0.1 File Manager cross site scripting", "creation_timestamp": "2024-02-21T08:06:52.000000Z"}, {"uuid": "66af3c26-5d88-4eaa-81a2-398d9281596e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48201", "type": "seen", "source": "https://t.me/ctinow/189302", "content": "https://ift.tt/T3FveJu\nCVE-2023-48201 | Sunlight CMS 8.0.1 Content Text Editor cross site scripting", "creation_timestamp": "2024-02-21T08:06:51.000000Z"}, {"uuid": "217659b5-5fa9-4701-bfe7-72192d15a19d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48201", "type": "seen", "source": "https://t.me/ctinow/174656", "content": "https://ift.tt/GxzSqMR\nCVE-2023-48201", "creation_timestamp": "2024-01-27T07:26:36.000000Z"}, {"uuid": "eb8c1eb8-7786-42c9-b278-b9d9be89bc69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48201", "type": "seen", "source": "https://t.me/ctinow/177371", "content": "https://ift.tt/4xWrL1f\nCVE-2023-48201 Exploit", "creation_timestamp": "2024-02-01T08:16:41.000000Z"}, {"uuid": "a6b450f3-48fb-4844-8bc9-40e15434631f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48202", "type": "seen", "source": "https://t.me/ctinow/177370", "content": "https://ift.tt/SeqXopF\nCVE-2023-48202 Exploit", "creation_timestamp": "2024-02-01T08:16:40.000000Z"}, {"uuid": "2cb4572c-f55f-46ab-bc70-d780b5c3e1ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48202", "type": "seen", "source": "https://t.me/ctinow/174657", "content": "https://ift.tt/d7FmpQk\nCVE-2023-48202", "creation_timestamp": "2024-01-27T07:26:37.000000Z"}, {"uuid": "85d5adb3-b8a0-4c7c-aa04-8cca74165051", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48206", "type": "seen", "source": "https://t.me/ctinow/160856", "content": "https://ift.tt/0AIjhqo\nCVE-2023-48206 | GaatiTrack Courier Management System 1.0 login.php page cross site scripting (ID 175803)", "creation_timestamp": "2023-12-30T11:36:58.000000Z"}, {"uuid": "a76ee003-4336-4def-bdd0-d2629da46ee2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48207", "type": "seen", "source": "https://t.me/ctinow/160861", "content": "https://ift.tt/FBO6PKA\nCVE-2023-48207 | Availability Booking Calendar 5.0 Reservations List csv injection (ID 175804)", "creation_timestamp": "2023-12-30T12:01:18.000000Z"}, {"uuid": "f2f35980-5a40-4bc6-b61b-aba5c7dc57dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48205", "type": "seen", "source": "https://t.me/ctinow/160860", "content": "https://ift.tt/CjNdTOD\nCVE-2023-48205 | Jorani Leave Management System 1.0.2 Header Host password recovery (ID 175802)", "creation_timestamp": "2023-12-30T12:01:16.000000Z"}, {"uuid": "b27739ac-afd9-4ab1-b76c-ac630f594513", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-48208", "type": "seen", "source": "https://t.me/ctinow/160850", "content": "https://ift.tt/X3Qvt7A\nCVE-2023-48208 | Availability Booking Calendar 5.0 index.php cross site scripting (ID 175805)", "creation_timestamp": "2023-12-30T11:06:37.000000Z"}]}