{"vulnerability": "cve-2022-2808", "sightings": [{"uuid": "0b58dc8b-7bc0-4ee1-98e1-0fa39ca9c784", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28082", "type": "seen", "source": "https://t.me/cibsecurity/41925", "content": "\u203c CVE-2022-28082 \u203c\n\nTenda AX12 v22.03.01.21_CN was discovered to contain a stack overflow via the list parameter at /goform/SetNetControlList.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-04T18:35:22.000000Z"}, {"uuid": "daf3a4fc-dbf1-42dc-9827-1af5e942d02c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28085", "type": "seen", "source": "https://t.me/cibsecurity/41475", "content": "\u203c CVE-2022-28085 \u203c\n\nA flaw was found in htmldoc commit 31f7804. A heap buffer overflow in the function pdf_write_names in ps-pdf.cxx may lead to arbitrary code execution and Denial of Service (DoS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-27T07:13:01.000000Z"}, {"uuid": "3c37cec4-7895-4e78-947e-808e5dde5ee9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28085", "type": "seen", "source": "Telegram/jJr3WjbatZGMz7GK2-9CGBKehMVDLVif00FliBlG5ZBko9Nc", "content": "", "creation_timestamp": "2025-02-06T02:44:20.000000Z"}, {"uuid": "d48b55b7-3e31-40d8-9282-2824ec492b35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-2808", "type": "seen", "source": "https://t.me/cibsecurity/53796", "content": "\u203c CVE-2022-2808 \u203c\n\nAlgan Yaz\u00c3\u201e\u00c2\u00b1l\u00c3\u201e\u00c2\u00b1m Prens Student Information System product has an authenticated Insecure Direct Object Reference (IDOR) vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-02T14:36:47.000000Z"}, {"uuid": "a897120a-5df9-4be9-b5a1-03a9bb47f804", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28081", "type": "seen", "source": "https://t.me/cibsecurity/41908", "content": "\u203c CVE-2022-28081 \u203c\n\nA reflected cross-site scripting (XSS) vulnerability in the component Query.php of arPHP v3.6.0 allows attackers to execute arbitrary web scripts.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-04T18:35:00.000000Z"}, {"uuid": "2d365304-a0c0-46da-ade2-242387e9fa46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-28080", "type": "seen", "source": "https://t.me/cibsecurity/42029", "content": "\u203c CVE-2022-28080 \u203c\n\nRoyal Event Management System v1.0 was discovered to contain a SQL injection vulnerability via the todate parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T20:42:50.000000Z"}]}