{"vulnerability": "CVE-2022-4580", "sightings": [{"uuid": "1de6c5bb-6784-415c-94e0-29dabc15b0b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45806", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113645987652397662", "content": "", "creation_timestamp": "2024-12-13T14:29:14.181533Z"}, {"uuid": "34f042d9-d7a3-4699-b953-b654bc963a02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45808", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lpujowq2xh2u", "content": "", "creation_timestamp": "2025-05-23T21:02:23.395377Z"}, {"uuid": "01bf6ecf-dd02-4eb3-ab66-1ac1e381070b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4580", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/8280", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-4580\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Twenty20 Image Before-After WordPress plugin through 1.5.9 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks\n\ud83d\udccf Published: 2023-02-13T14:32:31.733Z\n\ud83d\udccf Modified: 2025-03-20T20:06:56.287Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/e54804c7-68a9-4c4c-94f9-1c3c9b97e8ca", "creation_timestamp": "2025-03-20T20:19:32.000000Z"}, {"uuid": "a4e3198f-0715-4f81-9319-4d2f22ef2951", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45805", "type": "seen", "source": "https://t.me/cibsecurity/73525", "content": "\u203c CVE-2022-45805 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Paytm Paytm Payment Gateway paytm-payments allows SQL Injection.This issue affects Paytm Payment Gateway: from n/a through 2.7.3.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-07T20:17:47.000000Z"}, {"uuid": "a112405e-e431-4ec9-b0e2-31c3789a373b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45809", "type": "seen", "source": "https://t.me/arpsyndicate/2112", "content": "#ExploitObserverAlert\n\nCVE-2022-45809\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-45809. Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Ricard Torres Thumbs Rating.This issue affects Thumbs Rating: from n/a through 5.0.0.", "creation_timestamp": "2023-12-23T09:38:47.000000Z"}, {"uuid": "58caeb89-5b99-484e-80fc-1938a4acb86e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45807", "type": "seen", "source": "https://t.me/cibsecurity/57428", "content": "\u203c CVE-2022-45807 \u203c\n\nCross-Site Request Forgery (CSRF) in WPVibes WP Mail Log plugin &lt;= 1.0.1 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-03T00:15:20.000000Z"}, {"uuid": "660a5853-4d96-40ed-ac15-4a4b8c1ac2be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45804", "type": "seen", "source": "https://t.me/cibsecurity/59220", "content": "\u203c CVE-2022-45804 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in RoboSoft Photo Gallery, Images, Slider in Rbs Image Gallery plugin &lt;= 3.2.9 leading to galleries hierarchy change, included plugin deactivate &amp; activate.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-01T16:33:22.000000Z"}]}