https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 01 Jun 2026 14:52:07 +0000 https://db.gcve.eu/sighting/088d390c-ae88-47ab-959f-62ad50642354/export {"uuid": "088d390c-ae88-47ab-959f-62ad50642354", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37793", "type": "seen", "source": "https://t.me/cibsecurity/66764", "content": "\u203c CVE-2023-37793 \u203c\n\nWAYOS FBM-291W 19.09.11V was discovered to contain a buffer overflow via the component /upgrade_filter.asp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-15T02:22:42.000000Z"} {"uuid": "088d390c-ae88-47ab-959f-62ad50642354", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37793", "type": "seen", "source": "https://t.me/cibsecurity/66764", "content": "\u203c CVE-2023-37793 \u203c\n\nWAYOS FBM-291W 19.09.11V was discovered to contain a buffer overflow via the component /upgrade_filter.asp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-15T02:22:42.000000Z"} https://db.gcve.eu/sighting/088d390c-ae88-47ab-959f-62ad50642354/export Sat, 15 Jul 2023 02:22:42 +0000 https://db.gcve.eu/sighting/771340fa-e1ad-4514-aba8-a1d7098c6880/export {"uuid": "771340fa-e1ad-4514-aba8-a1d7098c6880", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37794", "type": "seen", "source": "https://t.me/cibsecurity/66767", "content": "\u203c CVE-2023-37794 \u203c\n\nWAYOS FBM-291W 19.09.11V was discovered to contain a command injection vulnerability via the component /upgrade_filter.asp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-15T02:22:45.000000Z"} {"uuid": "771340fa-e1ad-4514-aba8-a1d7098c6880", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37794", "type": "seen", "source": "https://t.me/cibsecurity/66767", "content": "\u203c CVE-2023-37794 \u203c\n\nWAYOS FBM-291W 19.09.11V was discovered to contain a command injection vulnerability via the component /upgrade_filter.asp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-15T02:22:45.000000Z"} https://db.gcve.eu/sighting/771340fa-e1ad-4514-aba8-a1d7098c6880/export Sat, 15 Jul 2023 02:22:45 +0000 https://db.gcve.eu/sighting/12e13e22-a2a9-44a4-9c7c-216e7cae5676/export {"uuid": "12e13e22-a2a9-44a4-9c7c-216e7cae5676", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3779", "type": "seen", "source": "https://t.me/cibsecurity/67029", "content": "\u203c CVE-2023-3779 \u203c\n\nThe Essential Addons For Elementor plugin for WordPress is vulnerable to unauthenticated API key disclosure in versions up to, and including, 5.8.1 due to the plugin adding the API key to the source code of any page running the MailChimp block. This makes it possible for unauthenticated attackers to obtain a site's MailChimp API key. We recommend resetting any MailChimp API keys if running a vulnerable version of this plugin with the MailChimp block enabled as the API key may have been compromised. This only affects sites running the premium version of the plugin and that have the Mailchimp block enabled on a page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-20T12:27:24.000000Z"} {"uuid": "12e13e22-a2a9-44a4-9c7c-216e7cae5676", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3779", "type": "seen", "source": "https://t.me/cibsecurity/67029", "content": "\u203c CVE-2023-3779 \u203c\n\nThe Essential Addons For Elementor plugin for WordPress is vulnerable to unauthenticated API key disclosure in versions up to, and including, 5.8.1 due to the plugin adding the API key to the source code of any page running the MailChimp block. This makes it possible for unauthenticated attackers to obtain a site's MailChimp API key. We recommend resetting any MailChimp API keys if running a vulnerable version of this plugin with the MailChimp block enabled as the API key may have been compromised. This only affects sites running the premium version of the plugin and that have the Mailchimp block enabled on a page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-20T12:27:24.000000Z"} https://db.gcve.eu/sighting/12e13e22-a2a9-44a4-9c7c-216e7cae5676/export Thu, 20 Jul 2023 12:27:24 +0000 https://db.gcve.eu/sighting/9842edbf-a6aa-4bd0-afd8-a06b78c0b7c9/export {"uuid": "9842edbf-a6aa-4bd0-afd8-a06b78c0b7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37798", "type": "seen", "source": "https://t.me/cibsecurity/70109", "content": "\u203c CVE-2023-37798 \u203c\n\nA stored cross-site scripting (XSS) vulnerability in the new REDCap project creation function of Vanderbilt REDCap 13.1.35 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the project title parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-07T22:18:56.000000Z"} {"uuid": "9842edbf-a6aa-4bd0-afd8-a06b78c0b7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37798", "type": "seen", "source": "https://t.me/cibsecurity/70109", "content": "\u203c CVE-2023-37798 \u203c\n\nA stored cross-site scripting (XSS) vulnerability in the new REDCap project creation function of Vanderbilt REDCap 13.1.35 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the project title parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-07T22:18:56.000000Z"} https://db.gcve.eu/sighting/9842edbf-a6aa-4bd0-afd8-a06b78c0b7c9/export Thu, 07 Sep 2023 22:18:56 +0000