{"vulnerability": "CVE-2022-3561", "sightings": [{"uuid": "dc6f7620-afb1-43a2-ac2d-25844b272c94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-35612", "type": "seen", "source": "https://t.me/cibsecurity/51366", "content": "\u203c CVE-2022-35612 \u203c\n\nA cross-site scripting (XSS) vulnerability in MQTTRoute v3.3 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the dashboard name text field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T02:28:08.000000Z"}, {"uuid": "773540a3-e1f7-44fb-94ef-9f27e1668f0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-35611", "type": "seen", "source": "https://t.me/cibsecurity/51376", "content": "\u203c CVE-2022-35611 \u203c\n\nA Cross-Site Request Forgery (CSRF) in MQTTRoute v3.3 and below allows attackers to create and remove dashboards.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-14T02:28:20.000000Z"}, {"uuid": "3845d561-e440-4c4a-81dc-03f57f16941c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-35619", "type": "seen", "source": "https://t.me/cibsecurity/47492", "content": "\u203c CVE-2022-35619 \u203c\n\nD-LINK DIR-818LW A1:DIR818L_FW105b01 was discovered to contain a remote code execution (RCE) vulnerability via the function ssdpcgi_main.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-03T18:18:45.000000Z"}, {"uuid": "1cdcf4cb-2496-4ef4-9eb9-2ab2142a14c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-3561", "type": "seen", "source": "https://t.me/cibsecurity/53213", "content": "\u203c CVE-2022-3561 \u203c\n\nCross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-20T07:31:01.000000Z"}, {"uuid": "5671ea38-4d70-4b47-8a77-ff7416f7ef86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-3561", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13910", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3561\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_0, Vector: CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L)\n\ud83d\udd39 Description: Cross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0.\n\ud83d\udccf Published: 2022-11-20T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-29T20:00:14.884Z\n\ud83d\udd17 References:\n1. https://huntr.dev/bounties/7389e6eb-4bce-4b97-999d-d3b70d8cee34\n2. https://github.com/librenms/librenms/commit/d86cbcd96d684e4de8dfa50b4490e4e02782d242", "creation_timestamp": "2025-04-29T20:12:32.000000Z"}]}