{"vulnerability": "CVE-2022-2713", "sightings": [{"uuid": "756d28ab-3f27-4c9d-9826-5151da49eb30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2713", "type": "seen", "source": "https://t.me/cibsecurity/47734", "content": "\u203c CVE-2022-2713 \u203c\n\nInsufficient Session Expiration in GitHub repository cockpit-hq/cockpit prior to 2.2.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-08T18:23:45.000000Z"}, {"uuid": "1db04839-5319-4f3c-8f12-bcd2587c7737", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27134", "type": "seen", "source": "https://t.me/cibsecurity/42574", "content": "\u203c CVE-2022-27134 \u203c\n\nEOSIO batdappboomx v327c04cf has an Access-control vulnerability in the `transfer` function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the `std::string memo` parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-13T07:26:26.000000Z"}, {"uuid": "3a6dd032-3239-49af-8b0a-e8c6eda5793f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27135", "type": "seen", "source": "https://t.me/cibsecurity/41372", "content": "\u203c CVE-2022-27135 \u203c\n\nxpdf 4.03 has heap buffer overflow in the function readXRefTable located in XRef.cc. An attacker can exploit this bug to cause a Denial of Service (Segmentation fault) or other unspecified effects by sending a crafted PDF file to the pdftoppm binary.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-25T16:36:03.000000Z"}, {"uuid": "af21de6c-297c-4892-ab64-64fc8a60f934", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27139", "type": "seen", "source": "https://t.me/cibsecurity/40648", "content": "\u203c CVE-2022-27139 \u203c\n\nAn arbitrary file upload vulnerability in the file upload module of Ghost v4.39.0 allows attackers to execute arbitrary code via a crafted SVG file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T20:23:09.000000Z"}]}