{"vulnerability": "CVE-2022-2239", "sightings": [{"uuid": "d2700b57-be9f-4a35-bd1d-4e3200ffb979", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22399", "type": "seen", "source": "https://t.me/ctinow/200701", "content": "https://ift.tt/7WdaTIU\nCVE-2022-22399", "creation_timestamp": "2024-03-05T21:26:29.000000Z"}, {"uuid": "a1fa723f-356f-44f9-af98-9655d9ff0801", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2239", "type": "seen", "source": "https://t.me/cibsecurity/46903", "content": "\u203c CVE-2022-2239 \u203c\n\nThe Request a Quote WordPress plugin through 2.3.7 does not sanitise and escape some of its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-25T16:33:14.000000Z"}, {"uuid": "86e54211-8718-4606-9548-9d521a6ff687", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22396", "type": "seen", "source": "https://t.me/cibsecurity/43871", "content": "\u203c CVE-2022-22396 \u203c\n\nCredentials are printed in clear text in the IBM Spectrum Protect Plus 10.1.0.0 through 10.1.9.3 virgo log file in certain cases. Credentials could be the remote vSnap, offload targets, or VADP credentials depending on the operation performed. Credentials that are using API key or certificate are not printed. IBM X-Force ID: 222231.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-06T22:30:11.000000Z"}, {"uuid": "ce78315e-c3e7-46f5-8866-3db0f00ccb1e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22394", "type": "seen", "source": "https://t.me/cibsecurity/39315", "content": "\u203c CVE-2022-22394 \u203c\n\nThe IBM Spectrum Protect 8.1.14.000 server could allow a remote attacker to bypass security restrictions, caused by improper enforcement of access controls. By signing in, an attacker could exploit this vulnerability to bypass security and gain unauthorized administrator or node access to the vulnerable server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-21T19:26:19.000000Z"}, {"uuid": "5c7a6da4-8286-4917-8121-f9c3b03217b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22399", "type": "seen", "source": "https://t.me/ctinow/200710", "content": "https://ift.tt/7WdaTIU\nCVE-2022-22399", "creation_timestamp": "2024-03-05T21:26:39.000000Z"}, {"uuid": "0b23d279-7a52-4adf-b461-725356148738", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22390", "type": "seen", "source": "https://t.me/cibsecurity/45102", "content": "\u203c CVE-2022-22390 \u203c\n\nIBM Db2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, 11.1, and 11.5 may be vulnerable to an information disclosure caused by improper privilege management when table function is used. IBM X-Force ID: 221973.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-24T20:31:05.000000Z"}, {"uuid": "fed2d881-40fd-4338-add4-e92209f417de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22392", "type": "seen", "source": "https://t.me/cibsecurity/41393", "content": "\u203c CVE-2022-22392 \u203c\n\nIBM Planning Analytics Local 2.0 could allow an attacker to upload arbitrary executable files which, when executed by an unsuspecting victim could result in code execution. IBM X-Force ID: 222066.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-25T20:36:19.000000Z"}, {"uuid": "9b845599-288c-458f-ad03-fa981270e68d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22391", "type": "seen", "source": "https://t.me/cibsecurity/40805", "content": "\u203c CVE-2022-22391 \u203c\n\nIBM Aspera High-Speed Transfer 4.3.1 and earlier could allow an authenticated user to obtain information from non sensitive operating system files that they should not have access to. IBM X-Force ID: 222059.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-14T22:19:15.000000Z"}, {"uuid": "2f8a1879-12b5-48fa-b0f9-2cb7ba67bac3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22393", "type": "seen", "source": "https://t.me/cibsecurity/42686", "content": "\u203c CVE-2022-22393 \u203c\n\nIBM WebSphere Application Server Liberty 17.0.0.3 through 22.0.0.5 , with the adminCenter-1.0 feature configured, could allow an authenticated user to issue a request to obtain the status of HTTP/HTTPS ports which are accessible by the application server. IBM X-Force ID: 222078.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-15T10:24:23.000000Z"}]}