{"vulnerability": "cve-2022-2550", "sightings": [{"uuid": "924f4c8b-8a25-48b3-a373-4669bfd8ddf9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2550", "type": "seen", "source": "https://t.me/cibsecurity/47099", "content": "\u203c CVE-2022-2550 \u203c\n\nOS Command Injection in GitHub repository hestiacp/hestiacp prior to 1.6.5.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-27T18:49:56.000000Z"}, {"uuid": "21c573ce-6300-433a-8173-4e6ef3ecc98f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25508", "type": "seen", "source": "https://t.me/cibsecurity/38759", "content": "\u203c CVE-2022-25508 \u203c\n\nAn access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated attackers to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-11T02:14:11.000000Z"}, {"uuid": "0d562f3c-e552-4bda-ab85-54cfa49afec8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25506", "type": "seen", "source": "https://t.me/cibsecurity/38757", "content": "\u203c CVE-2022-25506 \u203c\n\nFreeTAKServer-UI v1.9.8 was discovered to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-11T02:14:09.000000Z"}, {"uuid": "7064cdc7-dd3b-4b5a-9e2f-232b482fb848", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-25507", "type": "seen", "source": "https://t.me/cibsecurity/38755", "content": "\u203c CVE-2022-25507 \u203c\n\nFreeTAKServer-UI v1.9.8 was discovered to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-11T02:14:07.000000Z"}]}