{"vulnerability": "cve-2023-2425", "sightings": [{"uuid": "c39d852c-887c-47db-a0f6-a390c4eac183", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-24256", "type": "seen", "source": "https://t.me/arpsyndicate/2449", "content": "#ExploitObserverAlert\n\nCVE-2023-24256\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2023-24256. An issue in the com.nextev.datastatistic component of NIO EC6 Aspen before v3.3.0 allows attackers to escalate privileges via path traversal.\n\nFIRST-EPSS: 0.000440000\nNVD-IS: 5.9\nNVD-ES: 1.8", "creation_timestamp": "2024-01-04T11:35:09.000000Z"}, {"uuid": "02eabc4f-7d3c-408f-96c5-c1a85afc4caf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-24258", "type": "seen", "source": "https://t.me/cibsecurity/59075", "content": "\u203c CVE-2023-24258 \u203c\n\nSPIP v4.1.5 and earlier was discovered to contain a SQL injection vulnerability via the _oups parameter. This vulnerability allows attackers to execute arbitrary code via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-28T00:28:07.000000Z"}, {"uuid": "b471f620-3c7e-4f3a-81c8-2a03f2a1770b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-24253", "type": "seen", "source": "https://t.me/cibsecurity/59064", "content": "\u203c CVE-2023-24253 \u203c\n\nDomotica Labs srl Ikon Server before v2.8.6 was discovered to contain a SQL injection vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-27T22:28:20.000000Z"}, {"uuid": "f83ad143-230f-4400-a799-2df1b4aa2e88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-24256", "type": "seen", "source": "https://t.me/cibsecurity/66040", "content": "\u203c CVE-2023-24256 \u203c\n\nAn issue in the com.nextev.datastatistic component of NIO EC6 Aspen before v3.3.0 allows attackers to escalate privileges via path traversal.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-06T07:32:38.000000Z"}]}