{"vulnerability": "CVE-2022-2541", "sightings": [{"uuid": "1513c190-4aba-45f5-9b89-14bc20d08cc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25413", "type": "seen", "source": "https://t.me/cibsecurity/38219", "content": "\u203c CVE-2022-25413 \u203c\n\nMaxsite CMS v108 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_tags at /admin/page_edit/3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:28:39.000000Z"}, {"uuid": "6b33baa4-447a-4777-9757-b668f1ce26ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25411", "type": "seen", "source": "https://t.me/cibsecurity/38228", "content": "\u203c CVE-2022-25411 \u203c\n\nA Remote Code Execution (RCE) vulnerability at /admin/options in Maxsite CMS v180 allows attackers to execute arbitrary code via a crafted PHP file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:28:51.000000Z"}, {"uuid": "84100aa4-aa4a-4c92-af73-7a22a29cfbc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25410", "type": "seen", "source": "https://t.me/cibsecurity/38237", "content": "\u203c CVE-2022-25410 \u203c\n\nMaxsite CMS v180 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the parameter f_file_description at /admin/files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-01T02:29:05.000000Z"}]}