{"vulnerability": "cve-2023-2842", "sightings": [{"uuid": "48d2b61b-3d9f-4117-b05d-5b8fd9911c74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28425", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/8053", "content": "#exploit\n1. Dissecting redis CVE-2023-28425 with chatGPT as assistant\nhttps://tin-z.github.io/redis/cve/chatgpt/2023/04/02/redis-cve2023.html\n\n2. CVE-2022-2884:\nGitLab v.15.3 - RCE (Authenticated)\nhttps://www.exploit-db.com/exploits/51181\n\n3. CVE-2022-39396:\nAnalysis of parse-server from prototype pollution to RCE vulnerability\nhttps://paper.seebug.org/2059", "creation_timestamp": "2023-04-04T11:01:01.000000Z"}, {"uuid": "7e50a019-70b3-4ec8-85ca-2d47c998dfee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28424", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/8632", "content": "#Threat_Research\nSQL Injections in Soko:\nWhy ORMs and Prepared Statements Can't (Always) Win (CVE-2023-28424)\nhttps://www.sonarsource.com/blog/why-orms-and-prepared-statements-cant-always-win", "creation_timestamp": "2023-07-08T12:47:01.000000Z"}, {"uuid": "5377bca8-e197-4c79-ac1a-4a02c7c92a90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28424", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/4725", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2023\n\u63cf\u8ff0\uff1aCVE-2023-28424\nURL\uff1ahttps://github.com/Fire-Null/CVE-2023-28424\n\n\u6807\u7b7e\uff1a#CVE-2023", "creation_timestamp": "2023-07-11T13:41:26.000000Z"}, {"uuid": "aa05f64b-9e32-420b-bf7a-fadeffb88ec1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28424", "type": "seen", "source": "Telegram/YPSFRJaXJu22SzL-lnmgNittGl2SN26SC5hMmH64EzvAW7E", "content": "", "creation_timestamp": "2023-06-28T15:51:20.000000Z"}, {"uuid": "f21fddeb-b9bb-45ac-94b6-4a3501a6c810", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28421", "type": "seen", "source": "https://t.me/ctinow/157744", "content": "https://ift.tt/bXd28NB\nCVE-2023-28421", "creation_timestamp": "2023-12-21T15:21:41.000000Z"}, {"uuid": "78b45aa1-6882-4172-823d-b5d888aa225a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28422", "type": "seen", "source": "https://t.me/cibsecurity/60561", "content": "\u203c CVE-2023-28422 \u203c\n\nAuth. (admin+) Stored Cross-site Scripting (XSS) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce <= 3.8.6. versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-23T15:51:40.000000Z"}, {"uuid": "229df25a-ee20-4d48-849a-f6f7ecd65e4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28429", "type": "seen", "source": "https://t.me/cibsecurity/60320", "content": "\u203c CVE-2023-28429 \u203c\n\nPimcore is an open source data and experience management platform. Versions prior to 10.5.19 have an unsecured tooltip field in DataObject class definition. This vulnerability has the potential to steal a user's cookie and gain unauthorized access to that user's account through the stolen cookie or redirect users to other malicious sites. Users should upgrade to version 10.5.19 or, as a workaround, apply the patch manually.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-20T17:34:08.000000Z"}, {"uuid": "ecf3bcd2-227e-4190-b1d6-d2bb7c1db177", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28424", "type": "seen", "source": "https://t.me/cibsecurity/60309", "content": "\u203c CVE-2023-28424 \u203c\n\nSoko if the code that powers packages.gentoo.org. Prior to version 1.0.2, the two package search handlers, `Search` and `SearchFeed`, implemented in `pkg/app/handler/packages/search.go`, are affected by a SQL injection via the `q` parameter. As a result, unauthenticated attackers can execute arbitrary SQL queries on `https://packages.gentoo.org/`. It was also demonstrated that primitive was enough to gain code execution in the context of the PostgreSQL container. The issue was addressed in commit `4fa6e4b619c0362728955b6ec56eab0e0cbf1e23y` of version 1.0.2 using prepared statements to interpolate user-controlled data in SQL queries.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-20T16:54:01.000000Z"}, {"uuid": "e52cb742-1c3f-4715-ad5f-9a3aa3a9deec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28421", "type": "seen", "source": "https://t.me/ctinow/167999", "content": "https://ift.tt/8cKoeHn\nCVE-2023-28421 | Winwar Media Email Marketing Plugin up to 3.10 on WordPress information disclosure", "creation_timestamp": "2024-01-14T11:11:30.000000Z"}, {"uuid": "e2979789-1adc-4602-96e9-598f0a0424d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28427", "type": "seen", "source": "https://t.me/cibsecurity/60973", "content": "\u203c CVE-2023-28427 \u203c\n\nmatrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. In versions prior to 24.0.0 events sent with special strings in key places can temporarily disrupt or impede the matrix-js-sdk from functioning properly, potentially impacting the consumer's ability to process data safely. Note that the matrix-js-sdk can appear to be operating normally but be excluding or corrupting runtime data presented to the consumer. This vulnerability is distinct from GHSA-rfv9-x7hh-xc32 which covers a similar issue. The issue has been patched in matrix-js-sdk 24.0.0 and users are advised to upgrade. There are no known workarounds for this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-29T00:49:54.000000Z"}, {"uuid": "830d4985-8070-496c-b430-73e1680791a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28425", "type": "seen", "source": "https://t.me/cibsecurity/60350", "content": "\u203c CVE-2023-28425 \u203c\n\nRedis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and termination of the Redis server process. The problem is fixed in Redis version 7.0.10.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-02T22:23:59.000000Z"}, {"uuid": "aea2a483-f310-4e66-a72a-a8d1191cb5f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28426", "type": "seen", "source": "https://t.me/cibsecurity/60323", "content": "\u203c CVE-2023-28426 \u203c\n\nsavg-sanitizer is a PHP SVG/XML Sanitizer. A bypass has been found in versions prior to 0.16.0 that allows an attacker to upload an SVG with persistent cross-site scripting. HTML elements within CDATA needed to be sanitized correctly, as we were converting them to a textnode and therefore, the library wasn't seeing them as DOM elements. This issue is fixed in version 0.16.0. Any data within a CDATA node will now be sanitised using HTMLPurifier. The maintainers have also removed many of the HTML and MathML elements from the allowed element list, as without ForiegnObject, they're not legal within the SVG context. There are no known workarounds.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-20T17:34:11.000000Z"}, {"uuid": "7ab35eb8-c7a8-4be3-a69e-76235e2a078b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-28428", "type": "seen", "source": "https://t.me/cibsecurity/60321", "content": "\u203c CVE-2023-28428 \u203c\n\nPDFio is a C library for reading and writing PDF files. In versions 1.1.0 and prior, a denial of service vulnerability exists in the pdfio parser. Crafted pdf files can cause the program to run at 100% utilization and never terminate. This is different from CVE-2023-24808. A patch for this issue is available in version 1.1.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-20T17:34:09.000000Z"}]}