{"vulnerability": "CVE-2022-3149", "sightings": [{"uuid": "4383352a-cd2c-46b0-baa0-3ed003e994b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31497", "type": "seen", "source": "https://t.me/cibsecurity/44019", "content": "\u203c CVE-2022-31497 \u203c\n\nLibreHealth EHR Base 2.0.0 allows interface/main/finder/finder_navigation.php patient XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-08T16:42:53.000000Z"}, {"uuid": "7ebf96cc-2885-4ba0-9d1f-d3ff3a044c27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31499", "type": "seen", "source": "MISP/9f779cbb-9e6b-40ed-bd06-92aeb6a8e437", "content": "", "creation_timestamp": "2023-06-27T12:16:12.000000Z"}, {"uuid": "3174c77b-0ff2-4d2b-8667-0f92603df5ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31491", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lx6f2nnrpu25", "content": "", "creation_timestamp": "2025-08-24T21:02:21.119458Z"}, {"uuid": "51e91be4-f68b-43aa-a562-58be8c9090e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31493", "type": "seen", "source": "https://t.me/cibsecurity/43878", "content": "\u203c CVE-2022-31493 \u203c\n\nLibreHealth EHR Base 2.0.0 allows gacl/admin/acl_admin.php acl_id XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-06T22:30:18.000000Z"}, {"uuid": "8c9670de-f59a-4678-a140-36dcf96a39bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31494", "type": "seen", "source": "https://t.me/cibsecurity/43899", "content": "\u203c CVE-2022-31494 \u203c\n\nLibreHealth EHR Base 2.0.0 allows gacl/admin/acl_admin.php action XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T02:30:20.000000Z"}, {"uuid": "f8ad35e0-8ef7-46a7-846b-faa58714e850", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31492", "type": "seen", "source": "https://t.me/cibsecurity/43892", "content": "\u203c CVE-2022-31492 \u203c\n\nCross Site scripting (XSS) vulnerability inLibreHealth EHR Base 2.0.0 via interface/usergroup/usergroup_admin_add.php Username.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T00:30:18.000000Z"}, {"uuid": "b35faee5-d329-46c2-90f7-f825e716bd2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31498", "type": "seen", "source": "https://t.me/cibsecurity/43891", "content": "\u203c CVE-2022-31498 \u203c\n\nLibreHealth EHR Base 2.0.0 allows interface/orders/patient_match_dialog.php key XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T00:30:17.000000Z"}, {"uuid": "228dc8e7-b874-4aa6-a8c1-ca200fd1665d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31495", "type": "seen", "source": "https://t.me/cibsecurity/43928", "content": "\u203c CVE-2022-31495 \u203c\n\nLibreHealth EHR Base 2.0.0 allows gacl/admin/acl_admin.php return_page XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-07T18:31:01.000000Z"}, {"uuid": "cdcec0f2-6067-43d9-817e-1f3a0013c678", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-3149", "type": "seen", "source": "https://t.me/cibsecurity/51557", "content": "\u203c CVE-2022-3149 \u203c\n\nThe WP Custom Cursors WordPress plugin before 3.0.1 does not have CSRF check in place when creating and editing cursors, which could allow attackers to made a logged in admin perform such actions via CSRF attacks. Furthermore, due to the lack of sanitisation and escaping in some of the cursor options, it could also lead to Stored Cross-Site Scripting\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-17T16:12:59.000000Z"}, {"uuid": "1abe63ab-40ab-4eb9-8a08-d3790afbac7d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31496", "type": "seen", "source": "https://t.me/cibsecurity/44072", "content": "\u203c CVE-2022-31496 \u203c\n\nLibreHealth EHR Base 2.0.0 allows incorrect interface/super/manage_site_files.php access.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-09T07:33:00.000000Z"}, {"uuid": "e6105787-d11e-4a20-ac73-b34c9d3ce55f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31491", "type": "seen", "source": "https://bsky.app/profile/pigondrugs.bsky.social/post/3lsw35ott6i2r", "content": "", "creation_timestamp": "2025-07-01T16:03:01.127062Z"}, {"uuid": "6d8657ac-fec2-4cc8-8fab-d9215e2ab4fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31491", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-182-05", "content": "", "creation_timestamp": "2025-07-01T10:00:00.000000Z"}, {"uuid": "d0493fee-30a7-4d2d-a04b-6ecc8361b4e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31491", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lwzq77lcqr2v", "content": "", "creation_timestamp": "2025-08-23T00:38:26.445380Z"}, {"uuid": "49ac8943-5982-4439-b203-5b6ee98f5c81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2022-31491", "type": "seen", "source": "https://bsky.app/profile/ready2disclose.bsky.social/post/3mhwib2u2j22h", "content": "", "creation_timestamp": "2026-03-26T01:46:37.653044Z"}, {"uuid": "fc4e4496-0268-4605-a8e9-8c035217026c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-3149", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16325", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3149\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The WP Custom Cursors WordPress plugin before 3.0.1 does not have CSRF check in place when creating and editing cursors, which could allow attackers to made a logged in admin perform such actions via CSRF attacks. Furthermore, due to the lack of sanitisation and escaping in some of the cursor options, it could also lead to Stored Cross-Site Scripting\n\ud83d\udccf Published: 2022-10-17T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-14T16:02:18.679Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/4c13a93d-2100-4721-8937-a1205378655f", "creation_timestamp": "2025-05-14T16:33:43.000000Z"}, {"uuid": "ab16b712-9578-4507-82e9-7435e1b3de6e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-31491", "type": "published-proof-of-concept", "source": "Telegram/znB4-XOdj2zO7XoRIW291Bfd7B-PZY583Bp9gcjE51XJa2A", "content": "", "creation_timestamp": "2025-07-03T09:00:05.000000Z"}]}