{"vulnerability": "CVE-2022-4744", "sightings": [{"uuid": "4cddfffc-9b5a-4be8-8224-c1297467ee9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47448", "type": "seen", "source": "https://t.me/cibsecurity/64702", "content": "\u203c CVE-2022-47448 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in dev.Xiligroup.Com - MS plugin &lt;=\u00c2\u00a01.12.03 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T20:27:26.000000Z"}, {"uuid": "8fb69042-c230-4dda-bb2a-ebd49d3dc5cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47445", "type": "seen", "source": "https://t.me/cibsecurity/73515", "content": "\u203c CVE-2022-47445 \u203c\n\nImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Web-X Be POPIA Compliant be-popia-compliant allows SQL Injection.This issue affects Be POPIA Compliant: from n/a through 1.2.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-03T15:23:20.000000Z"}, {"uuid": "8e3762a8-aaa5-4e37-8e70-fe9fb97c32f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47441", "type": "seen", "source": "https://t.me/cibsecurity/63739", "content": "\u203c CVE-2022-47441 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in Charitable Donations &amp; Fundraising Team Donation Forms by Charitable plugin &lt;=\u00c2\u00a01.7.0.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-10T14:14:27.000000Z"}, {"uuid": "8f798903-7a8e-4fe6-80e2-34772ca214f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47447", "type": "seen", "source": "https://t.me/cibsecurity/64687", "content": "\u203c CVE-2022-47447 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Mathieu Chartier WordPress WP-Advanced-Search plugin &lt;=\u00c2\u00a03.3.8 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T20:27:05.000000Z"}, {"uuid": "558ce19d-3d01-4a4b-90f1-c99ff941d388", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47446", "type": "seen", "source": "https://t.me/cibsecurity/64688", "content": "\u203c CVE-2022-47446 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Viadat Creations Store Locator for WordPress with Google Maps \u00e2\u20ac\u201c LotsOfLocales plugin &lt;=\u00c2\u00a03.98.7 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-24T20:27:06.000000Z"}, {"uuid": "ca4e4f0f-e7d1-489b-b13c-9a4f6e36acba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47444", "type": "seen", "source": "https://t.me/cibsecurity/61002", "content": "\u203c CVE-2022-47444 \u203c\n\nUnauth. Reflected Cross-Site Scripting (XSS) vulnerability in ProfilePress Membership Team Paid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile &amp; Restrict Content \u00e2\u20ac\u201c ProfilePress plugin &lt;= 4.5.3 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-29T16:15:19.000000Z"}, {"uuid": "55964a1c-672c-42e0-962e-2c6205b35237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4744", "type": "seen", "source": "https://t.me/cibsecurity/61205", "content": "\u203c CVE-2022-4744 \u203c\n\nA double-free flaw was found in the Linux kernel\u00e2\u20ac\u2122s TUN/TAP device driver functionality in how a user registers the device when the register_netdevice function fails (NETDEV_REGISTER notifier). This flaw allows a local user to crash or potentially escalate their privileges on the system.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-31T00:31:45.000000Z"}, {"uuid": "23b08745-0104-4db5-895a-3e00ba8bf629", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47443", "type": "seen", "source": "https://t.me/cibsecurity/59944", "content": "\u203c CVE-2022-47443 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Daniel Powney Multi Rating plugin &lt;= 5.0.5 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T12:54:00.000000Z"}, {"uuid": "e285db93-853b-476f-a1df-4776d7c24b54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47440", "type": "seen", "source": "https://t.me/cibsecurity/59879", "content": "\u203c CVE-2022-47440 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Joseph C Dolson My Tickets plugin &lt;= 1.9.10 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-13T13:23:10.000000Z"}]}