{"vulnerability": "cve-2022-2245", "sightings": [{"uuid": "fb5556c4-b31f-4986-8a97-b2b812edfe1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2245", "type": "seen", "source": "https://t.me/cibsecurity/47311", "content": "\u203c CVE-2022-2245 \u203c\n\nThe Counter Box WordPress plugin before 1.2.1 is lacking CSRF check when activating and deactivating counters, which could allow attackers to make a logged in admin perform such actions via CSRF attacks\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-01T16:16:48.000000Z"}, {"uuid": "3bf84739-c3a1-4d08-8bb0-23cc0e073127", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22457", "type": "seen", "source": "https://t.me/cibsecurity/55203", "content": "\u203c CVE-2022-22457 \u203c\n\nIBM Security Verify Governance, Identity Manager 10.0.1 stores sensitive information including user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 225007.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-23T00:14:08.000000Z"}, {"uuid": "ac8b2168-fa88-465f-8386-f622ddc719eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22455", "type": "seen", "source": "https://t.me/cibsecurity/48291", "content": "\u203c CVE-2022-22455 \u203c\n\nIBM Security Verify Governance Identity Manager 10.0 virtual appliance component performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 224989.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-17T20:40:25.000000Z"}, {"uuid": "52d24de3-94a6-4583-9579-0aa8dc70e926", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22450", "type": "seen", "source": "https://t.me/cibsecurity/46273", "content": "\u203c CVE-2022-22450 \u203c\n\nIBM Security Verify Identity Manager 10.0 could allow a privileged user to upload a malicious file by bypassing extension security in an HTTP request. IBM X-Force ID: 224916.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-14T22:32:51.000000Z"}, {"uuid": "f37722e2-5f42-4275-a3be-e083f4475759", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22453", "type": "seen", "source": "https://t.me/cibsecurity/46277", "content": "\u203c CVE-2022-22453 \u203c\n\nIBM Security Verify Identity Manager 10.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 224919.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-14T22:32:58.000000Z"}, {"uuid": "b802d9ba-8aa0-4239-900b-f9f26668534f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22452", "type": "seen", "source": "https://t.me/cibsecurity/46275", "content": "\u203c CVE-2022-22452 \u203c\n\nIBM Security Verify Identity Manager 10.0 uses an inadequate account lockout setting that could allow a remote attacker to brute force account credentials. IBM X-Force ID: 224918.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-14T22:32:56.000000Z"}, {"uuid": "22b1798f-c735-4468-aab2-2bbb81273ebb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-22454", "type": "seen", "source": "https://t.me/cibsecurity/42268", "content": "\u203c CVE-2022-22454 \u203c\n\nIBM InfoSphere Information Server 11.7 could allow a locally authenticated attacker to execute arbitrary commands on the system by sending a specially crafted request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-10T20:32:50.000000Z"}]}