{"vulnerability": "CVE-2017-1276", "sightings": [{"uuid": "6faf22db-310a-4c49-8cde-5613e9cd0787", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-12761", "type": "seen", "source": "https://t.me/cibsecurity/4222", "content": "ATENTION\u203c New - CVE-2017-12761\n\nhttp://codecanyon.net/user/Endober WebFile Explorer 1.0 is affected by: SQL Injection. The impact is: Arbitrary File Download (remote). The component is: $file = $_GET['id'] in download.php. The attack vector is: http://speicher.example.com/envato/codecanyon/demo/web-file-explorer/download.php?id=WebExplorer/../config.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-05-09T22:31:36.000000Z"}, {"uuid": "8a780179-518e-42bb-9051-ae3547b2b8b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2017-12760", "type": "seen", "source": "https://t.me/cibsecurity/4223", "content": "ATENTION\u203c New - CVE-2017-12760\n\nYnet Interactive - http://demo.ynetinteractive.com/mobiketa/ Mobiketa 4.0 is affected by: SQL Injection. The impact is: Code execution (remote).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-05-09T22:31:37.000000Z"}]}