{"vulnerability": "cve-2022-4449", "sightings": [{"uuid": "7689809f-0a7a-4b9b-b7c7-983e32a56aad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4449", "type": "seen", "source": "https://t.me/cibsecurity/56539", "content": "\u203c CVE-2022-4449 \u203c\n\nThe Page scroll to id WordPress plugin before 1.7.6 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-16T18:24:10.000000Z"}, {"uuid": "f1e0ef83-f717-4caf-987c-9ee43dda88a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44499", "type": "seen", "source": "https://t.me/cibsecurity/54718", "content": "\u203c CVE-2022-44499 \u203c\n\nAdobe Illustrator versions 26.5.1 (and earlier), and 27.0 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-16T18:34:33.000000Z"}]}