{"vulnerability": "CVE-2022-4505", "sightings": [{"uuid": "a90af68d-6e97-4078-91d9-5d46bb6e40f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4505", "type": "seen", "source": "https://t.me/cibsecurity/54591", "content": "\u203c CVE-2022-4505 \u203c\n\nImproper Access Control in GitHub repository openemr/openemr prior to 7.0.0.2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-15T07:23:11.000000Z"}, {"uuid": "54c9611f-adad-4196-8de9-61dbd58784dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-45052", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/906", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-45052\n\ud83d\udd39 Description: A Local File Inclusion vulnerability has been found in Axiell Iguana CMS. Due to insufficient neutralisation of user input on the url parameter on the Proxy.type.php endpoint, external users are capable of accessing files on the server.\n\ud83d\udccf Published: 2023-01-04T18:11:20.473Z\n\ud83d\udccf Modified: 2025-01-09T07:56:50.745Z\n\ud83d\udd17 References:\n1. https://csirt.divd.nl/CVE-2022-45052/\n2. https://csirt.divd.nl/DIVD-2022-00064/", "creation_timestamp": "2025-01-09T08:14:31.000000Z"}, {"uuid": "00f2e6df-51e9-4891-b0a1-7222088e95fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-45051", "type": "seen", "source": "https://t.me/cibsecurity/55916", "content": "\u203c CVE-2022-45051 \u203c\n\nA reflected XSS vulnerability has been found in Axiell Iguana CMS, allowing an attacker to execute code in a victim's browser. The module parameter on the Service.template.cls endpoint does not properly neutralise user input, resulting in the vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-04T22:18:18.000000Z"}, {"uuid": "1e70f7a8-66c4-4d8e-8558-10de8be17c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-45052", "type": "seen", "source": "https://t.me/cibsecurity/55918", "content": "\u203c CVE-2022-45052 \u203c\n\nA Local File Inclusion vulnerability has been found in Axiell Iguana CMS. Due to insufficient neutralisation of user input on the url parameter on the imageProxy.type.php endpoint, external users are capable of accessing files on the server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-04T22:18:20.000000Z"}]}