<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://db.gcve.eu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Thu, 16 Jul 2026 19:47:33 +0000</lastBuildDate>
    <item>
      <title>97d45812-7d36-4c09-9d02-403cae506654</title>
      <link>https://db.gcve.eu/sighting/97d45812-7d36-4c09-9d02-403cae506654/export</link>
      <description>{"uuid": "97d45812-7d36-4c09-9d02-403cae506654", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40744", "type": "seen", "source": "https://t.me/ctinow/192572", "content": "https://ift.tt/4IxpmTo\nCVE-2022-40744 | IBM Aspera Faspex 5.0.6 Web UI cross site scripting (XFDB-236441)", "creation_timestamp": "2024-02-24T13:11:34.000000Z"}</description>
      <content:encoded>{"uuid": "97d45812-7d36-4c09-9d02-403cae506654", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40744", "type": "seen", "source": "https://t.me/ctinow/192572", "content": "https://ift.tt/4IxpmTo\nCVE-2022-40744 | IBM Aspera Faspex 5.0.6 Web UI cross site scripting (XFDB-236441)", "creation_timestamp": "2024-02-24T13:11:34.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/97d45812-7d36-4c09-9d02-403cae506654/export</guid>
      <pubDate>Sat, 24 Feb 2024 13:11:34 +0000</pubDate>
    </item>
    <item>
      <title>291cf543-510b-496c-a29c-cc7744412d96</title>
      <link>https://db.gcve.eu/sighting/291cf543-510b-496c-a29c-cc7744412d96/export</link>
      <description>{"uuid": "291cf543-510b-496c-a29c-cc7744412d96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40744", "type": "seen", "source": "https://t.me/ctinow/177918", "content": "https://ift.tt/iPylesj\nCVE-2022-40744", "creation_timestamp": "2024-02-02T05:21:32.000000Z"}</description>
      <content:encoded>{"uuid": "291cf543-510b-496c-a29c-cc7744412d96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40744", "type": "seen", "source": "https://t.me/ctinow/177918", "content": "https://ift.tt/iPylesj\nCVE-2022-40744", "creation_timestamp": "2024-02-02T05:21:32.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/291cf543-510b-496c-a29c-cc7744412d96/export</guid>
      <pubDate>Fri, 02 Feb 2024 05:21:32 +0000</pubDate>
    </item>
    <item>
      <title>8282b040-aba6-479f-ac42-5b022870c45f</title>
      <link>https://db.gcve.eu/sighting/8282b040-aba6-479f-ac42-5b022870c45f/export</link>
      <description>{"uuid": "8282b040-aba6-479f-ac42-5b022870c45f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40743", "type": "seen", "source": "https://t.me/cibsecurity/54848", "content": "\u203c CVE-2022-40743 \u203c\n\nImproper Input Validation vulnerability for the xdebug plugin in Apache Software Foundation Apache Traffic Server can lead to cross site scripting and cache poisoning attacks.This issue affects Apache Traffic Server: 9.0.0 to 9.1.3. Users should upgrade to 9.1.4 or later versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-19T14:25:34.000000Z"}</description>
      <content:encoded>{"uuid": "8282b040-aba6-479f-ac42-5b022870c45f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40743", "type": "seen", "source": "https://t.me/cibsecurity/54848", "content": "\u203c CVE-2022-40743 \u203c\n\nImproper Input Validation vulnerability for the xdebug plugin in Apache Software Foundation Apache Traffic Server can lead to cross site scripting and cache poisoning attacks.This issue affects Apache Traffic Server: 9.0.0 to 9.1.3. Users should upgrade to 9.1.4 or later versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-19T14:25:34.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/8282b040-aba6-479f-ac42-5b022870c45f/export</guid>
      <pubDate>Mon, 19 Dec 2022 14:25:34 +0000</pubDate>
    </item>
    <item>
      <title>04dcd251-f455-4671-9b01-eed0fa91797e</title>
      <link>https://db.gcve.eu/sighting/04dcd251-f455-4671-9b01-eed0fa91797e/export</link>
      <description>{"uuid": "04dcd251-f455-4671-9b01-eed0fa91797e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40746", "type": "seen", "source": "https://t.me/cibsecurity/53273", "content": "\u203c CVE-2022-40746 \u203c\n\nIBM i Access Family 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.0 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability. By placing a specially crafted file in a compromised folder, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 236581.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-21T20:37:27.000000Z"}</description>
      <content:encoded>{"uuid": "04dcd251-f455-4671-9b01-eed0fa91797e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40746", "type": "seen", "source": "https://t.me/cibsecurity/53273", "content": "\u203c CVE-2022-40746 \u203c\n\nIBM i Access Family 1.1.2 through 1.1.4 and 1.1.4.3 through 1.1.9.0 could allow a local authenticated attacker to execute arbitrary code on the system, caused by DLL search order hijacking vulnerability. By placing a specially crafted file in a compromised folder, an attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 236581.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-21T20:37:27.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/04dcd251-f455-4671-9b01-eed0fa91797e/export</guid>
      <pubDate>Mon, 21 Nov 2022 20:37:27 +0000</pubDate>
    </item>
    <item>
      <title>7599db9e-74d2-40fb-ae71-8a158e2d9f2c</title>
      <link>https://db.gcve.eu/sighting/7599db9e-74d2-40fb-ae71-8a158e2d9f2c/export</link>
      <description>{"uuid": "7599db9e-74d2-40fb-ae71-8a158e2d9f2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4074", "type": "seen", "source": "https://t.me/cibsecurity/53218", "content": "\u203c CVE-2022-4074 \u203c\n\nA vulnerability, which was classified as problematic, was found in Show IP Address Plugin. This affects an unknown part of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214041 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-20T16:36:21.000000Z"}</description>
      <content:encoded>{"uuid": "7599db9e-74d2-40fb-ae71-8a158e2d9f2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4074", "type": "seen", "source": "https://t.me/cibsecurity/53218", "content": "\u203c CVE-2022-4074 \u203c\n\nA vulnerability, which was classified as problematic, was found in Show IP Address Plugin. This affects an unknown part of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214041 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-20T16:36:21.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/7599db9e-74d2-40fb-ae71-8a158e2d9f2c/export</guid>
      <pubDate>Sun, 20 Nov 2022 16:36:21 +0000</pubDate>
    </item>
  </channel>
</rss>
