{"vulnerability": "cve-2023-3629", "sightings": [{"uuid": "9424afd2-0f92-412b-a896-985c979b5104", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36291", "type": "seen", "source": "https://t.me/cibsecurity/65889", "content": "\u203c CVE-2023-36291 \u203c\n\nCross Site Scripting vulnerability in Maxsite CMS v.108.7 allows a remote attacker to execute arbitrary code via the f_content parameter in the admin/page_new file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-04T00:22:59.000000Z"}, {"uuid": "dd4c7e85-137e-4822-a8b1-d79d102bfa63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36298", "type": "seen", "source": "https://t.me/cibsecurity/67692", "content": "\u203c CVE-2023-36298 \u203c\n\nDedeCMS v5.7.109 has a File Upload vulnerability, leading to remote code execution (RCE).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T18:40:13.000000Z"}, {"uuid": "2fc67960-d640-4e2b-891d-25f0024203eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36299", "type": "seen", "source": "https://t.me/cibsecurity/67695", "content": "\u203c CVE-2023-36299 \u203c\n\nA File Upload vulnerability in typecho v.1.2.1 allows a remote attacker to execute arbitrary code via the upload and options-general parameters in index.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-03T18:40:19.000000Z"}, {"uuid": "e0d0eaa7-fd52-4b8c-b154-d76a3b118d55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-36293", "type": "seen", "source": "https://t.me/cibsecurity/66393", "content": "\u203c CVE-2023-36293 \u203c\n\nSQL injection vulnerability in wmanager v.1.0.7 and before allows a remote attacker to obtain sensitive information via a crafted script to the company.php component.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-11T18:29:46.000000Z"}]}