{"vulnerability": "CVE-2022-3949", "sightings": [{"uuid": "8ea7642e-6664-409e-a4e8-3d58676fae08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-3949", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7155", "content": "#exploit\n1. CVE-2022-41352:\nZimbra <9.0.0.p27 - Unauthenticated RCE\nhttps://github.com/Cr4ckC4t/cve-2022-41352-zimbra-rce\n\n2. CVE-2022-3949:\nXSS in Simple Cashiering System\nhttps://github.com/maikroservice/CVE-2022-3949\n\n3. CVE-2022-31898:\nCommand injection for GL-iNet routers with firm. <3.215\nhttps://github.com/gigaryte/cve-2022-31898", "creation_timestamp": "2022-12-21T05:02:22.000000Z"}]}