{"vulnerability": "cve-2020-2313", "sightings": [{"uuid": "cb2c0962-e085-43ab-a692-11b7e8ecd51b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-23131", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1827", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1a\u6f0f\u6d1e\u5229\u7528\n\u63cf\u8ff0\uff1aCVE-2022-23131\u6f0f\u6d1e\u5229\u7528\u5de5\u5177\u5f00\u7bb1\u5373\u7528\u3002\nURL\uff1ahttps://github.com/Kazaf6s/CVE-2020-23131\n\n\u6807\u7b7e\uff1a#\u6f0f\u6d1e\u5229\u7528", "creation_timestamp": "2022-04-02T18:32:38.000000Z"}, {"uuid": "9d4d7b57-f278-49d7-a33f-fc57e0b2298b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-23139", "type": "seen", "source": "https://t.me/cibsecurity/16041", "content": "\u203c CVE-2020-23139 \u203c\n\nMicroweber 1.1.18 is affected by broken authentication and session management. Local session hijacking may occur, which could result in unauthorized access to system data or functionality, or a complete system compromise.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-09T20:55:32.000000Z"}, {"uuid": "f8cb0554-c7b4-43f7-be89-67c0f655b01a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-23136", "type": "seen", "source": "https://t.me/cibsecurity/16038", "content": "\u203c CVE-2020-23136 \u203c\n\nMicroweber v1.1.18 is affected by no session expiry after log-out.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-09T20:55:29.000000Z"}, {"uuid": "be673c60-c073-4688-b4b2-b574c831deae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-23138", "type": "seen", "source": "https://t.me/cibsecurity/16039", "content": "\u203c CVE-2020-23138 \u203c\n\nAn unrestricted file upload vulnerability was discovered in the Microweber 1.1.18 admin account page. An attacker can upload PHP code or any extension (eg- .exe) to the web server by providing image data and the image/jpeg content type with a .php extension.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-09T20:55:30.000000Z"}]}