https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 26 May 2026 08:36:34 +0000 https://db.gcve.eu/sighting/4d5acde1-5bf6-4e94-8ca6-40e6feaaba1a/export {"uuid": "4d5acde1-5bf6-4e94-8ca6-40e6feaaba1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25405", "type": "seen", "source": "https://t.me/cibsecurity/38011", "content": "\u203c CVE-2022-25405 \u203c\n\nTongda2000 v11.10 was discovered to contain a SQL injection vulnerability in change_box.php via the DELETE_STR parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T18:21:01.000000Z"} {"uuid": "4d5acde1-5bf6-4e94-8ca6-40e6feaaba1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25405", "type": "seen", "source": "https://t.me/cibsecurity/38011", "content": "\u203c CVE-2022-25405 \u203c\n\nTongda2000 v11.10 was discovered to contain a SQL injection vulnerability in change_box.php via the DELETE_STR parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T18:21:01.000000Z"} https://db.gcve.eu/sighting/4d5acde1-5bf6-4e94-8ca6-40e6feaaba1a/export Thu, 24 Feb 2022 18:21:01 +0000 https://db.gcve.eu/sighting/a0abdab4-25fd-4c46-9092-9992d38104b8/export {"uuid": "a0abdab4-25fd-4c46-9092-9992d38104b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25401", "type": "seen", "source": "https://t.me/cibsecurity/38012", "content": "\u203c CVE-2022-25401 \u203c\n\nThe copy function of the file manager in Cuppa CMS v1.0 allows any file to be copied to the current directory, granting attackers read access to arbitrary files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T18:21:03.000000Z"} {"uuid": "a0abdab4-25fd-4c46-9092-9992d38104b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25401", "type": "seen", "source": "https://t.me/cibsecurity/38012", "content": "\u203c CVE-2022-25401 \u203c\n\nThe copy function of the file manager in Cuppa CMS v1.0 allows any file to be copied to the current directory, granting attackers read access to arbitrary files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T18:21:03.000000Z"} https://db.gcve.eu/sighting/a0abdab4-25fd-4c46-9092-9992d38104b8/export Thu, 24 Feb 2022 18:21:03 +0000 https://db.gcve.eu/sighting/0317da9f-3a2f-4fa2-bfae-74b443eb4f25/export {"uuid": "0317da9f-3a2f-4fa2-bfae-74b443eb4f25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25404", "type": "seen", "source": "https://t.me/cibsecurity/38026", "content": "\u203c CVE-2022-25404 \u203c\n\nTongda2000 v11.10 was discovered to contain a SQL injection vulnerability in delete.php via the DELETE_STR parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T18:21:49.000000Z"} {"uuid": "0317da9f-3a2f-4fa2-bfae-74b443eb4f25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25404", "type": "seen", "source": "https://t.me/cibsecurity/38026", "content": "\u203c CVE-2022-25404 \u203c\n\nTongda2000 v11.10 was discovered to contain a SQL injection vulnerability in delete.php via the DELETE_STR parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-24T18:21:49.000000Z"} https://db.gcve.eu/sighting/0317da9f-3a2f-4fa2-bfae-74b443eb4f25/export Thu, 24 Feb 2022 18:21:49 +0000 https://db.gcve.eu/sighting/16a523ed-ebf5-4808-aa53-dcc75d2bcc62/export {"uuid": "16a523ed-ebf5-4808-aa53-dcc75d2bcc62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25409", "type": "seen", "source": "https://t.me/cibsecurity/38220", "content": "\u203c CVE-2022-25409 \u203c\n\nHospital Management System v1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the demail parameter at /admin-panel1.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:28:41.000000Z"} {"uuid": "16a523ed-ebf5-4808-aa53-dcc75d2bcc62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25409", "type": "seen", "source": "https://t.me/cibsecurity/38220", "content": "\u203c CVE-2022-25409 \u203c\n\nHospital Management System v1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the demail parameter at /admin-panel1.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:28:41.000000Z"} https://db.gcve.eu/sighting/16a523ed-ebf5-4808-aa53-dcc75d2bcc62/export Tue, 01 Mar 2022 02:28:41 +0000 https://db.gcve.eu/sighting/2788a148-bade-480c-b6a3-a6ce86a6f724/export {"uuid": "2788a148-bade-480c-b6a3-a6ce86a6f724", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25408", "type": "seen", "source": "https://t.me/cibsecurity/38235", "content": "\u203c CVE-2022-25408 \u203c\n\nHospital Management System v1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the dpassword parameter at /admin-panel1.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:29:00.000000Z"} {"uuid": "2788a148-bade-480c-b6a3-a6ce86a6f724", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25408", "type": "seen", "source": "https://t.me/cibsecurity/38235", "content": "\u203c CVE-2022-25408 \u203c\n\nHospital Management System v1.0 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the dpassword parameter at /admin-panel1.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:29:00.000000Z"} https://db.gcve.eu/sighting/2788a148-bade-480c-b6a3-a6ce86a6f724/export Tue, 01 Mar 2022 02:29:00 +0000 https://db.gcve.eu/sighting/e467a231-b64d-4d46-8e36-bb78049db7c9/export {"uuid": "e467a231-b64d-4d46-8e36-bb78049db7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2540", "type": "seen", "source": "https://t.me/cibsecurity/49367", "content": "\u203c CVE-2022-2540 \u203c\n\nThe Link Optimizer Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 1.4.5. This is due to missing nonce validation on the admin_page function found in the ~/admin.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-06T22:26:18.000000Z"} {"uuid": "e467a231-b64d-4d46-8e36-bb78049db7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2540", "type": "seen", "source": "https://t.me/cibsecurity/49367", "content": "\u203c CVE-2022-2540 \u203c\n\nThe Link Optimizer Lite plugin for WordPress is vulnerable to Cross-Site Request Forgery to Cross-Site Scripting in versions up to, and including 1.4.5. This is due to missing nonce validation on the admin_page function found in the ~/admin.php file. This makes it possible for unauthenticated attackers to modify the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-06T22:26:18.000000Z"} https://db.gcve.eu/sighting/e467a231-b64d-4d46-8e36-bb78049db7c9/export Tue, 06 Sep 2022 22:26:18 +0000