{"vulnerability": "cve-2022-2931", "sightings": [{"uuid": "5832b749-9ea8-43e4-a666-16a5283ef040", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-29318", "type": "seen", "source": "https://t.me/cibsecurity/42345", "content": "\u203c CVE-2022-29318 \u203c\n\nAn arbitrary file upload vulnerability in the New Entry module of Car Rental Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-11T16:34:14.000000Z"}, {"uuid": "48c6a5a9-1185-4c8a-adb2-7423b98cebce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-29316", "type": "seen", "source": "https://t.me/cibsecurity/42341", "content": "\u203c CVE-2022-29316 \u203c\n\nComplete Online Job Search System v1.0 was discovered to contain a SQL injection vulnerability via /eris/index.php?q=result&amp;searchfor=advancesearch.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-11T16:34:09.000000Z"}, {"uuid": "31606a06-f6f8-4257-8cb9-31635ced4e60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-29317", "type": "seen", "source": "https://t.me/cibsecurity/42351", "content": "\u203c CVE-2022-29317 \u203c\n\nSimple Bus Ticket Booking System v1.0 was discovered to contain multiple SQL injection vulnerbilities via the username and password parameters at /assets/partials/_handleLogin.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-11T16:34:21.000000Z"}, {"uuid": "a407e54a-7097-4091-938d-c3e84d73370f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-29316", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m3dnrkuyy32j", "content": "", "creation_timestamp": "2025-10-16T21:02:33.674969Z"}, {"uuid": "64024ee1-138b-4bae-8bdb-3b4637dadbad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-29315", "type": "seen", "source": "https://t.me/cibsecurity/41099", "content": "\u203c CVE-2022-29315 \u203c\n\nInvicti Acunetix before 14 allows CSV injection via the Description field on the Add Targets page, if the Export CSV feature is used.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-19T18:23:25.000000Z"}]}