{"vulnerability": "CVE-2022-3900", "sightings": [{"uuid": "f5557b44-cafa-466c-b6cf-dd55ea8a659e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39002", "type": "seen", "source": "https://t.me/cibsecurity/49979", "content": "\u203c CVE-2022-39002 \u203c\n\nDouble free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:35:27.000000Z"}, {"uuid": "41e78b2d-6975-4938-93cf-bd249ab62f9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3900", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12871", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3900\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Cooked Pro WordPress plugin before 1.7.5.7 does not properly validate or sanitize the recipe_args parameter before unserializing it in the cooked_loadmore action, allowing an unauthenticated attacker to trigger a PHP Object injection vulnerability.\n\ud83d\udccf Published: 2022-12-12T17:57:08.950Z\n\ud83d\udccf Modified: 2025-04-22T14:43:41.505Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/c969c4bc-82d7-46a0-88ba-e056c0b27de7", "creation_timestamp": "2025-04-22T15:03:51.000000Z"}, {"uuid": "11972295-9959-4dec-913c-4c1a49bb2672", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39007", "type": "seen", "source": "https://t.me/cibsecurity/49978", "content": "\u203c CVE-2022-39007 \u203c\n\nThe location module has a vulnerability of bypassing permission verification.Successful exploitation of this vulnerability may cause privilege escalation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:35:25.000000Z"}, {"uuid": "49ffc067-6737-46ff-9067-e8302ebc59d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39006", "type": "seen", "source": "https://t.me/cibsecurity/49973", "content": "\u203c CVE-2022-39006 \u203c\n\nThe MPTCP module has the race condition vulnerability. Successful exploitation of this vulnerability may cause the device to restart.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:35:17.000000Z"}, {"uuid": "b8ec60b6-bb71-4431-8308-409181a5ceb4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39008", "type": "seen", "source": "https://t.me/cibsecurity/49971", "content": "\u203c CVE-2022-39008 \u203c\n\nThe NFC module has bundle serialization/deserialization vulnerabilities. Successful exploitation of this vulnerability may cause third-party apps to read and write files that are accessible only to system apps.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:35:15.000000Z"}, {"uuid": "94d81325-0c49-4295-83bb-7779f5fff6ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39005", "type": "seen", "source": "https://t.me/cibsecurity/49959", "content": "\u203c CVE-2022-39005 \u203c\n\nThe MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:29:21.000000Z"}, {"uuid": "fd3d1a73-cb0c-42d7-a455-2e9638059d9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39000", "type": "seen", "source": "https://t.me/cibsecurity/49961", "content": "\u203c CVE-2022-39000 \u203c\n\nThe iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:29:23.000000Z"}, {"uuid": "7f832f0e-5d34-48c7-a41c-01f506ecd0a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39009", "type": "seen", "source": "https://t.me/cibsecurity/49957", "content": "\u203c CVE-2022-39009 \u203c\n\nThe WLAN module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause third-party apps to affect WLAN functions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:29:18.000000Z"}, {"uuid": "7eb7a419-dfaa-419d-92ba-c8774a21d4cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39003", "type": "seen", "source": "https://t.me/cibsecurity/49952", "content": "\u203c CVE-2022-39003 \u203c\n\nBuffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability will affect the confidentiality and integrity of trusted components.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T22:29:12.000000Z"}]}