{"vulnerability": "CVE-2022-32456", "sightings": [{"uuid": "444b3b6b-c9fb-4ca5-bf43-adb789d8a71f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-32456", "type": "seen", "source": "https://t.me/cibsecurity/46622", "content": "\u203c CVE-2022-32456 \u203c\n\nDigiwin BPM\u00e2\u20ac\u2122s function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL command to access, modify, delete database or disrupt service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-20T07:41:21.000000Z"}]}