{"vulnerability": "cve-2022-4770", "sightings": [{"uuid": "cc392cf2-75ab-4b1c-a6cb-383fcb119316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47701", "type": "seen", "source": "https://t.me/cibsecurity/57224", "content": "\u203c CVE-2022-47701 \u203c\n\nCOMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1 is vulnerable to Cross Site Scripting (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-31T20:38:26.000000Z"}, {"uuid": "17d16c94-3f78-4d37-bf40-dbca41e6dbfc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47703", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7940", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-47703\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: TIANJIE CPE906-3 is vulnerable to password disclosure. This is present on Software Version WEB5.0_LCD_20200513, Firmware Version MV8.003, and Hardware Version CPF906-V5.0_LCD_20200513.\n\ud83d\udccf Published: 2023-02-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T17:41:44.427Z\n\ud83d\udd17 References:\n1. https://github.com/OlivierLaflamme/cve/blob/main/TIANJIE/CPE906-3/unauth_password_disclosure.md", "creation_timestamp": "2025-03-18T17:48:35.000000Z"}, {"uuid": "f9c9d491-15ff-47a3-89c6-811256400ed0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-4770", "type": "seen", "source": "https://t.me/cibsecurity/61350", "content": "\u203c CVE-2022-4770 \u203c\n\nHitachi Vantara Pentaho Business Analytics Server prior to versions 9.4.0.0 and 9.3.0.2, including 8.3.x display the full parametrized SQL query in an error message when an invalid character is used within a Pentaho Report (*.prpt).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-03T22:24:58.000000Z"}, {"uuid": "05e76766-4900-46bb-9982-0ff3ddca8db8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47703", "type": "seen", "source": "https://t.me/cibsecurity/58414", "content": "\u203c CVE-2022-47703 \u203c\n\nTIANJIE CPE906-3 is vulnerable to password disclosure. This is present on Software Version WEB5.0_LCD_20200513, Firmware Version MV8.003, and Hardware Version CPF906-V5.0_LCD_20200513.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-17T00:18:47.000000Z"}, {"uuid": "40294e60-0bfe-42cf-9da3-afb63ec2dfb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2022-47700", "type": "seen", "source": "https://t.me/cibsecurity/57225", "content": "\u203c CVE-2022-47700 \u203c\n\nCOMFAST (Shenzhen Sihai Zhonglian Network Technology Co., Ltd) CF-WR623N Router firmware V2.3.0.1 and before is vulnerable to Incorrect Access Control. Improper authentication allows requests to be made to back-end scripts without a valid session or authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-31T20:38:27.000000Z"}]}