https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Mon, 01 Jun 2026 20:33:00 +0000 https://db.gcve.eu/sighting/be4f41dc-c7cb-4755-b3da-df51786f42d1/export {"uuid": "be4f41dc-c7cb-4755-b3da-df51786f42d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27052", "type": "seen", "source": "https://t.me/cibsecurity/39954", "content": "\u203c CVE-2022-27052 \u203c\n\nFreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows local users to launch processes with elevated privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-01T02:19:03.000000Z"} {"uuid": "be4f41dc-c7cb-4755-b3da-df51786f42d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27052", "type": "seen", "source": "https://t.me/cibsecurity/39954", "content": "\u203c CVE-2022-27052 \u203c\n\nFreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows local users to launch processes with elevated privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-01T02:19:03.000000Z"} https://db.gcve.eu/sighting/be4f41dc-c7cb-4755-b3da-df51786f42d1/export Fri, 01 Apr 2022 02:19:03 +0000 https://db.gcve.eu/sighting/28ab14b6-1c76-4750-b3af-1616118388a5/export {"uuid": "28ab14b6-1c76-4750-b3af-1616118388a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27050", "type": "seen", "source": "https://t.me/cibsecurity/39958", "content": "\u203c CVE-2022-27050 \u203c\n\nBitComet Service for Windows before version 1.8.6 contains an unquoted service path vulnerability which allows attackers to escalate privileges to the system level.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-01T02:19:08.000000Z"} {"uuid": "28ab14b6-1c76-4750-b3af-1616118388a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27050", "type": "seen", "source": "https://t.me/cibsecurity/39958", "content": "\u203c CVE-2022-27050 \u203c\n\nBitComet Service for Windows before version 1.8.6 contains an unquoted service path vulnerability which allows attackers to escalate privileges to the system level.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-01T02:19:08.000000Z"} https://db.gcve.eu/sighting/28ab14b6-1c76-4750-b3af-1616118388a5/export Fri, 01 Apr 2022 02:19:08 +0000 https://db.gcve.eu/sighting/5693c6aa-0d66-4079-80d1-044a0885b214/export {"uuid": "5693c6aa-0d66-4079-80d1-044a0885b214", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27055", "type": "seen", "source": "https://t.me/cibsecurity/41104", "content": "\u203c CVE-2022-27055 \u203c\n\n** DISPUTED ** ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When the web program is installed, a new environment file is created, and the database information is recorded, including the database record password. NOTE: the vendor disputes this because the environment file is in the data directory, which is not intended for access by website visitors (only the statics directory can be accessed by website visitors).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-19T20:24:33.000000Z"} {"uuid": "5693c6aa-0d66-4079-80d1-044a0885b214", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27055", "type": "seen", "source": "https://t.me/cibsecurity/41104", "content": "\u203c CVE-2022-27055 \u203c\n\n** DISPUTED ** ecjia-daojia 1.38.1-20210202629 is vulnerable to information leakage via content/apps/installer/classes/Helper.php. When the web program is installed, a new environment file is created, and the database information is recorded, including the database record password. NOTE: the vendor disputes this because the environment file is in the data directory, which is not intended for access by website visitors (only the statics directory can be accessed by website visitors).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-19T20:24:33.000000Z"} https://db.gcve.eu/sighting/5693c6aa-0d66-4079-80d1-044a0885b214/export Tue, 19 Apr 2022 20:24:33 +0000 https://db.gcve.eu/sighting/ebdc9388-f2e0-4d11-b5ba-c11823b98457/export {"uuid": "ebdc9388-f2e0-4d11-b5ba-c11823b98457", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2705", "type": "seen", "source": "https://t.me/cibsecurity/47715", "content": "\u203c CVE-2022-2705 \u203c\n\nA vulnerability was found in SourceCodester Simple Student Information System. It has been rated as critical. This issue affects some unknown processing of the file admin/departments/manage_department.php. The manipulation of the argument id with the input -5756%27%20UNION%20ALL%20SELECT%20NULL,database(),user(),NULL,NULL,NULL,NULL--%20- leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205829 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-08T16:23:26.000000Z"} {"uuid": "ebdc9388-f2e0-4d11-b5ba-c11823b98457", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2705", "type": "seen", "source": "https://t.me/cibsecurity/47715", "content": "\u203c CVE-2022-2705 \u203c\n\nA vulnerability was found in SourceCodester Simple Student Information System. It has been rated as critical. This issue affects some unknown processing of the file admin/departments/manage_department.php. The manipulation of the argument id with the input -5756%27%20UNION%20ALL%20SELECT%20NULL,database(),user(),NULL,NULL,NULL,NULL--%20- leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-205829 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-08T16:23:26.000000Z"} https://db.gcve.eu/sighting/ebdc9388-f2e0-4d11-b5ba-c11823b98457/export Mon, 08 Aug 2022 16:23:26 +0000