{"vulnerability": "CVE-2018-1180", "sightings": [{"uuid": "8c9fc433-607e-4c56-9bc2-fca6c5009178", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-11801", "type": "seen", "source": "https://t.me/cibsecurity/4841", "content": "ATENTION\u203c New - CVE-2018-11801\n\nSQL injection vulnerability in Apache Fineract before 1.3.0 allows attackers to execute arbitrary SQL commands via a query on a m_center data related table.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-06-11T20:26:14.000000Z"}, {"uuid": "26b4d600-12b5-420c-864e-a19b63ce4ae2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-11805", "type": "seen", "source": "https://t.me/ctinow/204524", "content": "https://ift.tt/h2wf7Py\nCVE-2018-11805 | Apache SpamAssassin up to 3.4.2 CF File os command injection (USN-4237-1)", "creation_timestamp": "2024-03-11T09:11:20.000000Z"}, {"uuid": "929d7d8a-cf49-49a3-873c-74685d659d3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-11800", "type": "seen", "source": "https://t.me/cibsecurity/4842", "content": "ATENTION\u203c New - CVE-2018-11800\n\nSQL injection vulnerability in Apache Fineract before 1.3.0 allows attackers to execute arbitrary SQL commands via a query on the GroupSummaryCounts related table.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-06-11T20:26:15.000000Z"}, {"uuid": "bafc497f-4150-4ff0-9caf-dce6a4a5f443", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-11802", "type": "seen", "source": "https://t.me/cibsecurity/10922", "content": "ATENTION\u203c New - CVE-2018-11802\n\nIn Apache Solr, the cluster can be partitioned into multiple collections and only a subset of nodes actually host any given collection. However, if a node receives a request for a collection it does not host, it proxies the request to a relevant node and serves the request. Solr bypasses all authorization settings for such requests. This affects all Solr versions prior to 7.7 that use the default authorization mechanism of Solr (RuleBasedAuthorizationPlugin).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-04-02T02:28:20.000000Z"}]}