{"vulnerability": "cve-2023-3193", "sightings": [{"uuid": "a32b5d53-2384-400a-a7e0-aff3f932a9ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-31938", "type": "seen", "source": "https://t.me/cibsecurity/68790", "content": "\u203c CVE-2023-31938 \u203c\n\nSQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the emp_id parameter at employee_detail.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:38.000000Z"}, {"uuid": "78f700c9-4fb2-4fa2-b326-3ee94b94e3f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-31939", "type": "seen", "source": "https://t.me/cibsecurity/68789", "content": "\u203c CVE-2023-31939 \u203c\n\nSQL injection vulnerability found in Online Travel Agency System v.1.0 allows a remote attacker to execute arbitrary code via the costomer_id parameter at customer_edit.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-18T00:37:37.000000Z"}, {"uuid": "4eecbd2d-c12f-4ae6-a354-35bf0edabc53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-31936", "type": "seen", "source": "https://t.me/cibsecurity/67382", "content": "\u203c CVE-2023-31936 \u203c\n\nSql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the viewid parameter of the view-pass-detail.php file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-28T18:36:02.000000Z"}, {"uuid": "39d3b79e-090b-4c25-906a-b03132ce2225", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-31933", "type": "seen", "source": "https://t.me/cibsecurity/67381", "content": "\u203c CVE-2023-31933 \u203c\n\nSql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-pass-detail.php file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-28T18:36:01.000000Z"}, {"uuid": "fcfae083-af77-4558-9564-33fc79082080", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-31934", "type": "seen", "source": "https://t.me/cibsecurity/67375", "content": "\u203c CVE-2023-31934 \u203c\n\nCross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-28T18:35:54.000000Z"}, {"uuid": "389bff5d-8b0d-4e4f-b1c3-c1c47bf2c052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-31937", "type": "seen", "source": "https://t.me/cibsecurity/67384", "content": "\u203c CVE-2023-31937 \u203c\n\nSql injection vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-28T18:36:04.000000Z"}]}