{"vulnerability": "cve-2022-2695", "sightings": [{"uuid": "1bde962c-c6a5-41ce-a94e-6d186f58c94c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26954", "type": "seen", "source": "https://t.me/cibsecurity/51865", "content": "\u203c CVE-2022-26954 \u203c\n\nMultiple open redirect vulnerabilities in NopCommerce 4.10 through 4.50.1 allow remote attackers to conduct phishing attacks by redirecting users to attacker-controlled web sites via the returnUrl parameter, processed by the (1) ChangePassword function, (2) SignInCustomerAsync function, (3) SuccessfulAuthentication method, or (4) NopRedirectResultExecutor class.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-20T14:21:16.000000Z"}, {"uuid": "6584e050-248c-461a-9a7d-a4a81e5ca6d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26954", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15576", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-26954\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Multiple open redirect vulnerabilities in NopCommerce 4.10 through 4.50.1 allow remote attackers to conduct phishing attacks by redirecting users to attacker-controlled web sites via the returnUrl parameter, processed by the (1) ChangePassword function, (2) SignInCustomerAsync function, (3) SuccessfulAuthentication method, or (4) NopRedirectResultExecutor class.\n\ud83d\udccf Published: 2022-10-20T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-08T18:01:08.995Z\n\ud83d\udd17 References:\n1. https://github.com/nopSolutions/nopCommerce/releases\n2. https://gist.github.com/adeadfed/baea45138b7eb29e09f6505d56b56413", "creation_timestamp": "2025-05-08T18:24:19.000000Z"}, {"uuid": "170f0768-b237-4fc5-b84d-e3fc16512f73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26951", "type": "seen", "source": "https://t.me/cibsecurity/39791", "content": "\u203c CVE-2022-26951 \u203c\n\nArcher 6.x through 6.10 (6.10.0.0) contains a reflected XSS vulnerability. A remote SAML-unauthenticated malicious Archer user could potentially exploit this vulnerability by tricking a victim application user into supplying malicious HTML or JavaScript code to the vulnerable web application; the malicious code is then reflected back to the victim and gets executed by the web browser in the context of the vulnerable web application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T07:12:00.000000Z"}, {"uuid": "0d688bac-b285-49be-b33f-df775a144bda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26950", "type": "seen", "source": "https://t.me/cibsecurity/39793", "content": "\u203c CVE-2022-26950 \u203c\n\nArcher 6.x through 6.9 P2 (6.9.0.2) is affected by an open redirect vulnerability. A remote unprivileged attacker may potentially redirect legitimate users to arbitrary web sites and conduct phishing attacks. The attacker could then steal the victims' credentials and silently authenticate them to the Archer application without the victims realizing an attack occurred.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-30T07:12:05.000000Z"}]}