{"vulnerability": "cve-2023-5194", "sightings": [{"uuid": "d303e793-6c83-475f-b389-08979e8412a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51946", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19034", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-51946\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Multiple reflected cross-site scripting (XSS) vulnerabilities in nasSvr.php in actidata actiNAS-SL-2U-8 3.2.03-SP1 allow remote attackers to inject arbitrary web script or HTML.\n\ud83d\udccf Published: 2024-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-20T18:20:39.391Z\n\ud83d\udd17 References:\n1. http://actidata.com\n2. https://www.actidata.com/index.php/de-de/actinas-plus-sl-2u-8-rdx\n3. https://github.com/saw-your-packet/CVEs/blob/main/CVE-2023-51946/README.md", "creation_timestamp": "2025-06-20T18:42:29.000000Z"}, {"uuid": "bebf54f9-fcb8-4ea2-bf4e-dda9e7d80d8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51947", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19033", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-51947\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Improper access control on nasSvr.php in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to read and modify different types of data without authentication.\n\ud83d\udccf Published: 2024-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-20T18:21:20.579Z\n\ud83d\udd17 References:\n1. https://www.actidata.com/index.php/de-de/actinas-plus-sl-2u-8-rdx\n2. http://actinas-plus-sl-2u-8-rdx.com\n3. https://github.com/saw-your-packet/CVEs/blob/main/CVE-2023-51947/README.md", "creation_timestamp": "2025-06-20T18:42:28.000000Z"}, {"uuid": "14b3204b-f2b0-482b-ab0d-7ca39710db64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51947", "type": "seen", "source": "https://t.me/ctinow/173853", "content": "https://ift.tt/KLJ2U1T\nCVE-2023-51947 Exploit", "creation_timestamp": "2024-01-25T23:16:19.000000Z"}, {"uuid": "5fc29c9a-c9d5-4a87-9ef7-25f7eb154d78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51948", "type": "seen", "source": "https://t.me/ctinow/173852", "content": "https://ift.tt/Tkx4KcQ\nCVE-2023-51948 Exploit", "creation_timestamp": "2024-01-25T23:16:17.000000Z"}, {"uuid": "5ded3d7d-442c-4cdf-8b16-b72731619acd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51946", "type": "seen", "source": "https://t.me/ctinow/173713", "content": "https://ift.tt/AhJq21a\nCVE-2023-51946 Exploit", "creation_timestamp": "2024-01-25T19:16:43.000000Z"}, {"uuid": "ec774e44-9d23-4302-8596-68001376e31d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51949", "type": "seen", "source": "https://t.me/ctinow/167371", "content": "https://ift.tt/DflVI8W\nCVE-2023-51949", "creation_timestamp": "2024-01-12T16:27:28.000000Z"}, {"uuid": "cdc30409-b281-4fec-86ae-2e5246e5e171", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51948", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/19032", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-51948\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A Site-wide directory listing vulnerability in /fm in actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 allows remote attackers to list the files hosted by the web application.\n\ud83d\udccf Published: 2024-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-20T18:22:18.137Z\n\ud83d\udd17 References:\n1. https://www.actidata.com/index.php/de-de/actinas-plus-sl-2u-8-rdx\n2. https://github.com/saw-your-packet/CVEs/blob/main/CVE-2023-51948/README.md", "creation_timestamp": "2025-06-20T18:42:27.000000Z"}, {"uuid": "169abaf4-3054-4cdd-a901-f4a62a8e63e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-5194", "type": "seen", "source": "https://t.me/cibsecurity/71279", "content": "\u203c CVE-2023-5194 \u203c\n\nMattermost fails to properly validate permissions when demoting and deactivating a user allowing for a\u00c2\u00a0system/user manager to demote / deactivate another manager\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-29T14:37:36.000000Z"}, {"uuid": "efb26cf3-ab0f-43d7-be6c-0d4208770e84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51949", "type": "seen", "source": "https://t.me/ctinow/178261", "content": "https://ift.tt/VgBXumj\nCVE-2023-51949 | Verytops Verydows 2.0 role_controller cross-site request forgery", "creation_timestamp": "2024-02-02T20:46:40.000000Z"}, {"uuid": "1c45876c-b85d-440d-9c12-ccefa51b805c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51948", "type": "seen", "source": "https://t.me/ctinow/185418", "content": "https://ift.tt/fUlew1b\nCVE-2023-51948 | actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 /fm information disclosure", "creation_timestamp": "2024-02-15T11:21:20.000000Z"}, {"uuid": "25e2c865-df0e-46d2-acf1-899981b672b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51946", "type": "seen", "source": "https://t.me/ctinow/185415", "content": "https://ift.tt/AuoikLc\nCVE-2023-51946 | actidata actiNAS-SL-2U-8 3.2.03-SP1 nasSvr.php cross site scripting", "creation_timestamp": "2024-02-15T11:21:16.000000Z"}, {"uuid": "0dd1261f-50f8-4674-98c4-fce83cb176ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-51947", "type": "seen", "source": "https://t.me/ctinow/185401", "content": "https://ift.tt/vjdonKH\nCVE-2023-51947 | actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 nasSvr.php access control", "creation_timestamp": "2024-02-15T10:46:30.000000Z"}]}