{"vulnerability": "CVE-2023-5034", "sightings": [{"uuid": "2c6f2c73-ea93-46c0-8cb5-6f38cd64081d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50344", "type": "seen", "source": "https://t.me/cibsecurity/74273", "content": "\u203c\ufe0fCVE-2023-50344\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by improper access control Unauthenticated File Download vulnerability. An unauthenticated user can download certain files. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:32:00.000000Z"}, {"uuid": "5e7148f1-2ec2-4e00-96b9-bc1d7c959e9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50343", "type": "seen", "source": "https://t.me/cibsecurity/74272", "content": "\u203c\ufe0fCVE-2023-50343\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by an Improper Access Control Controller APIs vulnerability. Certain API endpoints are accessible to Customer Admin Users that can allow access to sensitive information about other users. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:31:55.000000Z"}, {"uuid": "405f0cb3-e720-40e2-ba69-016601b3c4d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50342", "type": "seen", "source": "https://t.me/cibsecurity/74271", "content": "\u203c\ufe0fCVE-2023-50342\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by an Insecure Direct Object Reference IDOR vulnerability. \u00a0A user can obtain certain details about another user as a result of improper access control. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:31:50.000000Z"}, {"uuid": "dfedb6bd-32b2-4f41-a304-a5dedc44a64e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50341", "type": "seen", "source": "https://t.me/cibsecurity/74270", "content": "\u203c\ufe0fCVE-2023-50341\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by Improper Access Control Obsolete web pages vulnerability. Discovery of outdated and accessible web pages, reflects a \"Missing Access Control\" vulnerability, which could lead to inadvertent exposure of sensitive information andor exposing a vulnerable endpoint. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:31:45.000000Z"}, {"uuid": "aa8a7b96-12b9-4611-ba3b-8ab7dffd9c50", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50348", "type": "seen", "source": "https://t.me/cibsecurity/74264", "content": "\u203c\ufe0fCVE-2023-50348\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by an improper error handling vulnerability. The application returns detailed error messages that can provide an attacker with insight into the application, system, etc. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:31:15.000000Z"}, {"uuid": "4afd0806-a0bd-4611-8200-858516e5b04f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50346", "type": "seen", "source": "https://t.me/cibsecurity/74263", "content": "\u203c\ufe0fCVE-2023-50346\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by an information disclosure vulnerability. Certain endpoints within the application disclose detailed file information. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:31:10.000000Z"}, {"uuid": "98857aed-491f-40f5-a267-65365db798bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50345", "type": "seen", "source": "https://t.me/cibsecurity/74262", "content": "\u203c\ufe0fCVE-2023-50345\u203c\ufe0f\n\nHCL DRYiCE MyXalytics is impacted by an Open Redirect vulnerability which could allow an attacker to redirect users to malicious sites, potentially leading to phishing attacks or other security threats. \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-04T01:31:05.000000Z"}, {"uuid": "40d2359e-a4a7-4962-85f4-f6300b02735f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50349", "type": "seen", "source": "https://t.me/ctinow/182295", "content": "https://ift.tt/CAjHL9a\nCVE-2023-50349", "creation_timestamp": "2024-02-09T22:21:57.000000Z"}, {"uuid": "ec36db56-ce3c-4eda-8f3e-c34a3679a425", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50346", "type": "seen", "source": "https://t.me/ctinow/171894", "content": "https://ift.tt/xevN69C\nCVE-2023-50346 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 Endpoint information disclosure (KB0109608)", "creation_timestamp": "2024-01-23T12:21:19.000000Z"}, {"uuid": "7f178a34-371a-49b1-ad82-447f3d1bb10a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-5034", "type": "seen", "source": "https://t.me/cibsecurity/70641", "content": "\u203c CVE-2023-5034 \u203c\n\nA vulnerability classified as problematic was found in SourceCodester My Food Recipe 1.0. This vulnerability affects unknown code of the file index.php of the component Image Upload Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-239878 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-18T12:41:26.000000Z"}, {"uuid": "ef4dda08-e5d9-480e-8279-8062bb77d2b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50343", "type": "seen", "source": "https://t.me/ctinow/171809", "content": "https://ift.tt/9uo5aNd\nCVE-2023-50343 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 API Endpoint access control (KB0109608)", "creation_timestamp": "2024-01-23T09:56:21.000000Z"}, {"uuid": "6f7855b2-4330-4029-9b7b-e35d7a1a1aa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50344", "type": "seen", "source": "https://t.me/ctinow/162181", "content": "https://ift.tt/and0PBY\nCVE-2023-50344", "creation_timestamp": "2024-01-03T04:27:06.000000Z"}, {"uuid": "4da7fafa-e917-432d-8917-ac630652bae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50343", "type": "seen", "source": "https://t.me/ctinow/162180", "content": "https://ift.tt/Fw1aSkZ\nCVE-2023-50343", "creation_timestamp": "2024-01-03T04:27:05.000000Z"}, {"uuid": "3ac50176-cf97-4eb3-bf3c-3090ab2ee34a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50342", "type": "seen", "source": "https://t.me/ctinow/162179", "content": "https://ift.tt/rhDWVBY\nCVE-2023-50342", "creation_timestamp": "2024-01-03T04:27:01.000000Z"}, {"uuid": "45085ab3-14ee-4a04-b207-51df32a9ed33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50342", "type": "seen", "source": "https://t.me/ctinow/171793", "content": "https://ift.tt/ZvrOQWR\nCVE-2023-50342 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 resource injection (KB0109608)", "creation_timestamp": "2024-01-23T09:21:40.000000Z"}, {"uuid": "4b1557e6-8981-4850-82f9-48b5e103031e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50348", "type": "seen", "source": "https://t.me/ctinow/171811", "content": "https://ift.tt/oC1DPQp\nCVE-2023-50348 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 information exposure (KB0109608)", "creation_timestamp": "2024-01-23T09:56:24.000000Z"}, {"uuid": "aec42acf-dd3a-4f67-8d23-778b284c3c45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50345", "type": "seen", "source": "https://t.me/ctinow/171810", "content": "https://ift.tt/vmtI79R\nCVE-2023-50345 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 redirect (KB0109608)", "creation_timestamp": "2024-01-23T09:56:23.000000Z"}, {"uuid": "218d2200-7d0a-4892-b55f-2b170440bf64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50341", "type": "seen", "source": "https://t.me/ctinow/171791", "content": "https://ift.tt/I37yxqr\nCVE-2023-50341 | HCL DRYiCE MyXalytics 5.9/6.0/6.1 information disclosure (KB0109608)", "creation_timestamp": "2024-01-23T09:21:37.000000Z"}, {"uuid": "144195c5-aad2-45b4-a71c-38cebb1e1632", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50341", "type": "seen", "source": "https://t.me/ctinow/162178", "content": "https://ift.tt/SYzcw3m\nCVE-2023-50341", "creation_timestamp": "2024-01-03T04:27:00.000000Z"}, {"uuid": "460cc6fd-aca6-4ddf-9659-d1e0e9a6dcf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50348", "type": "seen", "source": "https://t.me/ctinow/162164", "content": "https://ift.tt/5x9hfs7\nCVE-2023-50348", "creation_timestamp": "2024-01-03T03:26:32.000000Z"}, {"uuid": "9a9d52b1-1663-4fd8-9b69-6e59e42881e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50346", "type": "seen", "source": "https://t.me/ctinow/162163", "content": "https://ift.tt/EQ1lNL8\nCVE-2023-50346", "creation_timestamp": "2024-01-03T03:26:31.000000Z"}, {"uuid": "8892fad5-633e-46d1-a3d4-6e0de0c172f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-50345", "type": "seen", "source": "https://t.me/ctinow/162162", "content": "https://ift.tt/zD2EuWZ\nCVE-2023-50345", "creation_timestamp": "2024-01-03T03:26:30.000000Z"}]}