{"vulnerability": "CVE-2022-2835", "sightings": [{"uuid": "4074df23-3926-4675-b22d-bf71164472c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28354", "type": "seen", "source": "https://t.me/cibsecurity/62775", "content": "\u203c CVE-2022-28354 \u203c\n\nIn the Active Threads Plugin 1.3.0 for MyBB, the activethreads.php date parameter is vulnerable to XSS when setting a time period.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-25T00:19:41.000000Z"}, {"uuid": "3e260ab8-3a3c-4a4f-b113-be43ab7ef2cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28357", "type": "seen", "source": "https://t.me/cibsecurity/70697", "content": "\u203c CVE-2022-28357 \u203c\n\nNATS nats-server 2.2.0 through 2.7.4 allows directory traversal because of an unintended path to a management action from a management account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-19T07:29:02.000000Z"}, {"uuid": "3d872d74-a64e-4102-bc19-36020ea2a6c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28353", "type": "seen", "source": "https://t.me/cibsecurity/62253", "content": "\u203c CVE-2022-28353 \u203c\n\nIn the External Redirect Warning Plugin 1.3 for MyBB, the redirect URL (aka external.php?url=) is vulnerable to XSS.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-16T07:27:22.000000Z"}, {"uuid": "26c36ecc-dbd6-4075-afe8-f88f9f0f1548", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2835", "type": "seen", "source": "https://t.me/cibsecurity/59385", "content": "\u203c CVE-2022-2835 \u203c\n\nA flaw was found in coreDNS. This flaw allows a malicious user to reroute internal calls to some internal services that were accessed by the FQDN in a format of ..svc.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-03T18:34:42.000000Z"}, {"uuid": "3f59c8ee-47cb-4736-8fa1-4ed4d9860370", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28356", "type": "seen", "source": "https://t.me/cibsecurity/40066", "content": "\u203c CVE-2022-28356 \u203c\n\nIn the Linux kernel before 5.17.1, a refcount leak bug was found in net/llc/af_llc.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-03T00:20:59.000000Z"}, {"uuid": "9d5f40cd-f2cd-45ca-bb7a-e653e8755485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28355", "type": "seen", "source": "https://t.me/cibsecurity/40065", "content": "\u203c CVE-2022-28355 \u203c\n\nrandomUUID in Scala.js before 1.10.0 generates predictable values.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-03T00:20:58.000000Z"}]}