{"vulnerability": "cve-2023-4884", "sightings": [{"uuid": "9a040fc0-7239-4c2b-974e-d5eb6f98ac8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/WARLOCK_DARK_ARMY_OFFICIALS/3640", "content": "https://github.com/creacitysec/CVE-2023-48842/blob/main/exploit.py\n#github", "creation_timestamp": "2023-12-04T11:17:27.000000Z"}, {"uuid": "e90687a6-034e-47e9-a541-ff7c6f019bf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-4884", "type": "seen", "source": "https://t.me/cibsecurity/71509", "content": "\u203c CVE-2023-4884 \u203c\n\nAn attacker could send an HTTP request to an Open5GS endpoint and retrieve the information stored on the device due to the lack of Authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-10-03T18:46:18.000000Z"}, {"uuid": "f841f438-93d0-4b27-8fd6-0d3b4f89bf7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48849", "type": "seen", "source": "https://t.me/ctinow/160776", "content": "https://ift.tt/lTUsJif\nCVE-2023-48849 | Ruijie EG up to EG_3.0(1)B11P216 Filter Remote Code Execution", "creation_timestamp": "2023-12-30T08:01:48.000000Z"}, {"uuid": "31d1b8d0-6141-4833-9cc2-c87c62ec9f4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/1651", "content": "https://github.com/creacitysec/CVE-2023-48842/blob/main/exploit.py\n#github", "creation_timestamp": "2023-12-04T07:37:55.000000Z"}, {"uuid": "292c5ff9-3bba-4fa6-8b28-4fed9610bcd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/Rootsec_2/2185", "content": "#exploit\n1. CVE-2023-48842:\nD-Link Go-RT-AC750 - command injection via the service parameter at hedwig.cgi\nhttps://github.com/creacitysec/CVE-2023-48842\n\n2. Exploit tool that can control camera movement even without a username/psw\nhttps://github.com/0xbitx/DEDSEC_PTZ_EXPLOIT", "creation_timestamp": "2024-08-16T08:55:31.000000Z"}, {"uuid": "1f0fe497-df84-4763-a860-8e1bf188908a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9517", "content": "#exploit\n1. CVE-2023-48842:\nD-Link Go-RT-AC750 - command injection via the service parameter at hedwig.cgi\nhttps://github.com/creacitysec/CVE-2023-48842\n\n2. Exploit tool that can control camera movement even without a username/psw\nhttps://github.com/0xbitx/DEDSEC_PTZ_EXPLOIT", "creation_timestamp": "2024-01-10T13:07:03.000000Z"}, {"uuid": "e7406981-d75d-4226-beec-5b5b3ac4d83a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48841", "type": "seen", "source": "https://t.me/ctinow/160890", "content": "https://ift.tt/7BeLEd8\nCVE-2023-48841 | Appointment Scheduler 3.0 Language Label Export csv injection (ID 176058)", "creation_timestamp": "2023-12-30T15:02:00.000000Z"}, {"uuid": "fd837a86-f0bc-42bc-a318-2b11912b5cb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48840", "type": "seen", "source": "https://t.me/ctinow/160889", "content": "https://ift.tt/9XngNO1\nCVE-2023-48840 | Appointment Scheduler 3.0 pjActionAjaxSend resource consumption (ID 176056)", "creation_timestamp": "2023-12-30T15:01:59.000000Z"}, {"uuid": "6744edfb-88dc-478e-b374-bcf1d81af3fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48842", "type": "seen", "source": "https://t.me/ctinow/157945", "content": "https://ift.tt/C1S2WB6\nCVE-2023-48842 | D-Link Go-RT-AC750 revA_v101b03 hedwig.cgi service command injection", "creation_timestamp": "2023-12-21T20:47:42.000000Z"}, {"uuid": "da3c8acc-98ec-4e02-ae62-8bf86e6070cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48848", "type": "seen", "source": "https://t.me/ctinow/156791", "content": "https://ift.tt/V3l6NrH\nCVE-2023-48848 | ureport 2.2.9 Path path traversal", "creation_timestamp": "2023-12-20T08:01:58.000000Z"}, {"uuid": "deaca467-3f01-46f1-9497-565afa006e32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-48849", "type": "seen", "source": "https://t.me/arpsyndicate/1527", "content": "#ExploitObserverAlert\n\nCVE-2023-48849\n\nDESCRIPTION: Exploit Observer has 2 entries related to CVE-2023-48849.\n\nFIRST-EPSS: 0.000420000", "creation_timestamp": "2023-12-06T23:58:28.000000Z"}]}