{"vulnerability": "CVE-2022-2492", "sightings": [{"uuid": "4aea2fee-0d43-449d-b928-8e00f2fa8bc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2492", "type": "seen", "source": "https://t.me/cibsecurity/46639", "content": "\u203c CVE-2022-2492 \u203c\n\nA vulnerability was found in SourceCodester Library Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument RollNo with the input admin' AND (SELECT 2625 FROM (SELECT(SLEEP(5)))MdIL) AND 'KXmq'='KXmq&Password=1231312312 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T16:19:57.000000Z"}, {"uuid": "7a609219-1350-40d6-930d-245848d9d558", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24926", "type": "seen", "source": "https://t.me/cibsecurity/37336", "content": "\u203c CVE-2022-24926 \u203c\n\nImproper input validation vulnerability in SmartTagPlugin prior to version 1.2.15-6 allows privileged attackers to trigger a XSS on a victim's devices.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-11T20:35:05.000000Z"}, {"uuid": "361ca6ea-4302-4a4a-b78f-58ff2305f24c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24927", "type": "seen", "source": "https://t.me/cibsecurity/37340", "content": "\u203c CVE-2022-24927 \u203c\n\nImproper privilege management vulnerability in Samsung Video Player prior to version 7.3.15.30 allows attackers to execute video files without permission.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-11T20:35:11.000000Z"}, {"uuid": "b7b2f1ef-8733-467b-babd-d5b423c920cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-24924", "type": "seen", "source": "https://t.me/cibsecurity/37334", "content": "\u203c CVE-2022-24924 \u203c\n\nAn improper access control in LiveWallpaperService prior to versions 3.0.9.0 allows to create a specific named system directory without a proper permission.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-11T20:35:02.000000Z"}]}