{"vulnerability": "CVE-2022-2697", "sightings": [{"uuid": "161f8743-7db2-45c0-8604-d6fb85ff8c92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2697", "type": "seen", "source": "https://t.me/cibsecurity/47714", "content": "\u203c CVE-2022-2697 \u203c\n\nA vulnerability was found in SourceCodester Simple E-Learning System. It has been classified as critical. Affected is an unknown function of the file comment_frame.php. The manipulation of the argument post_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-205818 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-08T16:23:24.000000Z"}, {"uuid": "8eb0860a-1ed0-455f-bc19-aa21c0e560b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26975", "type": "seen", "source": "https://t.me/cibsecurity/43716", "content": "\u203c CVE-2022-26975 \u203c\n\nBarco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing log files without authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:38:55.000000Z"}, {"uuid": "2628420b-bc60-4eba-bfd4-3e0dd259c552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26971", "type": "seen", "source": "https://t.me/cibsecurity/43656", "content": "\u203c CVE-2022-26971 \u203c\n\nBarco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. This upload can be executed without authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:25:44.000000Z"}, {"uuid": "055040b5-367c-492a-a5b1-2ac05be931f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26974", "type": "seen", "source": "https://t.me/cibsecurity/43652", "content": "\u203c CVE-2022-26974 \u203c\n\nBarco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a file upload mechanism. Lack of input sanitization in the upload mechanism leads to reflected XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:25:40.000000Z"}, {"uuid": "4959142c-5d47-455c-80a8-d8c13c6b8e0b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26977", "type": "seen", "source": "https://t.me/cibsecurity/43660", "content": "\u203c CVE-2022-26977 \u203c\n\nBarco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. Lack of input sanitization of the upload mechanism is leads to stored XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:25:49.000000Z"}, {"uuid": "5c36e90e-092b-4801-af73-4d28d394c166", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26976", "type": "seen", "source": "https://t.me/cibsecurity/43657", "content": "\u203c CVE-2022-26976 \u203c\n\nBarco Control Room Management Suite web application, which is part of TransForm N before 3.14, is exposing a license file upload mechanism. Lack of input sanitization in the upload mechanism is leads to reflected XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:25:45.000000Z"}]}