{"vulnerability": "CVE-2023-3788", "sightings": [{"uuid": "e92496ac-d655-4d86-972c-845f4851b8af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37887", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113646932442961521", "content": "", "creation_timestamp": "2024-12-13T18:29:44.492639Z"}, {"uuid": "acfec045-e359-41dd-998b-1e73470ce8f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37881", "type": "seen", "source": "https://t.me/cibsecurity/70247", "content": "\u203c CVE-2023-37881 \u203c\n\nWeak access control in Wing FTP Server (Admin Web Client) allows for privilege escalation.This issue affects Wing FTP Server: <= 7.2.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-12T12:22:46.000000Z"}, {"uuid": "901c7746-8fee-44ae-8857-36ac81634e6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-37889", "type": "seen", "source": "https://t.me/cibsecurity/66900", "content": "\u203c CVE-2023-37889 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in WPAdmin WPAdmin AWS CDN plugin <=\u00c2\u00a02.0.13 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-18T16:31:13.000000Z"}, {"uuid": "094409e7-c5b2-4847-866f-0e81376baad5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3788", "type": "seen", "source": "https://t.me/cibsecurity/67051", "content": "\u203c CVE-2023-3788 \u203c\n\nA vulnerability, which was classified as problematic, has been found in ActiveITzone Active Super Shop CMS 2.5. This issue affects some unknown processing of the component Manage Details Page. The manipulation of the argument name/phone/address leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-235055.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-20T20:32:45.000000Z"}]}