{"vulnerability": "CVE-2022-4787", "sightings": [{"uuid": "b7ec22c3-c70c-42e1-bcc2-2c2e021d4968", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47870", "type": "seen", "source": "Telegram/I6Z8WZAGDswYIk6hrxMYEfOF_mOIOh3QmttugiLykeovJuge", "content": "", "creation_timestamp": "2025-02-14T21:09:18.000000Z"}, {"uuid": "a2e507d8-f8e4-4a56-83ca-dd68fa264e96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47879", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2923", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-47879\n\ud83d\udd39 Description: A Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods.\n\ud83d\udccf Published: 2023-05-12T00:00:00.000Z\n\ud83d\udccf Modified: 2025-01-24T15:43:59.792Z\n\ud83d\udd17 References:\n1. http://jedox.com\n2. https://docs.syslifters.com/assets/vulnerability-disclosure/Vulnerability-Disclosure-Jedox-Jedox-04-2023.pdf", "creation_timestamp": "2025-01-24T16:04:44.000000Z"}, {"uuid": "d404a432-05e6-4f16-a2cd-f9ac6c64d827", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47877", "type": "seen", "source": "https://t.me/cibsecurity/63176", "content": "\u203c CVE-2022-47877 \u203c\n\nA Stored cross-site scripting vulnerability in Jedox 2020.2.5 allows remote, authenticated users to inject arbitrary web script or HTML in the Logs page via the log module 'log'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-03T00:30:26.000000Z"}, {"uuid": "4e948165-9e8e-4b1b-8168-0a0e1ce788c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47876", "type": "seen", "source": "https://t.me/cibsecurity/63190", "content": "\u203c CVE-2022-47876 \u203c\n\nThe integrator in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to create Jobs to execute arbitrary code via Groovy-scripts.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-03T00:30:42.000000Z"}, {"uuid": "0e2ccc60-5e00-4ce5-bf31-2905104993e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47875", "type": "seen", "source": "https://t.me/cibsecurity/63188", "content": "\u203c CVE-2022-47875 \u203c\n\nA Directory Traversal vulnerability in /be/erpc.php in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-03T00:30:40.000000Z"}, {"uuid": "b19abb8e-13b4-4cf9-9d84-860478f37d9a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47874", "type": "seen", "source": "https://t.me/cibsecurity/63178", "content": "\u203c CVE-2022-47874 \u203c\n\nImproper Access Control in /tc/rpc in Jedox GmbH Jedox 2020.2.5 allows remote authenticated users to view details of database connections via class 'com.jedox.etl.mngr.Connections' and method 'getGlobalConnection'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-03T00:30:28.000000Z"}, {"uuid": "28e659b1-78a7-4fd6-b32f-e2901afceed4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47878", "type": "seen", "source": "https://t.me/cibsecurity/63174", "content": "\u203c CVE-2022-47878 \u203c\n\nIncorrect input validation for the default-storage-path in the settings page in Jedox 2020.2.5 allows remote, authenticated users to specify the location as Webroot directory. Consecutive file uploads can lead to the execution of arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-03T00:30:24.000000Z"}, {"uuid": "12d12334-ea38-4230-991b-152a74c0087f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47872", "type": "seen", "source": "https://t.me/cibsecurity/57359", "content": "\u203c CVE-2022-47872 \u203c\n\nmaccms10 2021.1000.2000 is vulnerable to Server-side request forgery (SSRF).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-02T00:16:34.000000Z"}, {"uuid": "968ff2c8-a373-4782-8f29-b26ce00e19a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47870", "type": "seen", "source": "https://t.me/cibsecurity/61382", "content": "\u203c CVE-2022-47870 \u203c\n\nA Cross Site Scripting (XSS) vulnerability in the web SQL monitor login page in Redgate SQL Monitor 12.1.31.893 allows remote attackers to inject arbitrary web Script or HTML via the returnUrl parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-04T16:30:34.000000Z"}, {"uuid": "f0a53b6d-190d-4bf7-a259-a99ff325abc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47879", "type": "seen", "source": "https://t.me/cibsecurity/64031", "content": "\u203c CVE-2022-47879 \u203c\n\nA Remote Code Execution (RCE) vulnerability in /be/rpc.php in Jedox 2020.2.5 allows remote authenticated users to load arbitrary PHP classes from the 'rtn' directory and execute its methods.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-12T18:27:20.000000Z"}]}