{"vulnerability": "CVE-2023-2661", "sightings": [{"uuid": "ef5d0058-ee58-405a-8d03-6a6add426119", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26616", "type": "seen", "source": "https://t.me/cibsecurity/65744", "content": "\u203c CVE-2023-26616 \u203c\n\nD-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the URL field in SetParentsControlInfo.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T20:14:41.000000Z"}, {"uuid": "60bb3409-f4fe-42c8-b5cd-a5f92a4f07f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-2661", "type": "seen", "source": "https://t.me/cibsecurity/63890", "content": "\u203c CVE-2023-2661 \u203c\n\nA vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-228803.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-11T18:15:24.000000Z"}, {"uuid": "20d7e911-d2f7-4288-8229-1816766e7cff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26612", "type": "seen", "source": "https://t.me/cibsecurity/65733", "content": "\u203c CVE-2023-26612 \u203c\n\nD-Link DIR-823G firmware version 1.02B05 has a buffer overflow vulnerability, which originates from the HostName field in SetParentsControlInfo.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T20:14:26.000000Z"}, {"uuid": "13884886-c5ac-4c73-9ad4-e83a4dbcd118", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26613", "type": "seen", "source": "https://t.me/cibsecurity/65740", "content": "\u203c CVE-2023-26613 \u203c\n\nAn OS command injection vulnerability in D-Link DIR-823G firmware version 1.02B05 allows unauthorized attackers to execute arbitrary operating system commands via a crafted get request to excu_shel.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-29T20:14:37.000000Z"}, {"uuid": "a437db45-65b9-42c3-85c0-97fc3672519b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-26615", "type": "seen", "source": "https://t.me/cibsecurity/65625", "content": "\u203c CVE-2023-26615 \u203c\n\nD-Link DIR-823G firmware version 1.02B05 has a password reset vulnerability, which originates from the SetMultipleActions API, allowing unauthorized attackers to reset the WEB page management password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-28T18:13:23.000000Z"}]}