https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 30 May 2026 20:34:44 +0000 https://db.gcve.eu/sighting/61319281-b2d4-45aa-ac2e-583a35bde24b/export {"uuid": "61319281-b2d4-45aa-ac2e-583a35bde24b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23798", "type": "seen", "source": "https://t.me/cibsecurity/39839", "content": "\u203c CVE-2022-23798 \u203c\n\nAn issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:40.000000Z"} {"uuid": "61319281-b2d4-45aa-ac2e-583a35bde24b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23798", "type": "seen", "source": "https://t.me/cibsecurity/39839", "content": "\u203c CVE-2022-23798 \u203c\n\nAn issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. Inadequate validation of URLs could result into an invalid check whether an redirect URL is internal or not.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:12:40.000000Z"} https://db.gcve.eu/sighting/61319281-b2d4-45aa-ac2e-583a35bde24b/export Wed, 30 Mar 2022 20:12:40 +0000 https://db.gcve.eu/sighting/13dd36d2-ab39-4c03-9009-75ce41935f0e/export {"uuid": "13dd36d2-ab39-4c03-9009-75ce41935f0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23799", "type": "seen", "source": "https://t.me/cibsecurity/39847", "content": "\u203c CVE-2022-23799 \u203c\n\nAn issue was discovered in Joomla! 4.0.0 through 4.1.0. Under specific circumstances, JInput pollutes method-specific input bags with $_REQUEST data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:30.000000Z"} {"uuid": "13dd36d2-ab39-4c03-9009-75ce41935f0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23799", "type": "seen", "source": "https://t.me/cibsecurity/39847", "content": "\u203c CVE-2022-23799 \u203c\n\nAn issue was discovered in Joomla! 4.0.0 through 4.1.0. Under specific circumstances, JInput pollutes method-specific input bags with $_REQUEST data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:30.000000Z"} https://db.gcve.eu/sighting/13dd36d2-ab39-4c03-9009-75ce41935f0e/export Wed, 30 Mar 2022 20:18:30 +0000 https://db.gcve.eu/sighting/b802703a-df6d-4432-bf64-218f74f1454f/export {"uuid": "b802703a-df6d-4432-bf64-218f74f1454f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23796", "type": "seen", "source": "https://t.me/cibsecurity/39856", "content": "\u203c CVE-2022-23796 \u203c\n\nAn issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:42.000000Z"} {"uuid": "b802703a-df6d-4432-bf64-218f74f1454f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23796", "type": "seen", "source": "https://t.me/cibsecurity/39856", "content": "\u203c CVE-2022-23796 \u203c\n\nAn issue was discovered in Joomla! 3.7.0 through 3.10.6. Lack of input validation could allow an XSS attack using com_fields.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:42.000000Z"} https://db.gcve.eu/sighting/b802703a-df6d-4432-bf64-218f74f1454f/export Wed, 30 Mar 2022 20:18:42 +0000 https://db.gcve.eu/sighting/66e4bd34-a5b1-47fb-93ee-b989f56763fa/export {"uuid": "66e4bd34-a5b1-47fb-93ee-b989f56763fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23795", "type": "seen", "source": "https://t.me/cibsecurity/39864", "content": "\u203c CVE-2022-23795 \u203c\n\nAn issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. A user row was not bound to a specific authentication mechanism which could under very special circumstances allow an account takeover.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:53.000000Z"} {"uuid": "66e4bd34-a5b1-47fb-93ee-b989f56763fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23795", "type": "seen", "source": "https://t.me/cibsecurity/39864", "content": "\u203c CVE-2022-23795 \u203c\n\nAn issue was discovered in Joomla! 2.5.0 through 3.10.6 & 4.0.0 through 4.1.0. A user row was not bound to a specific authentication mechanism which could under very special circumstances allow an account takeover.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T20:18:53.000000Z"} https://db.gcve.eu/sighting/66e4bd34-a5b1-47fb-93ee-b989f56763fa/export Wed, 30 Mar 2022 20:18:53 +0000 https://db.gcve.eu/sighting/34f0e87e-a427-4281-b912-e34cb83f783b/export {"uuid": "34f0e87e-a427-4281-b912-e34cb83f783b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23797", "type": "seen", "source": "Telegram/_dfsIutV_BngnoSii1jXUSiug3m6zGnL2dk74uHOjq2I", "content": "", "creation_timestamp": "2022-06-08T22:37:39.000000Z"} {"uuid": "34f0e87e-a427-4281-b912-e34cb83f783b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23797", "type": "seen", "source": "Telegram/_dfsIutV_BngnoSii1jXUSiug3m6zGnL2dk74uHOjq2I", "content": "", "creation_timestamp": "2022-06-08T22:37:39.000000Z"} https://db.gcve.eu/sighting/34f0e87e-a427-4281-b912-e34cb83f783b/export Wed, 08 Jun 2022 22:37:39 +0000 https://db.gcve.eu/sighting/8f396b48-8af2-43c6-b9d5-c577c9836948/export {"uuid": "8f396b48-8af2-43c6-b9d5-c577c9836948", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2379", "type": "seen", "source": "https://t.me/cibsecurity/48145", "content": "\u203c CVE-2022-2379 \u203c\n\nThe Easy Student Results WordPress plugin through 2.2.8 lacks authorisation in its REST API, allowing unauthenticated users to retrieve information related to the courses, exams, departments as well as student's grades and PII such as email address, physical address, phone number etc\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-15T14:38:03.000000Z"} {"uuid": "8f396b48-8af2-43c6-b9d5-c577c9836948", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2379", "type": "seen", "source": "https://t.me/cibsecurity/48145", "content": "\u203c CVE-2022-2379 \u203c\n\nThe Easy Student Results WordPress plugin through 2.2.8 lacks authorisation in its REST API, allowing unauthenticated users to retrieve information related to the courses, exams, departments as well as student's grades and PII such as email address, physical address, phone number etc\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-15T14:38:03.000000Z"} https://db.gcve.eu/sighting/8f396b48-8af2-43c6-b9d5-c577c9836948/export Mon, 15 Aug 2022 14:38:03 +0000 https://db.gcve.eu/sighting/58f1a04d-60ac-4a04-8083-c047df31e240/export {"uuid": "58f1a04d-60ac-4a04-8083-c047df31e240", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23790", "type": "seen", "source": "https://t.me/cibsecurity/59938", "content": "\u203c CVE-2022-23790 \u203c\n\nImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Firmanet Software and Technology Customer Relation Manager allows Cross-Site Scripting (XSS).This issue affects Customer Relation Manager: before 2022.03.13.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T12:53:52.000000Z"} {"uuid": "58f1a04d-60ac-4a04-8083-c047df31e240", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23790", "type": "seen", "source": "https://t.me/cibsecurity/59938", "content": "\u203c CVE-2022-23790 \u203c\n\nImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Firmanet Software and Technology Customer Relation Manager allows Cross-Site Scripting (XSS).This issue affects Customer Relation Manager: before 2022.03.13.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T12:53:52.000000Z"} https://db.gcve.eu/sighting/58f1a04d-60ac-4a04-8083-c047df31e240/export Tue, 14 Mar 2023 12:53:52 +0000 https://db.gcve.eu/sighting/b89520f6-7edc-486b-bbbf-16197099d989/export {"uuid": "b89520f6-7edc-486b-bbbf-16197099d989", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23791", "type": "seen", "source": "https://t.me/cibsecurity/59945", "content": "\u203c CVE-2022-23791 \u203c\n\nImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Firmanet Software and Technology Customer Relation Manager allows Cross-Site Scripting (XSS).This issue affects Customer Relation Manager: before 2022.03.13.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T12:54:00.000000Z"} {"uuid": "b89520f6-7edc-486b-bbbf-16197099d989", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23791", "type": "seen", "source": "https://t.me/cibsecurity/59945", "content": "\u203c CVE-2022-23791 \u203c\n\nImproper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Firmanet Software and Technology Customer Relation Manager allows Cross-Site Scripting (XSS).This issue affects Customer Relation Manager: before 2022.03.13.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T12:54:00.000000Z"} https://db.gcve.eu/sighting/b89520f6-7edc-486b-bbbf-16197099d989/export Tue, 14 Mar 2023 12:54:00 +0000 https://db.gcve.eu/sighting/7d49bf6e-294b-4b9f-8593-a1386e9f427b/export {"uuid": "7d49bf6e-294b-4b9f-8593-a1386e9f427b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23797", "type": "seen", "source": "MISP/72776593-904e-4e1c-84ee-51a98432ae8b", "content": "", "creation_timestamp": "2024-11-07T10:07:47.000000Z"} {"uuid": "7d49bf6e-294b-4b9f-8593-a1386e9f427b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23797", "type": "seen", "source": "MISP/72776593-904e-4e1c-84ee-51a98432ae8b", "content": "", "creation_timestamp": "2024-11-07T10:07:47.000000Z"} https://db.gcve.eu/sighting/7d49bf6e-294b-4b9f-8593-a1386e9f427b/export Thu, 07 Nov 2024 10:07:47 +0000 https://db.gcve.eu/sighting/8c36956c-c9cc-4812-828c-86e7a17f67a3/export {"uuid": "8c36956c-c9cc-4812-828c-86e7a17f67a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23793", "type": "seen", "source": "https://t.me/arpsyndicate/4943", "content": "#ExploitObserverAlert\n\nCVE-2022-23793\n\nDESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-23793. An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.\n\nFIRST-EPSS: 0.002000000\nNVD-IS: 3.6\nNVD-ES: 3.9\nARPS-PRIORITY: 0.8713574", "creation_timestamp": "2025-01-21T13:02:45.000000Z"} {"uuid": "8c36956c-c9cc-4812-828c-86e7a17f67a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-23793", "type": "seen", "source": "https://t.me/arpsyndicate/4943", "content": "#ExploitObserverAlert\n\nCVE-2022-23793\n\nDESCRIPTION: Exploit Observer has 12 entries in 4 file formats related to CVE-2022-23793. An issue was discovered in Joomla! 3.0.0 through 3.10.6 & 4.0.0 through 4.1.0. Extracting an specifilcy crafted tar package could write files outside of the intended path.\n\nFIRST-EPSS: 0.002000000\nNVD-IS: 3.6\nNVD-ES: 3.9\nARPS-PRIORITY: 0.8713574", "creation_timestamp": "2025-01-21T13:02:45.000000Z"} https://db.gcve.eu/sighting/8c36956c-c9cc-4812-828c-86e7a17f67a3/export Tue, 21 Jan 2025 13:02:45 +0000