{"vulnerability": "CVE-2022-4078", "sightings": [{"uuid": "9cea3aae-ec92-4029-933e-bdd86176d85a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4078", "type": "seen", "source": "https://t.me/cibsecurity/53217", "content": "\u203c CVE-2022-4078 \u203c\n\nA vulnerability was found in IP Location Block Plugin. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component HTTP Header Handler. The manipulation of the argument X-Forwarded-For leads to improper output neutralization for logs. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214045 was assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-20T16:36:20.000000Z"}, {"uuid": "b2494072-8476-4a49-bb0a-8298d8fc6778", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40784", "type": "seen", "source": "https://t.me/cibsecurity/50517", "content": "\u203c CVE-2022-40784 \u203c\n\nUnlimited strcpy on user input when setting a locale file leads to stack buffer overflow in mIPC camera firmware 5.3.1.2003161406.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-26T20:28:43.000000Z"}, {"uuid": "c29d162c-6d15-4f8f-90f5-8db1d889b265", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40785", "type": "seen", "source": "https://t.me/cibsecurity/50494", "content": "\u203c CVE-2022-40785 \u203c\n\nUnsanitized input when setting a locale file leads to shell injection in mIPC camera firmware 5.3.1.2003161406. This allows an attacker to gain remote code execution on cameras running the firmware when a victim logs into a specially crafted mobile app.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-26T18:36:34.000000Z"}]}