{"vulnerability": "CVE-2023-45857", "sightings": [{"uuid": "10a40b15-1c44-4c8d-94dd-16157cda644c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2023-45857", "type": "seen", "source": "https://gist.github.com/siddharthharshraj/29a727b06da68abeed8abdfa8c343556", "content": "", "creation_timestamp": "2026-03-04T22:10:15.000000Z"}, {"uuid": "aa94ee01-ab5e-47c3-9812-c4723f9d90f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45857", "type": "seen", "source": "https://t.me/arpsyndicate/2700", "content": "#ExploitObserverAlert\n\nCVE-2023-45857\n\nDESCRIPTION: Exploit Observer has 10 entries related to CVE-2023-45857. An issue discovered in Axios 1.5.1 inadvertently reveals the confidential XSRF-TOKEN stored in cookies by including it in the HTTP header X-XSRF-TOKEN for every request made to any host allowing attackers to view sensitive information.\n\nFIRST-EPSS: 0.000550000\nNVD-IS: 3.6\nNVD-ES: 2.8", "creation_timestamp": "2024-01-09T01:30:12.000000Z"}, {"uuid": "7a33386c-7f34-43d7-92d6-2ce25dec3a0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-45857", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/5565", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-45857\u306e\u6319\u52d5\u3092\u78ba\u8a8d\u3059\u308b\u30c7\u30e2\nURL\uff1ahttps://github.com/intercept6/CVE-2023-45857-Demo\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-10-26T04:24:41.000000Z"}]}