{"vulnerability": "cve-2023-4977", "sightings": [{"uuid": "d1180c9b-fb8c-4a43-ab03-de40f5f1ab3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49776", "type": "seen", "source": "https://t.me/ctinow/167863", "content": "https://ift.tt/6imgb8n\nCVE-2023-49776 | Hakan Demiray Sayfa Sayac Plugin up to 2.6 on WordPress sql injection", "creation_timestamp": "2024-01-13T15:56:17.000000Z"}, {"uuid": "f63efbb2-4198-46f3-8917-94a226820354", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49773", "type": "seen", "source": "https://t.me/ctinow/167862", "content": "https://ift.tt/qQEVfLe\nCVE-2023-49773 | Tim Brattberg BCorp Shortcodes Plugin up to 0.23 on WordPress deserialization", "creation_timestamp": "2024-01-13T15:56:16.000000Z"}, {"uuid": "b4b80506-ce1a-47d9-acb9-3a85e6f7b6b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49772", "type": "seen", "source": "https://t.me/ctinow/167849", "content": "https://ift.tt/Y9TjZLb\nCVE-2023-49772 | Phpbits Creative Studio Genesis Simple Love Plugin up to 2.0 on WordPress deserialization", "creation_timestamp": "2024-01-13T15:21:51.000000Z"}, {"uuid": "9e5356cf-abd3-443e-93e6-bc85ec6d1b72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49777", "type": "seen", "source": "https://t.me/ctinow/161068", "content": "https://ift.tt/pcY017G\nCVE-2023-49777", "creation_timestamp": "2023-12-31T12:26:28.000000Z"}, {"uuid": "43181eed-6ce4-444f-ad85-7faeee0f7b82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49779", "type": "seen", "source": "https://t.me/ctinow/159288", "content": "https://ift.tt/qenSfM8\nCVE-2023-49779", "creation_timestamp": "2023-12-26T09:27:00.000000Z"}, {"uuid": "8a0f102c-4c54-47c7-abad-9a7ba398b992", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49778", "type": "seen", "source": "https://t.me/ctinow/157706", "content": "https://ift.tt/g04vJxW\nCVE-2023-49778", "creation_timestamp": "2023-12-21T14:22:46.000000Z"}, {"uuid": "c41630d3-ff39-441b-96f1-1472a5a11478", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49778", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13252", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49778\n\ud83d\udd25 CVSS Score: 10 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: Deserialization of Untrusted Data vulnerability in Hakan Demiray Sayfa Sayac.This issue affects Sayfa Sayac: from n/a through 2.6.\n\n\n\ud83d\udccf Published: 2023-12-21T12:37:02.566Z\n\ud83d\udccf Modified: 2025-04-24T14:51:19.949Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/sayfa-sayac/wordpress-sayfa-sayac-plugin-2-6-unauthenticated-php-object-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-24T15:06:43.000000Z"}, {"uuid": "74968d97-115e-4cd1-8c64-c14719284d0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49771", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17326", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-49771\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Peter Raschendorfer Smart External Link Click Monitor [Link Log] allows Reflected XSS.This issue affects Smart External Link Click Monitor [Link Log]: from n/a through 5.0.2.\n\n\n\ud83d\udccf Published: 2023-12-14T15:48:20.519Z\n\ud83d\udccf Modified: 2025-05-22T17:36:50.378Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/link-log/wordpress-smart-external-link-click-monitor-link-log-plugin-5-0-2-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-05-22T17:43:26.000000Z"}, {"uuid": "0702dcc2-fcee-4135-8c34-77a4a80ad50d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49777", "type": "seen", "source": "https://t.me/cibsecurity/74063", "content": "\u203c\ufe0fCVE-2023-49777\u203c\ufe0f\n\nDeserialization of Untrusted Data vulnerability in YITH YITH WooCommerce Product AddOns.This issue affects YITH WooCommerce Product AddOns from na through 4.3.0.  \n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-01T01:31:39.000000Z"}, {"uuid": "96777fe1-940c-4764-ac43-738c39f2dc90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49777", "type": "seen", "source": "https://t.me/ctinow/171069", "content": "https://ift.tt/B4QGgyl\nCVE-2023-49777 | YITH WooCommerce Product Add-Ons Plugin up to 4.3.0 on WordPress deserialization", "creation_timestamp": "2024-01-22T10:11:24.000000Z"}, {"uuid": "20acdc6c-f269-4f56-b150-efa0b7cf9813", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49776", "type": "seen", "source": "https://t.me/ctinow/157165", "content": "https://ift.tt/k3GqeQa\nCVE-2023-49776", "creation_timestamp": "2023-12-20T17:23:54.000000Z"}, {"uuid": "a7093b5a-1cf9-4b0f-9ed1-7c2a55b819d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49773", "type": "seen", "source": "https://t.me/ctinow/157164", "content": "https://ift.tt/bPHvGny\nCVE-2023-49773", "creation_timestamp": "2023-12-20T17:23:53.000000Z"}, {"uuid": "35de0cf3-0ccc-408d-af95-c0cd3677b92d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49772", "type": "seen", "source": "https://t.me/ctinow/157163", "content": "https://ift.tt/wEb3sa0\nCVE-2023-49772", "creation_timestamp": "2023-12-20T17:23:52.000000Z"}, {"uuid": "c9157199-69be-468f-93a2-ccb0ae6ec1a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49778", "type": "seen", "source": "https://t.me/ctinow/167998", "content": "https://ift.tt/acRwvpC\nCVE-2023-49778 | Hakan Demiray Sayfa Sayac Plugin up to 2.6 on WordPress deserialization", "creation_timestamp": "2024-01-14T11:11:29.000000Z"}, {"uuid": "c008d509-851b-4b41-9b6e-34c4b7f353b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49771", "type": "seen", "source": "https://t.me/ctinow/166387", "content": "https://ift.tt/ZzCjrNF\nCVE-2023-49771 | Peter Raschendorfer Smart External Link Click Monitor Plugin up to 5.0.2 on WordPress cross site scripting", "creation_timestamp": "2024-01-11T09:26:14.000000Z"}, {"uuid": "35ee7dbc-53ee-415f-ab5d-c216ab78bb5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-49775", "type": "seen", "source": "https://t.me/ctinow/167113", "content": "https://ift.tt/3VO6h8r\nCVE-2023-49775 | Denis Kobozev CSV Importer Plugin up to 0.3.8 on WordPress cross-site request forgery", "creation_timestamp": "2024-01-12T08:11:31.000000Z"}]}