Most recent sightings.

Most recent sightings. https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 01 May 2026 05:20:00 +0000 ac217f4d-32fa-4593-9fff-3837bb1feaa1 https://db.gcve.eu/sighting/ac217f4d-32fa-4593-9fff-3837bb1feaa1/export {"uuid": "ac217f4d-32fa-4593-9fff-3837bb1feaa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22122", "type": "seen", "source": "https://t.me/cibsecurity/35433", "content": "\u203c CVE-2022-22122 \u203c\n\nIn Mattermost Focalboard, versions prior to v0.7.5, v0.8.4, v0.9.5, v0.10.1 and v0.11.0-rc1; as used respectively in Mattermost, versions prior to v5.37.6, v5.39.3, v6.0.4, v6.1.1 and v6.2.0, are vulnerable to Insufficient Session Expiration. When a user initiates a logout, their session is not invalidated properly. In addition, user sessions are stored in the browser\u00e2\u20ac\u2122s local storage, which by default does not have an expiration time. This makes it possible for an attacker to steal and reuse the cookies using techniques such as XSS attacks, to completely take over a victim account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-13T20:18:32.000000Z"} {"uuid": "ac217f4d-32fa-4593-9fff-3837bb1feaa1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22122", "type": "seen", "source": "https://t.me/cibsecurity/35433", "content": "\u203c CVE-2022-22122 \u203c\n\nIn Mattermost Focalboard, versions prior to v0.7.5, v0.8.4, v0.9.5, v0.10.1 and v0.11.0-rc1; as used respectively in Mattermost, versions prior to v5.37.6, v5.39.3, v6.0.4, v6.1.1 and v6.2.0, are vulnerable to Insufficient Session Expiration. When a user initiates a logout, their session is not invalidated properly. In addition, user sessions are stored in the browser\u00e2\u20ac\u2122s local storage, which by default does not have an expiration time. This makes it possible for an attacker to steal and reuse the cookies using techniques such as XSS attacks, to completely take over a victim account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-13T20:18:32.000000Z"} https://db.gcve.eu/sighting/ac217f4d-32fa-4593-9fff-3837bb1feaa1/export Thu, 13 Jan 2022 20:18:32 +0000