{"vulnerability": "cve-2022-4070", "sightings": [{"uuid": "8ca9bddc-5af4-443f-99b1-5cf3f5d0cc4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185494", "content": "https://ift.tt/TP4JQd2\nCVE-2022-40700 | Admin CSS MU Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T13:21:48.000000Z"}, {"uuid": "8fda58e6-dc40-4731-b876-103bbc555035", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185493", "content": "https://ift.tt/SdOGMw9\nCVE-2022-40700 | AMP Toolbox Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T13:21:47.000000Z"}, {"uuid": "ce6176bd-22d5-4af8-9734-5442a797e836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185492", "content": "https://ift.tt/FK3pDbm\nCVE-2022-40700 | Confirm Data Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T13:21:45.000000Z"}, {"uuid": "3124ea26-1fa3-4b1b-a2eb-265db2c5fd2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185435", "content": "https://ift.tt/v8QE6ae\nCVE-2022-40700 | ArcStone Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T11:51:06.000000Z"}, {"uuid": "52d5a70d-93d7-4034-ac1d-50b01d201e9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185446", "content": "https://ift.tt/J3erGSV\nCVE-2022-40700 | Theme Minifier Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:17:10.000000Z"}, {"uuid": "3f4b2f65-46a3-4b8e-85d3-07490e7e7c51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185447", "content": "https://ift.tt/qvESj1T\nCVE-2022-40700 | Styles Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:17:11.000000Z"}, {"uuid": "cc3d9bd3-303a-4bcd-8bc2-fdd333ffebac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185445", "content": "https://ift.tt/tSuQqPR\nCVE-2022-40700 | WooSupply Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:17:09.000000Z"}, {"uuid": "9b3e30d0-91d7-4c9d-bc4f-546b2ba4bea6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185469", "content": "https://ift.tt/M7fBeCQ\nCVE-2022-40700 | Page Builder Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:51:10.000000Z"}, {"uuid": "9ed2f1c3-021b-4357-a58f-75440f471a09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185472", "content": "https://ift.tt/TqwKhPU\nCVE-2022-40700 | CSS Adder Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:51:14.000000Z"}, {"uuid": "ec5c89d4-6c1b-4915-9a1c-ce353112f58e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185471", "content": "https://ift.tt/ecFiAs7\nCVE-2022-40700 | Custom Login Admin Front-end CSS Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:51:13.000000Z"}, {"uuid": "e675cbec-ce9f-4908-83b6-0bf2931d9381", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185470", "content": "https://ift.tt/Bj0gpO9\nCVE-2022-40700 | PHPFreeChat Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:51:12.000000Z"}, {"uuid": "d378b1ca-13ce-4000-bd6e-51223faa742d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185433", "content": "https://ift.tt/9PT23HU\nCVE-2022-40700 | Montonio for WooCommerce Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T11:51:04.000000Z"}, {"uuid": "ff266cf5-a25f-4bb3-84b2-8085b4fd99b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185444", "content": "https://ift.tt/zMj497X\nCVE-2022-40700 | WooVIP Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:17:08.000000Z"}, {"uuid": "43426ca4-dabe-4410-aeab-71343c1d8dc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40700", "type": "seen", "source": "https://t.me/ctinow/185443", "content": "https://ift.tt/2M734O8\nCVE-2022-40700 | WooVirtualWallet Plugin on WordPress server-side request forgery", "creation_timestamp": "2024-02-15T12:17:06.000000Z"}, {"uuid": "82d3a84f-9375-4171-b96b-c0883c514489", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40702", "type": "seen", "source": "https://t.me/ctinow/182657", "content": "https://ift.tt/sol3JPS\nCVE-2022-40702 | Zorem Advanced Local Pickup for WooCommerce Plugin up to 1.5.2 on WordPress authorization", "creation_timestamp": "2024-02-10T23:16:44.000000Z"}, {"uuid": "da22a038-5a37-4774-a0fc-c0d28a589fd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40702", "type": "seen", "source": "https://t.me/ctinow/169395", "content": "https://ift.tt/tjYzF2e\nCVE-2022-40702", "creation_timestamp": "2024-01-17T18:26:51.000000Z"}, {"uuid": "24807c34-f539-4102-9dab-47d13e9ef6be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40704", "type": "seen", "source": "https://t.me/cibsecurity/56611", "content": "\u203c CVE-2022-40704 \u203c\n\nA XSS vulnerability was found in phoromatic_r_add_test_details.php in phoronix-test-suite.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-17T22:15:28.000000Z"}, {"uuid": "a68a48ff-fab7-4385-bd67-188671670684", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/cibsecurity/50639", "content": "\u203c CVE-2022-40709 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707 and 40708.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:47.000000Z"}, {"uuid": "97c0b895-0e88-4da3-a8d4-acd714a410b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/cibsecurity/50630", "content": "\u203c CVE-2022-40707 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40708.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:35.000000Z"}, {"uuid": "47e64192-16ef-4f43-8fdd-39fd9a1e7f85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40708", "type": "seen", "source": "https://t.me/cibsecurity/50630", "content": "\u203c CVE-2022-40707 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40708.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:35.000000Z"}, {"uuid": "2df5468d-c414-4a3c-b742-a881aaeb45b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/cibsecurity/50634", "content": "\u203c CVE-2022-40708 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:38.000000Z"}, {"uuid": "8e0db330-51c2-4f04-956d-bb74db63c959", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40708", "type": "seen", "source": "https://t.me/cibsecurity/50634", "content": "\u203c CVE-2022-40708 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:38.000000Z"}, {"uuid": "b24d40f2-b1e6-4c99-9fa0-a4d701b140e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40708", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17079", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40708\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.\n\ud83d\udccf Published: 2022-09-28T21:10:23.000Z\n\ud83d\udccf Modified: 2025-05-20T20:27:37.351Z\n\ud83d\udd17 References:\n1. https://success.trendmicro.com/solution/000291590\n2. https://www.zerodayinitiative.com/advisories/ZDI-22-1298/", "creation_timestamp": "2025-05-20T20:41:12.000000Z"}, {"uuid": "ae26d6c5-f814-418a-a4a1-4e35a2b4c134", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40707", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17079", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40708\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707.\n\ud83d\udccf Published: 2022-09-28T21:10:23.000Z\n\ud83d\udccf Modified: 2025-05-20T20:27:37.351Z\n\ud83d\udd17 References:\n1. https://success.trendmicro.com/solution/000291590\n2. https://www.zerodayinitiative.com/advisories/ZDI-22-1298/", "creation_timestamp": "2025-05-20T20:41:12.000000Z"}, {"uuid": "12453028-ee48-49bb-867f-7d71e2620547", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4070", "type": "seen", "source": "https://t.me/cibsecurity/53210", "content": "\u203c CVE-2022-4070 \u203c\n\nInsufficient Session Expiration in GitHub repository librenms/librenms prior to 22.10.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-20T07:30:56.000000Z"}, {"uuid": "ed5a269e-1415-437a-908f-010ccdccbd99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40703", "type": "seen", "source": "https://t.me/cibsecurity/52120", "content": "\u203c CVE-2022-40703 \u203c\n\nCWE-302 Authentication Bypass by Assumed-Immutable Data in AliveCor Kardia App version 5.17.1-754993421 and prior on Android allows an unauthenticated attacker with physical access to the Android device containing the app to bypass application authentication and alter information in the app.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-27T01:14:37.000000Z"}, {"uuid": "868346ad-96a3-436a-bc23-26b3752d6f77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-40709", "type": "seen", "source": "https://t.me/cibsecurity/50639", "content": "\u203c CVE-2022-40709 \u203c\n\nAn Out-of-bounds read vulnerability in Trend Micro Deep Security 20 and Cloud One - Workload Security Agent for Windows could allow a local attacker to disclose sensitive information on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit these vulnerabilities. This vulnerability is similar to, but not identical to CVE-2022-40707 and 40708.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-29T00:34:47.000000Z"}]}