{"vulnerability": "GHSA-8CWM-WR6Q-X76P", "sightings": [{"uuid": "1a0360db-7ab1-4842-95f2-f65d7ad6af5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "GHSA-8CWM-WR6Q-X76P", "type": "published-proof-of-concept", "source": "https://t.me/arpsyndicate/3217", "content": "#ExploitObserverAlert\n\nGHSA-8cwm-wr6q-x76p\n\nDESCRIPTION: Exploit Observer has 3 entries in 3 file formats related to GHSA-8cwm-wr6q-x76p. darkhttpd before 1.15 uses strcmp (which is not constant time) to verify authentication, which makes it easier for remote attackers to bypass authentication via a timing side channel.", "creation_timestamp": "2024-01-28T05:27:31.000000Z"}]}