{"vulnerability": "cve-2023-7183", "sightings": [{"uuid": "9df242ed-4a8b-4c33-b34c-0a12c501229e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-7183", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12329", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2023-7183\n\ud83d\udd25 CVSS Score: 5.5 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)\n\ud83d\udd39 Description: A vulnerability has been found in 7-card Fakabao up to 1.0_build20230805 and classified as critical. Affected by this vulnerability is an unknown functionality of the file shop/alipay_notify.php. The manipulation of the argument out_trade_no leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier VDB-249385 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.\n\ud83d\udccf Published: 2023-12-31T10:31:03.773Z\n\ud83d\udccf Modified: 2025-04-17T19:48:53.584Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.249385\n2. https://vuldb.com/?ctiid.249385\n3. https://note.zhaoj.in/share/NjPfD9xxhVRr", "creation_timestamp": "2025-04-17T19:58:01.000000Z"}, {"uuid": "e6db47af-ac45-47b8-9fb0-e9ed4a912328", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-7183", "type": "seen", "source": "https://t.me/ctinow/161070", "content": "https://ift.tt/9eXo4ty\nCVE-2023-7183", "creation_timestamp": "2023-12-31T12:26:30.000000Z"}, {"uuid": "4cace422-9558-4752-bd17-53f75b9e06cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-7183", "type": "seen", "source": "https://t.me/ctinow/171017", "content": "https://ift.tt/Uge0lVu\nCVE-2023-7183 | 7-card Fakabao up to 1.0_build20230805 shop/alipay_notify.php out_trade_no sql injection", "creation_timestamp": "2024-01-22T08:06:46.000000Z"}, {"uuid": "8b8f02e0-3a40-4292-9fa7-f3e7b312838c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2023-7183", "type": "seen", "source": "https://t.me/cibsecurity/74065", "content": "\u203c\ufe0fCVE-2023-7183\u203c\ufe0f\n\nA vulnerability has been found in 7card Fakabao up to 1.0build20230805 and classified as critical. Affected by this vulnerability is an unknown functionality of the file shopalipaynotify.php. The manipulation of the argument outtradeno leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier VDB249385 was assigned to this vulnerability. NOTE The vendor was contacted early about this disclosure but did not respond in any way.\n\n\ud83d\udcd6 Read more\n\nVia \"National Vulnerability Database\"", "creation_timestamp": "2024-01-01T01:31:49.000000Z"}]}