{"vulnerability": "cve-2022-2804", "sightings": [{"uuid": "a5f50d64-f878-4379-8f26-0f61565ddaba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2804", "type": "seen", "source": "https://t.me/cibsecurity/48123", "content": "\u203c CVE-2022-2804 \u203c\n\nA vulnerability was found in SourceCodester Zoo Management System. It has been classified as critical. Affected is an unknown function of the file /pages/apply_vacancy.php. The manipulation of the argument filename leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-206250 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-13T00:34:05.000000Z"}, {"uuid": "e94c0d52-88d4-476a-aef0-e6ec9ffb9a3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28042", "type": "seen", "source": "https://t.me/cibsecurity/40867", "content": "\u203c CVE-2022-28042 \u203c\n\nstb_image.h v2.27 was discovered to contain an heap-based use-after-free via the function stbi__jpeg_huff_decode.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-15T18:20:29.000000Z"}, {"uuid": "d858af4b-48f6-4e77-a6b6-0aa6203aabc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28044", "type": "seen", "source": "https://t.me/cibsecurity/40866", "content": "\u203c CVE-2022-28044 \u203c\n\nIrzip v0.640 was discovered to contain a heap memory corruption via the component lrzip.c:initialise_control.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-15T18:20:28.000000Z"}]}