{"vulnerability": "CVE-2022-2554", "sightings": [{"uuid": "e1423075-b6ce-42ca-9c76-0d7a90da88e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2554", "type": "seen", "source": "https://t.me/arpsyndicate/1750", "content": "#ExploitObserverAlert\n\nCVE-2022-2554\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-2554. The Enable Media Replace WordPress plugin before 4.0.0 does not ensure that renamed files are moved to the Upload folder, which could allow high privilege users such as admin to move them outside to the web root directory via a path traversal attack for example\n\nFIRST-EPSS: 0.000580000\nNVD-IS: 3.6\nNVD-ES: 1.2", "creation_timestamp": "2023-12-11T14:06:40.000000Z"}, {"uuid": "18952811-fb42-41f0-8127-71e69673aef2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25549", "type": "seen", "source": "https://t.me/cibsecurity/38696", "content": "\u203c CVE-2022-25549 \u203c\n\nTenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function formSetSysToolDDNS. This vulnerability allows attackers to cause a Denial of Service (DoS) via the ddnsEn parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-10T20:23:00.000000Z"}, {"uuid": "bc0f6355-00e3-4582-a17f-5f2b56186814", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25547", "type": "seen", "source": "https://t.me/cibsecurity/38727", "content": "\u203c CVE-2022-25547 \u203c\n\nTenda AX1806 v1.0.0.1 was discovered to contain a stack overflow in the function fromSetSysTime. This vulnerability allows attackers to cause a Denial of Service (DoS) via the time parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-10T20:26:18.000000Z"}]}