{"vulnerability": "CVE-2023-2544", "sightings": [{"uuid": "ea0347e4-9299-4e8d-9eb5-0b28bc52ff0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-2544", "type": "seen", "source": "https://t.me/cibsecurity/71508", "content": "\u203c CVE-2023-2544 \u203c\n\nAuthorization bypass vulnerability in UPV PEIX, affecting the component \"pdf_curri_new.php\". Through a POST request, an authenticated user could change the ID parameter to retrieve all the stored information of other registered users.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-03T18:46:17.000000Z"}, {"uuid": "5bab21c9-533f-43fd-ad23-e444fc9f4631", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25446", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mahkk5empr2x", "content": "", "creation_timestamp": "2025-12-21T01:21:12.517893Z"}, {"uuid": "56726a20-9a86-424e-afed-aeeb15390e58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25445", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mahkt3se522q", "content": "", "creation_timestamp": "2025-12-21T01:26:38.444757Z"}, {"uuid": "0d959602-54c2-444f-9e57-1811af76f8a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25440", "type": "seen", "source": "Telegram/6Ke7q_jy6vTVAp5B86pq9YhP9WG8I4_pWLXvnpO9OGw9mrkZ", "content": "", "creation_timestamp": "2025-02-01T17:28:09.000000Z"}, {"uuid": "cf3f4385-5f00-4636-9e79-d66d2388df77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25443", "type": "seen", "source": "https://t.me/cibsecurity/66377", "content": "\u203c CVE-2023-25443 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Wow-Company Button Generator \u00e2\u20ac\u201c easily Button Builder plugin <=\u00c2\u00a02.3.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T16:34:48.000000Z"}, {"uuid": "eb6bdfc1-2bb4-45d0-b118-c4d26d3913ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25442", "type": "seen", "source": "https://t.me/cibsecurity/61686", "content": "\u203c CVE-2023-25442 \u203c\n\nAuth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in Marcel Pol Zeno Font Resizer plugin <= 1.7.9 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-07T18:29:00.000000Z"}, {"uuid": "f1603d75-c7e5-4254-b527-91f19c045ab2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25440", "type": "seen", "source": "https://t.me/cibsecurity/64608", "content": "\u203c CVE-2023-25440 \u203c\n\nStored Cross Site Scripting (XSS) vulnerability in the add contact function CiviCRM 5.59.alpha1, allows attackers to execute arbitrary code in first/second name field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-23T07:30:54.000000Z"}, {"uuid": "338b45b2-daba-4509-ab78-ad90d84f83e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25447", "type": "seen", "source": "https://t.me/cibsecurity/64537", "content": "\u203c CVE-2023-25447 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Inkthemescom ColorWay theme <=\u00c2\u00a04.2.3 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T18:24:44.000000Z"}, {"uuid": "7e45ec09-b6d1-4809-b955-787928ae31d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25448", "type": "seen", "source": "https://t.me/cibsecurity/64532", "content": "\u203c CVE-2023-25448 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Eric Teubert Archivist \u00e2\u20ac\u201c Custom Archive Templates plugin <=\u00c2\u00a01.7.4 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T18:24:36.000000Z"}, {"uuid": "c1a0f7c7-0fb6-4242-b6c1-d6a67700d43f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-25446", "type": "seen", "source": "https://gist.github.com/Darkcrai86/4f98a40782c478ae504ebd799d1a4ed6", "content": "", "creation_timestamp": "2025-12-22T11:40:35.000000Z"}]}