{"vulnerability": "CVE-2022-4374", "sightings": [{"uuid": "4db40672-c900-4e6b-8cb6-2ef09db62fa8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4374", "type": "seen", "source": "https://t.me/cibsecurity/56205", "content": "\u203c CVE-2022-4374 \u203c\n\nThe Bg Bible References WordPress plugin through 3.8.14 does not sanitize and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-10T02:28:21.000000Z"}, {"uuid": "985a5407-ebec-4a62-a666-2a142401b819", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43749", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15819", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43749\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: Improper privilege management vulnerability in summary report management in Synology Presto File Server before 2.1.2-1601 allows remote authenticated users to bypass security constraint via unspecified vectors.\n\ud83d\udccf Published: 2022-10-26T10:05:08.833Z\n\ud83d\udccf Modified: 2025-05-09T19:13:07.492Z\n\ud83d\udd17 References:\n1. https://www.synology.com/security/advisory/Synology_SA_22_19", "creation_timestamp": "2025-05-09T19:26:14.000000Z"}, {"uuid": "d6dc2907-df8d-4976-b820-1f205c464ccf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43747", "type": "seen", "source": "https://t.me/cibsecurity/52088", "content": "\u203c CVE-2022-43747 \u203c\n\nbaramundi Management Agent (bMA) in baramundi Management Suite (bMS) 2021 R1 and R2 and 2022 R1 allows remote code execution. This is fixed in 2022 R2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-26T07:27:07.000000Z"}]}