{"vulnerability": "CVE-2023-4115", "sightings": [{"uuid": "90497f00-5efe-49f1-a810-91cf667b4db5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-41156", "type": "seen", "source": "https://t.me/cibsecurity/70566", "content": "\u203c CVE-2023-41156 \u203c\n\nA Stored Cross-Site Scripting (XSS) vulnerability in the filter and forward mail tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via the save to new folder named field while creating a new filter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-15T00:24:53.000000Z"}, {"uuid": "984bd610-1477-404b-b412-96c5d4f6e409", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-41150", "type": "seen", "source": "https://t.me/cibsecurity/70008", "content": "\u203c CVE-2023-41150 \u203c\n\nF-RevoCRM 7.3 series prior to version7.3.8 contains a cross-site scripting vulnerability. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who is using the product.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-06T16:17:51.000000Z"}, {"uuid": "5b94b711-7359-409a-ac33-ae652b2025ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-41159", "type": "seen", "source": "https://t.me/cibsecurity/70577", "content": "\u203c CVE-2023-41159 \u203c\n\nA Stored Cross-Site Scripting (XSS) vulnerability while editing the autoreply file page in Usermin 2.000 allows remote attackers to inject arbitrary web script or HTML by editing the forward file manually.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-15T00:25:10.000000Z"}, {"uuid": "9321c94f-b7fc-4b92-a375-386fe8b7be2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-41151", "type": "seen", "source": "https://t.me/ctinow/166442", "content": "https://ift.tt/fBindkm\nCVE-2023-41151 | Softing OPC UA C++ SDK up to 6.29 on Windows denial of service", "creation_timestamp": "2024-01-11T10:56:57.000000Z"}, {"uuid": "e3621a64-6e0b-4176-9d02-44d068da0336", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-41153", "type": "seen", "source": "https://t.me/cibsecurity/69405", "content": "\u203c CVE-2023-41153 \u203c\n\nA Stored Cross-Site Scripting (XSS) vulnerability in the SSH configuration tab in Usermin 2.001 allows remote attackers to inject arbitrary web script or HTML via options for the host value while editing the host options.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-30T02:17:50.000000Z"}, {"uuid": "79f94054-d614-40c9-a83f-3e4c677db48a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-4115", "type": "seen", "source": "https://t.me/cibsecurity/67635", "content": "\u203c CVE-2023-4115 \u203c\n\nA vulnerability classified as problematic has been found in PHP Jabbers Cleaning Business 1.0. Affected is an unknown function of the file /index.php. The manipulation of the argument index leads to cross site scripting. It is possible to launch the attack remotely. VDB-235962 is the identifier assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T12:40:04.000000Z"}]}