https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Tue, 26 May 2026 10:48:25 +0000 https://db.gcve.eu/sighting/3f646e3a-40b1-499c-96bc-f3982de03c75/export {"uuid": "3f646e3a-40b1-499c-96bc-f3982de03c75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28477", "type": "seen", "source": "https://t.me/cibsecurity/41608", "content": "\u203c CVE-2022-28477 \u203c\n\nWBCE CMS 1.5.2 is vulnerable to Cross Site Scripting (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-29T00:29:20.000000Z"} {"uuid": "3f646e3a-40b1-499c-96bc-f3982de03c75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28477", "type": "seen", "source": "https://t.me/cibsecurity/41608", "content": "\u203c CVE-2022-28477 \u203c\n\nWBCE CMS 1.5.2 is vulnerable to Cross Site Scripting (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-29T00:29:20.000000Z"} https://db.gcve.eu/sighting/3f646e3a-40b1-499c-96bc-f3982de03c75/export Fri, 29 Apr 2022 00:29:20 +0000 https://db.gcve.eu/sighting/cd7593e7-e8ae-497c-8cf1-f1eed8dbda42/export {"uuid": "cd7593e7-e8ae-497c-8cf1-f1eed8dbda42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28471", "type": "seen", "source": "https://t.me/cibsecurity/41984", "content": "\u203c CVE-2022-28471 \u203c\n\nIn ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. This is due to the incomplete patch for issue 38\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T16:55:00.000000Z"} {"uuid": "cd7593e7-e8ae-497c-8cf1-f1eed8dbda42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28471", "type": "seen", "source": "https://t.me/cibsecurity/41984", "content": "\u203c CVE-2022-28471 \u203c\n\nIn ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. This is due to the incomplete patch for issue 38\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T16:55:00.000000Z"} https://db.gcve.eu/sighting/cd7593e7-e8ae-497c-8cf1-f1eed8dbda42/export Thu, 05 May 2022 16:55:00 +0000 https://db.gcve.eu/sighting/072e00d4-bdfb-441f-9f15-f37eedc8ca35/export {"uuid": "072e00d4-bdfb-441f-9f15-f37eedc8ca35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28479", "type": "seen", "source": "https://t.me/cibsecurity/43898", "content": "\u203c CVE-2022-28479 \u203c\n\nSeedDMS versions 6.0.18 and 5.1.25 and below are vulnerable to stored XSS. An attacker with admin privileges can inject the payload inside the \"Role management\" menu and then trigger the payload by loading the \"Users management\" menu\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T02:30:19.000000Z"} {"uuid": "072e00d4-bdfb-441f-9f15-f37eedc8ca35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28479", "type": "seen", "source": "https://t.me/cibsecurity/43898", "content": "\u203c CVE-2022-28479 \u203c\n\nSeedDMS versions 6.0.18 and 5.1.25 and below are vulnerable to stored XSS. An attacker with admin privileges can inject the payload inside the \"Role management\" menu and then trigger the payload by loading the \"Users management\" menu\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T02:30:19.000000Z"} https://db.gcve.eu/sighting/072e00d4-bdfb-441f-9f15-f37eedc8ca35/export Tue, 07 Jun 2022 02:30:19 +0000 https://db.gcve.eu/sighting/b2178ae2-926c-4a08-9fbd-316d4f282053/export {"uuid": "b2178ae2-926c-4a08-9fbd-316d4f282053", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28478", "type": "seen", "source": "https://t.me/cibsecurity/43902", "content": "\u203c CVE-2022-28478 \u203c\n\nSeedDMS 6.0.17 and 5.1.24 are vulnerable to Directory Traversal. The \"Remove file\" functionality inside the \"Log files management\" menu does not sanitize user input allowing attackers with admin privileges to delete arbitrary files on the remote system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T02:30:23.000000Z"} {"uuid": "b2178ae2-926c-4a08-9fbd-316d4f282053", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28478", "type": "seen", "source": "https://t.me/cibsecurity/43902", "content": "\u203c CVE-2022-28478 \u203c\n\nSeedDMS 6.0.17 and 5.1.24 are vulnerable to Directory Traversal. The \"Remove file\" functionality inside the \"Log files management\" menu does not sanitize user input allowing attackers with admin privileges to delete arbitrary files on the remote system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T02:30:23.000000Z"} https://db.gcve.eu/sighting/b2178ae2-926c-4a08-9fbd-316d4f282053/export Tue, 07 Jun 2022 02:30:23 +0000 https://db.gcve.eu/sighting/0ff06519-cc14-4ad5-ba68-f628d02a0356/export {"uuid": "0ff06519-cc14-4ad5-ba68-f628d02a0356", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2847", "type": "seen", "source": "https://t.me/cibsecurity/48244", "content": "\u203c CVE-2022-2847 \u203c\n\nA vulnerability, which was classified as critical, has been found in SourceCodester Guest Management System. This issue affects some unknown processing of the file /guestmanagement/front.php. The manipulation of the argument rid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206489 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-16T22:39:29.000000Z"} {"uuid": "0ff06519-cc14-4ad5-ba68-f628d02a0356", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2847", "type": "seen", "source": "https://t.me/cibsecurity/48244", "content": "\u203c CVE-2022-2847 \u203c\n\nA vulnerability, which was classified as critical, has been found in SourceCodester Guest Management System. This issue affects some unknown processing of the file /guestmanagement/front.php. The manipulation of the argument rid leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206489 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-16T22:39:29.000000Z"} https://db.gcve.eu/sighting/0ff06519-cc14-4ad5-ba68-f628d02a0356/export Tue, 16 Aug 2022 22:39:29 +0000