{"vulnerability": "CVE-2023-4884", "sightings": [{"uuid": "da3c8acc-98ec-4e02-ae62-8bf86e6070cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48848", "type": "seen", "source": "https://t.me/ctinow/156791", "content": "https://ift.tt/V3l6NrH\nCVE-2023-48848 | ureport 2.2.9 Path path traversal", "creation_timestamp": "2023-12-20T08:01:58.000000Z"}, {"uuid": "9a040fc0-7239-4c2b-974e-d5eb6f98ac8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/3640", "content": "https://github.com/creacitysec/CVE-2023-48842/blob/main/exploit.py\n#github", "creation_timestamp": "2023-12-04T11:17:27.000000Z"}, {"uuid": "f841f438-93d0-4b27-8fd6-0d3b4f89bf7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48849", "type": "seen", "source": "https://t.me/ctinow/160776", "content": "https://ift.tt/lTUsJif\nCVE-2023-48849 | Ruijie EG up to EG_3.0(1)B11P216 Filter Remote Code Execution", "creation_timestamp": "2023-12-30T08:01:48.000000Z"}, {"uuid": "6744edfb-88dc-478e-b374-bcf1d81af3fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "seen", "source": "https://t.me/ctinow/157945", "content": "https://ift.tt/C1S2WB6\nCVE-2023-48842 | D-Link Go-RT-AC750 revA_v101b03 hedwig.cgi service command injection", "creation_timestamp": "2023-12-21T20:47:42.000000Z"}, {"uuid": "1f0fe497-df84-4763-a860-8e1bf188908a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9517", "content": "#exploit\n1. CVE-2023-48842:\nD-Link Go-RT-AC750 - command injection via the service parameter at hedwig.cgi\nhttps://github.com/creacitysec/CVE-2023-48842\n\n2. Exploit tool that can control camera movement even without a username/psw\nhttps://github.com/0xbitx/DEDSEC_PTZ_EXPLOIT", "creation_timestamp": "2024-01-10T13:07:03.000000Z"}, {"uuid": "deaca467-3f01-46f1-9497-565afa006e32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48849", "type": "seen", "source": "https://t.me/arpsyndicate/1527", "content": "#ExploitObserverAlert\n\nCVE-2023-48849\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-48849.\n\nFIRST-EPSS: 0.000420000", "creation_timestamp": "2023-12-06T23:58:28.000000Z"}, {"uuid": "292c5ff9-3bba-4fa6-8b28-4fed9610bcd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2185", "content": "#exploit\n1. CVE-2023-48842:\nD-Link Go-RT-AC750 - command injection via the service parameter at hedwig.cgi\nhttps://github.com/creacitysec/CVE-2023-48842\n\n2. Exploit tool that can control camera movement even without a username/psw\nhttps://github.com/0xbitx/DEDSEC_PTZ_EXPLOIT", "creation_timestamp": "2024-08-16T08:55:31.000000Z"}, {"uuid": "e90687a6-034e-47e9-a541-ff7c6f019bf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-4884", "type": "seen", "source": "https://t.me/cibsecurity/71509", "content": "\u203c CVE-2023-4884 \u203c\n\nAn attacker could send an HTTP request to an Open5GS endpoint and retrieve the information stored on the device due to the lack of Authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-03T18:46:18.000000Z"}, {"uuid": "e7406981-d75d-4226-beec-5b5b3ac4d83a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48841", "type": "seen", "source": "https://t.me/ctinow/160890", "content": "https://ift.tt/7BeLEd8\nCVE-2023-48841 | Appointment Scheduler 3.0 Language Label Export csv injection (ID 176058)", "creation_timestamp": "2023-12-30T15:02:00.000000Z"}, {"uuid": "fd837a86-f0bc-42bc-a318-2b11912b5cb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48840", "type": "seen", "source": "https://t.me/ctinow/160889", "content": "https://ift.tt/9XngNO1\nCVE-2023-48840 | Appointment Scheduler 3.0 pjActionAjaxSend resource consumption (ID 176056)", "creation_timestamp": "2023-12-30T15:01:59.000000Z"}, {"uuid": "31d1b8d0-6141-4833-9cc2-c87c62ec9f4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1651", "content": "https://github.com/creacitysec/CVE-2023-48842/blob/main/exploit.py\n#github", "creation_timestamp": "2023-12-04T07:37:55.000000Z"}]}