{"vulnerability": "CVE-2020-2215", "sightings": [{"uuid": "a2139c20-8ca2-4f8a-9aa2-219433527698", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-22159", "type": "seen", "source": "https://t.me/cibsecurity/66940", "content": "\u203c CVE-2020-22159 \u203c\n\nEVERTZ devices 3080IPX exe-guest-v1.2-r26125, 7801FC 1.3 Build 27, and 7890IXG V494 are vulnerable to Arbitrary File Upload, allowing an authenticated attacker to upload a webshell or overwrite any critical system files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-18T22:31:14.000000Z"}, {"uuid": "9e98e2cb-4578-4aaf-ad9a-7216509753b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-22152", "type": "seen", "source": "https://t.me/cibsecurity/65882", "content": "\u203c CVE-2020-22152 \u203c\n\nCross Site Scripting vulnerability in daylight studio FUEL- CMS v.1.4.6 allows a remote attacker to execute arbitrary code via the page title, meta description and meta keywords of the pages function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-04T00:22:49.000000Z"}, {"uuid": "c908a70a-2533-41fe-9c19-ffdaeb36ce60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-22151", "type": "seen", "source": "https://t.me/cibsecurity/65881", "content": "\u203c CVE-2020-22151 \u203c\n\nPermissions vulnerability in Fuel-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted zip file to the assests parameter of the upload function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-04T00:22:48.000000Z"}, {"uuid": "a4c1caa3-fcd1-4f29-81de-e2a771695a2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-22153", "type": "seen", "source": "https://t.me/cibsecurity/65880", "content": "\u203c CVE-2020-22153 \u203c\n\nFile Upload vulnerability in FUEL-CMS v.1.4.6 allows a remote attacker to execute arbitrary code via a crafted .php file to the upload parameter in the navigation function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-04T00:22:47.000000Z"}, {"uuid": "c601e383-3f87-4d15-b185-24dab937f82b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-22150", "type": "seen", "source": "https://t.me/cibsecurity/26355", "content": "\u203c CVE-2020-22150 \u203c\n\nA cross site scripting (XSS) vulnerability in /admin.php?page=permalinks of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-21T20:35:06.000000Z"}]}