{"vulnerability": "CVE-2023-3349", "sightings": [{"uuid": "104891aa-473a-43eb-bf8e-4e48931a5efc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-33493", "type": "seen", "source": "https://t.me/cibsecurity/67531", "content": "\u203c CVE-2023-33493 \u203c\n\nAn Unrestricted Upload of File with Dangerous Type vulnerability in the Ajaxmanager File and Database explorer (ajaxmanager) module for PrestaShop through 2.3.0, allows remote attackers to upload dangerous files without restrictions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-01T20:38:35.000000Z"}, {"uuid": "0130f4dc-7414-458b-acd1-9a0b3ddc6112", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-33496", "type": "seen", "source": "https://t.me/cibsecurity/65053", "content": "\u203c CVE-2023-33496 \u203c\n\nxxl-rpc v1.7.0 was discovered to contain a deserialization vulnerability via the component com.xxl.rpc.core.remoting.net.impl.netty.codec.NettyDecode#decode.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-08T00:35:22.000000Z"}, {"uuid": "a010143b-df6d-4d9f-8bd9-3d36ee9a97cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-33492", "type": "seen", "source": "https://t.me/cibsecurity/65132", "content": "\u203c CVE-2023-33492 \u203c\n\nEyouCMS 1.6.2 is vulnerable to Cross Site Scripting (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-12T16:39:55.000000Z"}, {"uuid": "e4821838-a98b-4ae0-8986-1b798531cc7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-33498", "type": "seen", "source": "https://t.me/cibsecurity/65040", "content": "\u203c CVE-2023-33498 \u203c\n\nalist &lt;=3.16.3 is vulnerable to Incorrect Access Control. Low privilege accounts can upload any file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-07T18:35:09.000000Z"}, {"uuid": "0ef466c5-7875-475a-b3d5-e16f439306f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-33495", "type": "seen", "source": "https://t.me/cibsecurity/65361", "content": "\u203c CVE-2023-33495 \u203c\n\nCraft CMS through 4.4.9 is vulnerable to HTML Injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-20T16:25:37.000000Z"}]}