{"vulnerability": "CVE-2020-2814", "sightings": [{"uuid": "6c339389-8e49-42f3-a98c-0fc8e5cf1350", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-2814", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-027-02", "content": "", "creation_timestamp": "2026-01-27T11:00:00.000000Z"}, {"uuid": "81452857-b064-4831-9537-9d31eb804a98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28146", "type": "seen", "source": "https://t.me/cibsecurity/27544", "content": "\u203c CVE-2020-28146 \u203c\n\nCross Site Scripting (XSS) vulnerability exists in Eyoucms v1.4.7 and earlier via the addonfieldext parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-18T20:16:56.000000Z"}, {"uuid": "7fbd4b9c-071b-4b88-8c34-29065560f31e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28145", "type": "seen", "source": "https://t.me/cibsecurity/30390", "content": "\u203c CVE-2020-28145 \u203c\n\nArbitrary file deletion vulnerability was discovered in wuzhicms v 4.0.1 via coreframe\\app\\attachment\\admin\\index.php, which allows attackers to access sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-12T14:25:41.000000Z"}, {"uuid": "dfd49ee2-bb0c-43cf-939e-4402845e7fd4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28144", "type": "seen", "source": "https://t.me/cibsecurity/23005", "content": "\u203c CVE-2020-28144 \u203c\n\nCertain Moxa Inc products are affected by an improper restriction of operations in EDR-G903 Series Firmware Version 5.5 or lower, EDR-G902 Series Firmware Version 5.5 or lower, and EDR-810 Series Firmware Version 5.6 or lower. Crafted requests sent to the device may allow remote arbitrary code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-03T16:55:14.000000Z"}, {"uuid": "bdba523c-0590-4d2a-8425-8980dfa828a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28140", "type": "seen", "source": "https://t.me/cibsecurity/16469", "content": "\u203c CVE-2020-28140 \u203c\n\nSourceCodester Online Clothing Store 1.0 is affected by an arbitrary file upload via the image upload feature of Products.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-11-17T22:39:24.000000Z"}, {"uuid": "16b81fb8-7f5f-4b8f-9891-71043decadbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-28140", "type": "seen", "source": "https://t.me/cibsecurity/17353", "content": "\u203c CVE-2020-28140 \u203c\n\nSourceCodester Online Clothing Store 1.0 is affected by an arbitrary file upload via the image upload feature of Products.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-09T04:25:16.000000Z"}]}