{"vulnerability": "cve-2022-2698", "sightings": [{"uuid": "7388024a-bded-4be1-99e2-418351d60311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2698", "type": "seen", "source": "https://t.me/cibsecurity/47723", "content": "\u203c CVE-2022-2698 \u203c\n\nA vulnerability was found in SourceCodester Simple E-Learning System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument searchPost leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-205819.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-08T16:23:35.000000Z"}, {"uuid": "e55cbce8-6509-484f-a262-0708ea466974", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26988", "type": "seen", "source": "https://t.me/cibsecurity/42257", "content": "\u203c CVE-2022-26988 \u203c\n\nTP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MntAte` function. Local users could get remote code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-10T18:34:30.000000Z"}, {"uuid": "9a6a8b6f-bdfe-4f5b-b7bf-a027fae79360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26986", "type": "seen", "source": "https://t.me/cibsecurity/40165", "content": "\u203c CVE-2022-26986 \u203c\n\nSQL Injection in ImpressCMS 1.4.3 and earlier allows remote attackers to inject into the code in unintended way, this allows an attacker to read and modify the sensitive information from the database used by the application. If misconfigured, an attacker can even upload a malicious web shell to compromise the entire system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-05T18:27:56.000000Z"}, {"uuid": "8968f3be-2f55-43a7-83ce-b50e0c8c3c06", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26987", "type": "seen", "source": "https://t.me/cibsecurity/42243", "content": "\u203c CVE-2022-26987 \u203c\n\nTP-Link TL-WDR7660 2.0.30, Mercury D196G 20200109_2.0.4, and Fast FAC1900R 20190827_2.0.2 routers have a stack overflow issue in `MmtAtePrase` function. Local users could get remote code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-10T18:34:08.000000Z"}, {"uuid": "1351ef3a-ee1b-4601-b044-7025b15fba4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26982", "type": "exploited", "source": "https://www.exploit-db.com/exploits/51057", "content": "", "creation_timestamp": "2023-03-25T00:00:00.000000Z"}, {"uuid": "c5bdd38e-5b86-4dae-b47c-678dd91b7b4b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26982", "type": "seen", "source": "https://t.me/cibsecurity/40164", "content": "\u203c CVE-2022-26982 \u203c\n\nSimpleMachinesForum 2.1.1 and earlier allows remote authenticated administrators to execute arbitrary code by inserting a vulnerable php code because the themes can be modified by an administrator.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-05T18:27:55.000000Z"}, {"uuid": "5dcdd6f0-cfda-41ce-b858-1377ddf144af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-26980", "type": "seen", "source": "https://t.me/cibsecurity/39656", "content": "\u203c CVE-2022-26980 \u203c\n\nTeampass 2.1.26 allows reflected XSS via the index.php PATH_INFO.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-28T22:41:42.000000Z"}]}