{"vulnerability": "cve-2023-3376", "sightings": [{"uuid": "fb02af73-18f2-4ba1-939b-fd459cf34d4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33762", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/809", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33762\n\ud83d\udd39 Description: eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a SQL injection vulnerability via the Activity parameter.\n\ud83d\udccf Published: 2023-06-02T00:00:00\n\ud83d\udccf Modified: 2025-01-08T20:03:10.111Z\n\ud83d\udd17 References:\n1. https://github.com/rauschecker/CVEs/tree/main/CVE-2023-33762", "creation_timestamp": "2025-01-08T20:13:44.000000Z"}, {"uuid": "2ead5c7f-31a5-4ee2-8f69-62a9f1688c6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33761", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/808", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33761\n\ud83d\udd39 Description: eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /view/cb/format_642.php.\n\ud83d\udccf Published: 2023-06-02T00:00:00\n\ud83d\udccf Modified: 2025-01-08T20:04:32.866Z\n\ud83d\udd17 References:\n1. https://github.com/rauschecker/CVEs/tree/main/CVE-2023-33761", "creation_timestamp": "2025-01-08T20:13:41.000000Z"}, {"uuid": "0fc72355-f01e-4385-b804-5ef5e069b425", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33763", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/815", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-33763\n\ud83d\udd39 Description: eMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /scheduler/index.php.\n\ud83d\udccf Published: 2023-06-02T00:00:00\n\ud83d\udccf Modified: 2025-01-08T19:56:00.882Z\n\ud83d\udd17 References:\n1. https://github.com/rauschecker/CVEs/tree/main/CVE-2023-33763", "creation_timestamp": "2025-01-08T20:14:10.000000Z"}, {"uuid": "aaf8dd8d-f9d6-4e83-9c93-018e6171fa54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33760", "type": "seen", "source": "https://t.me/ctinow/187237", "content": "https://ift.tt/RWwhHVC\nCVE-2023-33760 | SpliceCom Maximiser Soft PBX up to 1.5 SSL Certificate channel accessible", "creation_timestamp": "2024-02-18T13:06:41.000000Z"}, {"uuid": "c7ad459c-0825-497c-8112-881406bebb0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33760", "type": "seen", "source": "https://t.me/arpsyndicate/3032", "content": "#ExploitObserverAlert\n\nCVE-2023-33760\n\nDESCRIPTION: Exploit Observer has 1 entries in 1 file formats related to CVE-2023-33760. SpliceCom Maximiser Soft PBX v1.5 and before was discovered to utilize a default SSL certificate. This issue can allow attackers to eavesdrop on communications via a man-in-the-middle attack.", "creation_timestamp": "2024-01-26T18:20:43.000000Z"}, {"uuid": "8c8c92e5-0d6a-4148-8100-a0ef1dd5c847", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-3376", "type": "seen", "source": "https://t.me/cibsecurity/66815", "content": "\u203c CVE-2023-3376 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Digital Strategy Zekiweb allows SQL Injection.This issue affects Zekiweb: before 2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-17T18:40:12.000000Z"}, {"uuid": "40586177-81bd-42af-b3e3-c456091c3630", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33768", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8765", "content": "#exploit\n1. CVE-2023-33768:\nDoS against Belkin smart plugs via crafted firmware injection\nhttps://github.com/Fr0stM0urne/CVE-2023-33768\n\n2. CVE-2022-25451:\nTenda AC6 - Unauthorized stack overflow\nhttps://github.com/EPhaha/IOT_vuln/tree/main/Tenda/AC6/9\n\n3. CVE-2023-22057:\nDenial of Service in MySQL\nhttps://securitylab.github.com/advisories/GHSL-2023-116_MySQL", "creation_timestamp": "2023-07-31T12:41:12.000000Z"}, {"uuid": "2537e80e-21c0-428d-a152-c8a07e8dc295", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33760", "type": "seen", "source": "https://t.me/ctinow/177262", "content": "https://ift.tt/j2AcO1Y\nCVE-2023-33760 Exploit", "creation_timestamp": "2024-02-01T02:17:01.000000Z"}, {"uuid": "f1bbaf7d-0013-4868-affe-308c9712c5ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33760", "type": "seen", "source": "https://t.me/ctinow/173339", "content": "https://ift.tt/6GXHlV3\nCVE-2023-33760", "creation_timestamp": "2024-01-25T09:26:30.000000Z"}, {"uuid": "831a1ff5-48af-4444-97f8-31c36dc946b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-33761", "type": "seen", "source": "https://t.me/cibsecurity/64953", "content": "\u203c CVE-2023-33761 \u203c\n\neMedia Consulting simpleRedak up to v2.47.23.05 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /view/cb/format_642.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-03T00:26:23.000000Z"}]}