{"vulnerability": "CVE-2020-2848", "sightings": [{"uuid": "dd519764-9070-4d51-8d53-e8ed623c985a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28483", "type": "seen", "source": "https://t.me/arpsyndicate/1591", "content": "#ExploitObserverAlert\n\nCVE-2020-28483\n\nDESCRIPTION: Exploit Observer has 7 entries related to CVE-2020-28483. This affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For header.\n\nFIRST-EPSS: 0.002090000\nNVD-IS: 4.2\nNVD-ES: 2.8", "creation_timestamp": "2023-12-10T01:18:13.000000Z"}, {"uuid": "5efb730d-bac2-48d5-9f32-16c9d55a2ca6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28480", "type": "seen", "source": "https://t.me/cibsecurity/29191", "content": "\u203c CVE-2021-23444 \u203c\n\nThis affects the package jointjs before 3.4.2. A type confusion vulnerability can lead to a bypass of CVE-2020-28480 when the user-provided keys used in the path parameter are arrays in the setByPath function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-21T20:27:59.000000Z"}, {"uuid": "dcf89bae-2ef7-4887-ad83-652e6aa019e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28481", "type": "seen", "source": "https://t.me/cibsecurity/22266", "content": "\u203c CVE-2020-28481 \u203c\n\nThe package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration. All domains are whitelisted by default.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-19T18:56:04.000000Z"}, {"uuid": "f4a5dcc9-92b7-4fc0-a1ed-79797eeb06a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28487", "type": "seen", "source": "https://t.me/cibsecurity/22529", "content": "\u203c CVE-2020-28487 \u203c\n\nThis affects the package vis-timeline before 7.4.4. An attacker with the ability to control the items of a Timeline element can inject additional script code into the generated application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-22T20:29:25.000000Z"}, {"uuid": "b5da7e41-e971-4629-b368-a5083da92d6d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28488", "type": "seen", "source": "https://t.me/cibsecurity/22522", "content": "\u203c CVE-2020-28488 \u203c\n\nThis affects all versions of package jquery-ui; all versions of package org.fujion.webjars:jquery-ui. When the \"dialog\" is injected into an HTML tag more than once, the browser and the application may crash.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-22T16:29:11.000000Z"}, {"uuid": "9e922f51-fea1-4774-a18b-16a805336097", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28483", "type": "seen", "source": "https://t.me/cibsecurity/22431", "content": "\u203c CVE-2020-28483 \u203c\n\nThis affects all versions of package github.com/gin-gonic/gin. When gin is exposed directly to the internet, a client's IP can be spoofed by setting the X-Forwarded-For header.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-20T20:27:22.000000Z"}, {"uuid": "cbca3e9b-5aae-4bbe-ab05-fb41ccb01b0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28482", "type": "seen", "source": "https://t.me/cibsecurity/22267", "content": "\u203c CVE-2020-28482 \u203c\n\nThis affects the package fastify-csrf before 3.0.0. 1. The generated cookie used insecure defaults, and did not have the httpOnly flag on: cookieOpts: { path: '/', sameSite: true } 2. The CSRF token was available in the GET query parameter\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-19T18:56:04.000000Z"}, {"uuid": "a714e05c-cb68-4a45-ad58-b037fa0fb090", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28480", "type": "seen", "source": "https://t.me/cibsecurity/22273", "content": "\u203c CVE-2020-28480 \u203c\n\nThe package jointjs before 3.3.0 are vulnerable to Prototype Pollution via util.setByPath (https://resources.jointjs.com/docs/jointjs/v3.2/joint.htmlutil.setByPath). The path used the access the object's key and set the value is not properly sanitized, leading to a Prototype Pollution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-19T18:56:11.000000Z"}, {"uuid": "217be2ed-56cc-48f4-b5fd-0ed6b4e25459", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-28488", "type": "seen", "source": "https://t.me/pwnwiki_zhchannel/556", "content": "CVE-2020-28488 jQuery UI 1.12.1 \u62d2\u7d55\u670d\u52d9\u6f0f\u6d1e\nhttps://www.pwnwiki.org/index.php?title=CVE-2020-28488_jQuery_UI_1.12.1_%E6%8B%92%E7%B5%95%E6%9C%8D%E5%8B%99%E6%BC%8F%E6%B4%9E", "creation_timestamp": "2021-05-31T04:00:02.000000Z"}]}