{"vulnerability": "cve-2022-3453", "sightings": [{"uuid": "c4301df5-d407-4190-87f5-3c2cda60b061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-3453", "type": "seen", "source": "https://t.me/cibsecurity/51170", "content": "\u203c CVE-2022-3453 \u203c\n\nA vulnerability was found in SourceCodester Book Store Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /transcation.php. The manipulation of the argument buyer_name leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-210437 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-12T14:53:08.000000Z"}, {"uuid": "7845842d-1a27-4f21-aaca-c97fe84b2ab7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34537", "type": "seen", "source": "https://t.me/cibsecurity/46589", "content": "\u203c CVE-2022-34537 \u203c\n\nDigital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a cross-site scripting (XSS) vulnerability via the component bia_oneshot.cgi.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T00:41:02.000000Z"}, {"uuid": "e03abc9e-6c21-45a3-91ad-148dfb790226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34535", "type": "seen", "source": "https://t.me/cibsecurity/46600", "content": "\u203c CVE-2022-34535 \u203c\n\nDigital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows unauthenticated attackers to view internal paths and scripts via web files.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T00:41:16.000000Z"}, {"uuid": "630e7478-0582-4dcd-b42a-d0cd9c5fa130", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34534", "type": "seen", "source": "https://t.me/cibsecurity/46598", "content": "\u203c CVE-2022-34534 \u203c\n\nDigital Watchdog DW Spectrum Server 4.2.0.32842 allows attackers to access sensitive infromation via a crafted API call.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T00:41:13.000000Z"}, {"uuid": "9b4220e0-43f8-41ca-8839-b1c6cf94536a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34538", "type": "seen", "source": "https://t.me/cibsecurity/46601", "content": "\u203c CVE-2022-34538 \u203c\n\nDigital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/vca/bia/addacph.cgi. This vulnerability is exploitable via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T00:41:17.000000Z"}, {"uuid": "466f9ebf-972a-4424-9782-7e92c140e8de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34530", "type": "seen", "source": "https://t.me/cibsecurity/47380", "content": "\u203c CVE-2022-34530 \u203c\n\nAn issue in the login and reset password functionality of Backdrop CMS v1.22.0 allows attackers to enumerate usernames via password reset requests and distinct responses returned based on usernames.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-02T00:17:23.000000Z"}, {"uuid": "78ca01b9-edde-4c4e-8cb1-b14f69aaceef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34539", "type": "seen", "source": "https://t.me/cibsecurity/46587", "content": "\u203c CVE-2022-34539 \u203c\n\nDigital Watchdog DW MEGApix IP cameras A7.2.2_20211029 was discovered to contain a command injection vulnerability in the component /admin/curltest.cgi. This vulnerability is exploitable via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T00:41:00.000000Z"}, {"uuid": "d48188cd-c28c-40bd-bbeb-a063f37f5852", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-34536", "type": "seen", "source": "https://t.me/cibsecurity/46585", "content": "\u203c CVE-2022-34536 \u203c\n\nDigital Watchdog DW MEGApix IP cameras A7.2.2_20211029 allows attackers to access the core log file and perform session hijacking via a crafted session token.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T00:40:57.000000Z"}]}