{"vulnerability": "CVE-2022-3051", "sightings": [{"uuid": "30662b35-33a5-4bd2-a222-80f2e42f45a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30519", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11492", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-30519\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: XSS in signing form in Reprise Software RLM License Administration v14.2BL4 allows remote attacker to inject arbitrary code via password field.\n\ud83d\udccf Published: 2022-12-29T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-11T22:48:21.272Z\n\ud83d\udd17 References:\n1. https://github.com/earth2sky/Disclosed/blob/main/CVE-2022-30519\n2. http://packetstormsecurity.com/files/171627/Reprise-Software-RLM-14.2BL4-Cross-Site-Scripting.html", "creation_timestamp": "2025-04-11T22:51:19.000000Z"}, {"uuid": "e6644521-1897-49a9-90da-5e411af8d78a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30515", "type": "seen", "source": "https://t.me/cibsecurity/52697", "content": "\u203c CVE-2022-30515 \u203c\n\nZKTeco BioTime 8.5.4 is missing authentication on folders containing employee photos, allowing an attacker to view them through filename enumeration.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-09T02:40:32.000000Z"}, {"uuid": "01896a27-9692-4804-96da-f749b702e550", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30519", "type": "seen", "source": "https://t.me/cibsecurity/55541", "content": "\u203c CVE-2022-30519 \u203c\n\nXSS in signing form in Reprise Software RLM License Administration v14.2BL4 allows remote attacker to inject arbitrary code via password field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-30T02:18:30.000000Z"}, {"uuid": "b086f814-f258-4b2a-930a-5affe3def9d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3051", "type": "seen", "source": "https://t.me/cibsecurity/50496", "content": "\u203c CVE-2022-3051 \u203c\n\nHeap buffer overflow in Exosphere in Google Chrome on Chrome OS, Lacros prior to 105.0.5195.52 allowed a remote attacker who convinced a user to engage in specific UI interactions to potentially exploit heap corruption via crafted UI interactions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-26T20:22:41.000000Z"}, {"uuid": "ed75bd25-68de-4f49-a472-5ea100c2a87c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30518", "type": "seen", "source": "https://t.me/cibsecurity/43055", "content": "\u203c CVE-2022-30518 \u203c\n\nChatBot Application with a Suggestion Feature 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /simple_chat_bot/admin/responses/view_response.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-20T16:36:47.000000Z"}, {"uuid": "b7fcf633-56d0-47b1-9dd8-69175d12580e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-30514", "type": "seen", "source": "https://t.me/cibsecurity/43717", "content": "\u203c CVE-2022-30514 \u203c\n\nSchool Dormitory Management System v1.0 is vulnerable to reflected cross-site scripting (XSS) via admin/inc/navigation.php:126.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-02T18:38:56.000000Z"}]}