{"vulnerability": "CVE-2023-3274", "sightings": [{"uuid": "5add6607-ff77-4696-b68f-de958fbb21ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32743", "type": "seen", "source": "https://t.me/ctinow/167855", "content": "https://ift.tt/Ih14J0m\nCVE-2023-32743 | WooCommerce AutomateWoo Plugin up to 5.7.1 on WordPress sql injection", "creation_timestamp": "2024-01-13T15:21:58.000000Z"}, {"uuid": "0a6ed1e9-3a1d-4f70-ac8e-c7c93d2e9cc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32747", "type": "seen", "source": "https://t.me/ctinow/168074", "content": "https://ift.tt/Nf0TpA4\nCVE-2023-32747 | WooCommerce Bookings Plugin up to 1.15.78 on WordPress authorization", "creation_timestamp": "2024-01-14T16:46:18.000000Z"}, {"uuid": "16268e3c-cce7-45f3-8ac1-e2618e625ceb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32747", "type": "seen", "source": "https://t.me/ctinow/157930", "content": "https://ift.tt/LGN53rx\nCVE-2023-32747", "creation_timestamp": "2023-12-21T20:22:25.000000Z"}, {"uuid": "78ddde03-7505-49a6-9437-df6757dc9ea9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32740", "type": "seen", "source": "https://t.me/cibsecurity/69413", "content": "\u203c CVE-2023-32740 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in Kunal Nagar Custom 404 Pro plugin <=\u00c2\u00a03.8.1 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-30T14:12:06.000000Z"}, {"uuid": "073e390e-53c8-4d66-a5da-d38176a35bfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32746", "type": "seen", "source": "https://t.me/cibsecurity/69422", "content": "\u203c CVE-2023-32746 \u203c\n\nAuth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Brands plugin <=\u00c2\u00a01.6.45 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-30T16:12:19.000000Z"}, {"uuid": "4af639d9-0ea2-4333-b2d0-2c7270a8c560", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32748", "type": "seen", "source": "https://t.me/cibsecurity/68465", "content": "\u203c CVE-2023-32748 \u203c\n\nThe Linux DVS server component of Mitel MiVoice Connect through 19.3 SP2 (22.24.1500.0) could allow an unauthenticated attacker with internal network access to execute arbitrary scripts due to improper access control.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-14T22:19:38.000000Z"}, {"uuid": "c0efe2da-3279-4241-890c-23f457cd4bcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32743", "type": "seen", "source": "https://t.me/ctinow/157156", "content": "https://ift.tt/X3YJm12\nCVE-2023-32743", "creation_timestamp": "2023-12-20T17:23:45.000000Z"}, {"uuid": "8827fa5a-743e-4fe2-b245-460ad8b21f13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32747", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13257", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-32747\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: Authorization Bypass Through User-Controlled Key vulnerability in WooCommerce WooCommerce Bookings.This issue affects WooCommerce Bookings: from n/a through 1.15.78.\n\n\n\ud83d\udccf Published: 2023-12-21T18:18:28.415Z\n\ud83d\udccf Modified: 2025-04-24T14:49:38.755Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/woocommerce-bookings/wordpress-woocommerce-bookings-plugin-1-15-78-insecure-direct-object-references-idor-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-24T15:06:48.000000Z"}, {"uuid": "10f960ce-695c-4c46-876b-766cdf7bae7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-32749", "type": "published-proof-of-concept", "source": "Telegram/A1qg1RolaBwsACBTI2hdl9LKX69FzxBc1xCrm7_xs4Pt8oY", "content": "", "creation_timestamp": "2026-04-06T21:00:05.000000Z"}]}