{"vulnerability": "CVE-2022-21661", "sightings": [{"uuid": "5f872928-5d4e-42c3-9c5f-e37a894f785c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2832", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-21661 exp for Elementor custom skin. \nURL\uff1ahttps://github.com/XmasSnowISBACK/CVE-2022-21661\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-08-02T18:54:57.000000Z"}, {"uuid": "9e234d5d-fc5b-4e6f-a94a-38173f8d2c09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2305", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aWordpress 5.8.2  CVE-2022-21661 Vuln enviroment POC exploit\nURL\uff1ahttps://github.com/0x4E0x650x6F/Wordpress-cve-CVE-2022-21661\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-05-28T10:54:16.000000Z"}, {"uuid": "856870e8-a8bf-4970-8325-f99782a073d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/breachdetector/153961", "content": "{\n  \"Source\": \"https://t.me/documentors\",\n  \"Content\": \"CVE-2022-21661-main.zip 20.0 MB WordPress Core 5.8.2-'WP_Query' / CVE-2022-21661 https://github.com/APTIRAN/CVE-2022-21661 \ud83d\udcc4For Questions and Purchase and place Orders Contact us: \ud83d\udece @darkamo https://t.me/documentors\", \n  \"author\": \"\u2693\ufe0f\ud835\udd07\ud835\udd2c\ud835\udd20\ud835\udd32\ud835\udd2a\ud835\udd22\ud835\udd2b\ud835\udd31\ud835\udd2c\ud835\udd2f\",\n  \"Detection Date\": \"02 Dec 2022\",\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 Data Leak monitoring system\ud83d\udd39", "creation_timestamp": "2022-12-02T08:57:29.000000Z"}, {"uuid": "06d143a2-a988-4f10-acb8-9b3262045c08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2817", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aCVE-2022-21661 exp for Elementor custom skin.\nURL\uff1ahttps://github.com/QWERTYisme/CVE-2022-21661\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-07-31T11:56:40.000000Z"}, {"uuid": "788a7e6d-33de-4af9-a6ce-ae2e094b2537", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3187", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1aThe first poc video presenting the sql injection test from (  WordPress Core 5.8.2-'WP_Query'  / CVE-2022-21661) \nURL\uff1ahttps://github.com/APTIRAN/CVE-2022-21661\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2025-03-07T12:29:59.000000Z"}, {"uuid": "6f46211b-79ca-4779-ab79-f2262e3ca6e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "seen", "source": "https://t.me/arpsyndicate/1829", "content": "#ExploitObserverAlert\n\nCVE-2022-21661\n\nDESCRIPTION: Exploit Observer has 40 entries related to CVE-2022-21661. WordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to improper sanitization in WP_Query, there can be cases where SQL injection is possible through plugins or themes that use it in a certain way. This has been patched in WordPress version 5.8.3. Older affected versions are also fixed via security release, that go back till 3.7.37. We strongly recommend that you keep auto-updates enabled. There are no known workarounds for this vulnerability.\n\nFIRST-EPSS: 0.937320000\nNVD-IS: 3.6\nNVD-ES: 3.9", "creation_timestamp": "2023-12-16T14:41:24.000000Z"}, {"uuid": "8bf7fc24-adeb-48e9-94b9-35bebcf5e97b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "seen", "source": "Telegram/hlaj8pCWo0xhq_29wgWzUqXa3H_JtYFZaxWsf_gjRvhLsWU", "content": "", "creation_timestamp": "2024-10-11T15:03:57.000000Z"}, {"uuid": "48f262fd-0c08-4831-a3dc-d0cf164fc932", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "seen", "source": "Telegram/SmcoBxthnKwgHljRQ5eGvJQRSp7XCqQ6GoUv_bF594oADDQ", "content": "", "creation_timestamp": "2024-10-11T14:27:12.000000Z"}, {"uuid": "43927510-a09a-4369-9e60-c1ecfe86b519", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/breachdetector/152930", "content": "{\n  \"Source\": \"https://t.me/documentors\",\n  \"Content\": \"CVE-2022-21661-main.zip 20.0 MB WordPress Core 5.8.2-'WP_Query' / CVE-2022-21661 https://github.com/APTIRAN/CVE-2022-21661 \ud83d\udcc4For Questions and Purchase and place Orders Contact us: \ud83d\udece @darkamo https://t.me/documentors\", \n  \"author\": \"\u2693\ufe0f\ud835\udd07\ud835\udd2c\ud835\udd20\ud835\udd32\ud835\udd2a\ud835\udd22\ud835\udd2b\ud835\udd31\ud835\udd2c\ud835\udd2f\",\n  \"Detection Date\": \"30 Nov 2022\",\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 Data Leak monitoring system\ud83d\udd39", "creation_timestamp": "2022-11-30T17:51:32.000000Z"}, {"uuid": "3838ce88-3a2a-4cbb-b8fa-03539703466a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "Telegram/aS6mAmeUhsFL57NL24yCmfK1ybyUebrYuHG32QrjsHtQ-as", "content": "", "creation_timestamp": "2022-12-26T00:02:53.000000Z"}, {"uuid": "6d390a4b-d253-4af3-87e2-b5207c5d0569", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "Telegram/zMR22lMSxfSx92UKdkl2Oy7iHmx2McRy0HK2tJZWvPLAmko", "content": "", "creation_timestamp": "2022-12-25T16:18:05.000000Z"}, {"uuid": "5ce7fbaa-0da7-4b30-a36f-feb44f1d08a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/1575", "content": "WordPress Core 5.8.2-'WP_Query' / CVE-2022-21661\n\nhttps://github.com/APTIRAN/CVE-2022-21661", "creation_timestamp": "2023-11-16T19:51:57.000000Z"}, {"uuid": "796e3d20-52a0-48d1-9dd9-0e475b44bc4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/MrVGunz/584", "content": "CVE-2022-21661 : WordPress Core 5.8.2 - 'WP_Query' SQL Injection\nAuthor: ARYAN CHEHREGHANI\nPOC : https://www.exploit-db.com/exploits/50663", "creation_timestamp": "2022-11-15T09:30:09.000000Z"}, {"uuid": "855a1694-3311-491b-a08a-95a270f08819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/professional_c_h/1857", "content": "WordPress Core 5.8.2-'WP_Query' / CVE-2022-21661\n\nhttps://github.com/APTIRAN/CVE-2022-21661\n\nChannel: \n@Professional_c_h\n@Card_crack_hack", "creation_timestamp": "2022-12-02T11:04:16.000000Z"}, {"uuid": "dd0a32f5-d7c9-4a80-b8d9-718718604e04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/283", "content": "https://github.com/purple-WL/wordpress-CVE-2022-21661\n#github", "creation_timestamp": "2022-09-28T01:44:13.000000Z"}, {"uuid": "1b275834-a319-4882-8bcc-82c9b76b1bf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/intelexch/31608", "content": "https://github.com/APTIRAN/CVE-2022-21661", "creation_timestamp": "2022-11-08T15:27:29.000000Z"}, {"uuid": "9cc9955b-ab0a-45f5-a289-31c6941254c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/jokerplstaeen/15955", "content": "\u200f\u0645\u0648\u0636\u0648\u0639 \u062c\u062f\u064a\u062f.\n\n\u0634\u0631\u062d \u0645\u0641\u0635\u0651\u0644 \u0644\u0625\u0643\u062a\u0634\u0627\u0641 \u0648\u0625\u0633\u062a\u063a\u0644\u0627\u0644 \nSQL Injection in the core of Wordpress (CVE-2022-21661)\n\n\u0628\u0627\u0644\u0639\u0631\u0628\u064a \u0648\u0627\u0644\u0640 English.\n\n\u0642\u0631\u0627\u0621\u0629 \u0645\u0645\u062a\u0639\u0629\u2665\ufe0f\ud83d\ude4f\ud83c\udffb\n\nhttps://confidentialteam.github.io/posts/cve-202221661ar/", "creation_timestamp": "2023-04-18T17:51:29.000000Z"}, {"uuid": "dd100d7e-c9fb-4c45-80e3-d19caff05290", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "seen", "source": "https://t.me/cibsecurity/35089", "content": "\u203c CVE-2022-21661 \u203c\n\nWordPress is a free and open-source content management system written in PHP and paired with a MariaDB database. Due to improper sanitization in WP_Query, there can be cases where SQL injection is possible through plugins or themes that use it in a certain way. This has been patched in WordPress version 5.8.3. Older affected versions are also fixed via security release, that go back till 3.7.37. We strongly recommend that you keep auto-updates enabled. There are no known workarounds for this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-07T02:16:24.000000Z"}, {"uuid": "6a5bb14f-1d22-45ac-8404-6f05d9b73920", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "Telegram/q8rexRbZbr7I46zhe_gO9OWmaFaCzrMM5IMiFN0qpnYIqw", "content": "", "creation_timestamp": "2022-11-30T21:50:54.000000Z"}, {"uuid": "9e20c89f-3c77-40d3-b47a-a1f4dbc76b2e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/9729", "content": "#Blue_Team_Techniques\n1. Hunting M365 Invaders:\nBlue Team's Guide to Initial Access Vectors\nhttps://www.splunk.com/en_us/blog/security/hunting-m365-invaders-blue-team-s-guide-to-initial-access-vectors.html\n2. Script to validate WordPress CVE-2022-21661\nhttps://github.com/p4ncontomat3/CVE-2022-21661", "creation_timestamp": "2024-01-08T02:57:46.000000Z"}, {"uuid": "734c9c21-1c87-49f3-a1ac-9e78bb17b55e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/2441", "content": "#CVE-2022\n\nThe first poc video presenting the sql injection test from (\u00a0 WordPress Core 5.8.2-'WP_Query'\u00a0 / CVE-2022-21661) \n\nhttps://github.com/APTIRAN/CVE-2022-21661\n\n@BlueRedTeam", "creation_timestamp": "2022-11-20T16:59:42.000000Z"}, {"uuid": "d8d617cd-3181-4822-9864-71c5debbf8a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/361", "content": "WordPress Core 5.8.2-'WP_Query' / CVE-2022-21661\n\nhttps://github.com/APTIRAN/CVE-2022-21661", "creation_timestamp": "2022-11-30T15:05:22.000000Z"}, {"uuid": "28a4606f-9b28-4f26-9a1d-7418dc8f5668", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5174", "content": "#exploit\n1. CVE-2022-21661:\nSQL Injection in Wordpress core\nhttps://unsafe.sh/go-99941.html\n\n2. CVE-2021-26294:\nDirectory Traversal in Afterlogic webmail aurora and pro\nhttps://github.com/dorkerdevil/CVE-2021-26294", "creation_timestamp": "2022-01-11T11:05:12.000000Z"}, {"uuid": "9cf7ec74-c86f-4b48-90ba-33e725580012", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5236", "content": "#Threat_Research\n1. The OAuth Misconfiguration\nhttps://infosecwriteups.com/the-oauth-misconfiguration-15e66dd19a6e\n2. CVE-2022-21661: \nExposing Database Info via WordPress SQL Injection\nhttps://www.zerodayinitiative.com/blog/2022/1/18/cve-2021-21661-exposing-database-info-via-wordpress-sql-injection\n]-> https://github.com/APTIRAN/CVE-2022-21661", "creation_timestamp": "2022-12-05T04:44:42.000000Z"}, {"uuid": "6da9222f-657e-494b-90ed-ea2ede818b67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-21661", "type": "published-proof-of-concept", "source": "https://t.me/LearnExploit/4360", "content": "CVE-2022-21661\n\nWordPress Core 5.8.2 - 'WP_Query' SQL Injection. \n\nGithub\n\n#CVE #POC\n\u2014\u2014\u2014\u2014\u2014\u2014\n0Day.Today\n@LearnExploit\n@Tech_Army", "creation_timestamp": "2023-01-04T10:02:38.000000Z"}]}