{"vulnerability": "cve-2022-4069", "sightings": [{"uuid": "5c33c07e-7efe-44eb-b58e-b56802e46a0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40696", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18677", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40696\n\ud83d\udd25 CVSS Score: 3.7 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Exposure of Sensitive Information to an Unauthorized Actor vulnerability in WP Engine Advanced Custom Fields (ACF).This issue affects Advanced Custom Fields (ACF): from 3.1.1 through 6.0.2.\n\n\n\ud83d\udccf Published: 2024-01-08T22:02:53.269Z\n\ud83d\udccf Modified: 2025-06-17T20:29:15.877Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/vulnerability/advanced-custom-fields/wordpress-advanced-custom-fields-plugin-3-1-1-6-0-2-custom-field-value-exposure?_s_id=cve", "creation_timestamp": "2025-06-17T20:40:13.000000Z"}, {"uuid": "4ff8df64-9242-4bd5-9374-587a84634cd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40693", "type": "seen", "source": "https://t.me/cibsecurity/57681", "content": "\u203c CVE-2022-40693 \u203c\n\nA cleartext transmission vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted network sniffing can lead to a disclosure of sensitive information. An attacker can sniff network traffic to trigger this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-07T20:24:00.000000Z"}, {"uuid": "99ea5f10-5c3c-4765-943d-c277a4f5f370", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40698", "type": "seen", "source": "https://t.me/cibsecurity/53196", "content": "\u203c CVE-2022-40698 \u203c\n\nAuth. (subscriber+) Cross-Site Scripting (XSS) vulnerability in Quiz And Survey Master plugin &lt;= 7.3.10 on WordPress.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-19T02:43:42.000000Z"}, {"uuid": "09ec1763-ed1f-4245-a8db-fcde76fd1a48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40696", "type": "seen", "source": "https://t.me/ctinow/173786", "content": "https://ift.tt/KEgNcYV\nCVE-2022-40696 | WP Engine Advanced Custom Fields Plugin up to 6.0.2 on WordPress information disclosure", "creation_timestamp": "2024-01-25T20:46:56.000000Z"}, {"uuid": "6d488bc7-0cda-46ea-8ec9-39994622381c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40692", "type": "seen", "source": "https://t.me/cibsecurity/57425", "content": "\u203c CVE-2022-40692 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in WP Sunshine Sunshine Photo Cart plugin &lt;= 2.9.13 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-03T00:15:17.000000Z"}, {"uuid": "8b824fdc-da77-4af8-bfc0-8889eb3b9b5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40691", "type": "seen", "source": "https://t.me/cibsecurity/57683", "content": "\u203c CVE-2022-40691 \u203c\n\nAn information disclosure vulnerability exists in the web application functionality of Moxa SDS-3008 Series Industrial Ethernet Switch 2.1. A specially-crafted HTTP request can lead to a disclosure of sensitive information. An attacker can send an HTTP request to trigger this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-07T20:24:03.000000Z"}, {"uuid": "8df41eea-c2a8-4a57-8528-d9746783bfbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40697", "type": "seen", "source": "https://t.me/cibsecurity/56721", "content": "\u203c CVE-2022-40697 \u203c\n\nAuth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in 3com \u00e2\u20ac\u201c Asesor de Cookies para normativa espa\u00c3\u00b1ola plugin &lt;= 3.4.3 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-19T20:22:09.000000Z"}, {"uuid": "c871bc0a-0a90-4385-bba0-4c8cad381db8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40696", "type": "seen", "source": "https://t.me/ctinow/164714", "content": "https://ift.tt/mR3cQFI\nCVE-2022-40696", "creation_timestamp": "2024-01-08T23:27:35.000000Z"}, {"uuid": "ccc50713-9af0-4e28-8894-ab7101bd11ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40699", "type": "seen", "source": "https://t.me/cibsecurity/60114", "content": "\u203c CVE-2022-40699 \u203c\n\nCross-Site Scripting (XSS) vulnerability in Dario Curvino Yasr \u00e2\u20ac\u201c Yet Another Stars Rating plugin &lt;= 3.1.2 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-16T11:30:31.000000Z"}, {"uuid": "74b0baa5-43d9-419f-9552-5f52ea56d966", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4069", "type": "seen", "source": "https://t.me/cibsecurity/53209", "content": "\u203c CVE-2022-4069 \u203c\n\nCross-site Scripting (XSS) - Generic in GitHub repository librenms/librenms prior to 22.10.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-20T07:30:55.000000Z"}, {"uuid": "32736677-18ab-4d97-99f6-0bfa9ee06244", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40690", "type": "seen", "source": "https://t.me/cibsecurity/51989", "content": "\u203c CVE-2022-40690 \u203c\n\nCross-site scripting vulnerability in BookStack versions prior to v22.09 allows a remote authenticated attacker to inject an arbitrary script.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-24T18:26:04.000000Z"}]}