{"vulnerability": "cve-2022-2747", "sightings": [{"uuid": "137aba28-8d77-4ba8-9bed-3ebd466d14ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2747", "type": "seen", "source": "https://t.me/cibsecurity/47937", "content": "\u203c CVE-2022-2747 \u203c\n\nA vulnerability was found in SourceCodester Simple Online Book Store and classified as critical. This issue affects some unknown processing of the file book.php. The manipulation of the argument book_isbn leads to sql injection. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-206015.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-11T12:32:01.000000Z"}, {"uuid": "fdf23b18-642b-4806-9998-b3b5348c33d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27478", "type": "seen", "source": "https://t.me/cibsecurity/41284", "content": "\u203c CVE-2022-27478 \u203c\n\nVictor v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the component admin/profile.php?section=admin.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-22T00:33:06.000000Z"}, {"uuid": "9585cd3d-1163-471a-9e02-9f9f04a3fa4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27473", "type": "seen", "source": "https://t.me/cibsecurity/40656", "content": "\u203c CVE-2022-27473 \u203c\n\nSQL injection vulnerability in Topics Searching feature of Roothub 2.6.0 allows unauthorized attackers to execute arbitrary SQL commands via the \"s\" parameter remotely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:23:20.000000Z"}, {"uuid": "1b662d6c-e610-4229-b324-379b2b511869", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27472", "type": "seen", "source": "https://t.me/cibsecurity/40629", "content": "\u203c CVE-2022-27472 \u203c\n\nSQL injection vulnerability in Topics Counting feature of Roothub 2.6.0 allows unauthorized attackers to execute arbitrary SQL commands via the \"s\" parameter remotely.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:17:08.000000Z"}, {"uuid": "f003487a-da24-4949-becd-20042d68864c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27475", "type": "seen", "source": "https://t.me/cibsecurity/40715", "content": "\u203c CVE-2022-27475 \u203c\n\nCross site scripting (XSS) vulnerability in tramyardg hotel-mgmt-system, allows attackers to execute arbitrary code when when /admin.php is loaded.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-13T16:23:33.000000Z"}, {"uuid": "41734321-80e6-48af-9dd6-d726fff44628", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-27474", "type": "seen", "source": "https://t.me/cibsecurity/40850", "content": "\u203c CVE-2022-27474 \u203c\n\nSuiteCRM v7.11.23 was discovered to allow remote code execution via a crafted payload injected into the FirstName text field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-15T16:19:58.000000Z"}]}