{"vulnerability": "CVE-2022-2285", "sightings": [{"uuid": "72e12e60-caf3-4d28-917b-e64c52d4f791", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22854", "type": "seen", "source": "https://t.me/cibsecurity/37435", "content": "\u203c CVE-2022-22854 \u203c\n\nAn access control issue in hprms/admin/?page=user/list of Hospital Patient Record Management System v1.0 allows attackers to escalate privileges via accessing and editing the user list.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-14T20:32:53.000000Z"}, {"uuid": "7fb7077d-68c3-42e5-bd01-c32b7ffc845e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22850", "type": "seen", "source": "https://t.me/cibsecurity/36339", "content": "\u203c CVE-2022-22850 \u203c\n\nA Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the description parameter in room_types.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-26T22:19:48.000000Z"}, {"uuid": "3c5cd7ff-9f2b-470b-a4d0-c9caccee402e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22852", "type": "seen", "source": "https://t.me/cibsecurity/36343", "content": "\u203c CVE-2022-22852 \u203c\n\nA Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the description parameter in room_list.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-26T22:19:55.000000Z"}, {"uuid": "5b9d8307-9b90-41e8-bb18-7534c2da8f5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-22851", "type": "seen", "source": "https://t.me/cibsecurity/36312", "content": "\u203c CVE-2022-22851 \u203c\n\nA Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodtester Hospital's Patient Records Management System 1.0 via the specialization parameter in doctors.php\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-26T18:19:36.000000Z"}]}