{"vulnerability": "cve-2023-3437", "sightings": [{"uuid": "a3a4a406-58a6-48a9-9463-c96e9ceafbe5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-3437", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhulogsbop2x", "content": "", "creation_timestamp": "2025-02-11T02:16:15.523084Z"}, {"uuid": "2f5a0f58-a05e-46ea-a6c4-6f56c17c810a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34377", "type": "seen", "source": "https://t.me/cibsecurity/67823", "content": "\u203c CVE-2023-34377 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Joseph C Dolson My Content Management plugin &lt;=\u00c2\u00a01.7.6 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-06T02:12:04.000000Z"}, {"uuid": "db833e89-3f57-4317-8764-683cc36de289", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34373", "type": "seen", "source": "https://t.me/cibsecurity/65343", "content": "\u203c CVE-2023-34373 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Dylan James Zephyr Project Manager plugin &lt;=\u00c2\u00a03.3.93 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-06-19T16:34:05.000000Z"}, {"uuid": "b90e5f5f-15cb-48d3-9674-8fb8d60135c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34376", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113646637256637452", "content": "", "creation_timestamp": "2024-12-13T17:14:26.196614Z"}, {"uuid": "c7488ca1-42a6-4847-aa75-7d85818e1389", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34374", "type": "seen", "source": "https://t.me/cibsecurity/68200", "content": "\u203c CVE-2023-34374 \u203c\n\nAuth. (editor+) Stored Cross-Site Scripting (XSS) vulnerability in Rahul Aryan AnsPress plugin &lt;=\u00c2\u00a04.3.0 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-10T16:15:55.000000Z"}, {"uuid": "f6a179c1-921e-4fc7-9c0b-a6f29684c919", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2023-34379", "type": "seen", "source": "https://bsky.app/profile/adobedigest.bsky.social/post/3mkm3xuty6j25", "content": "", "creation_timestamp": "2026-04-29T02:55:41.882475Z"}, {"uuid": "1f1a50ed-399d-4b21-b2a8-99aa2463dac6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34379", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17431", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-34379\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: Missing Authorization vulnerability in MagneticOne Cart2Cart: Magento to WooCommerce Migration.This issue affects Cart2Cart: Magento to WooCommerce Migration: from n/a through 2.0.0.\n\n\n\ud83d\udccf Published: 2024-01-17T16:12:05.388Z\n\ud83d\udccf Modified: 2025-05-23T16:02:01.360Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/cart2cart-magento-to-woocommerce-migration/wordpress-cart2cart-magento-to-woocommerce-migration-plugin-2-0-0-broken-access-control?_s_id=cve", "creation_timestamp": "2025-05-23T16:47:01.000000Z"}, {"uuid": "46f16f61-362a-484c-8765-8c545ce71159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-34372", "type": "seen", "source": "https://t.me/cibsecurity/69478", "content": "\u203c CVE-2023-34372 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Didier Sampaolo SpamReferrerBlock plugin &lt;=\u00c2\u00a02.22 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-30T20:12:40.000000Z"}]}