{"vulnerability": "CVE-2022-2333", "sightings": [{"uuid": "29c42aa0-a7c6-4844-8c43-18506c6430ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23337", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2689", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1a\u3010\u61d2\u4eba\u795e\u5668\u3011\u4e00\u6b3e\u56fe\u5f62\u5316\u3001\u6279\u91cf\u91c7\u96c6url\u3001\u6279\u91cf\u5bf9\u91c7\u96c6\u7684url\u8fdb\u884c\u5404\u79cdnday\u68c0\u6d4b\u7684\u5de5\u5177\u3002\u53ef\u7528\u4e8esrc\u6316\u6398\u3001cnvd\u6316\u6398\u30010day\u5229\u7528\u3001\u6253\u9020\u81ea\u5df1\u7684\u6b66\u5668\u5e93\u7b49\u573a\u666f\u3002\u53ef\u4ee5\u6279\u91cf\u5229\u7528Actively Exploited Atlassian Confluence 0Day CVE-2022-26134\u548cDedeCMS v5.7.87 SQL\u6ce8\u5165 CVE-2022-23337\u3002\nURL\uff1ahttps://github.com/ChubbyPanda61/Nft-Grabber-Stealer-Exploit-Cve-2022-Steal-BlockHain-Hack-Nft\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-07-12T13:50:56.000000Z"}, {"uuid": "e850ad80-74a8-4b44-ba9b-f5fd4c120c12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23337", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2733", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1asql\u6ce8\u5165\n\u63cf\u8ff0\uff1a\u3010\u61d2\u4eba\u795e\u5668\u3011\u4e00\u6b3e\u56fe\u5f62\u5316\u3001\u6279\u91cf\u91c7\u96c6url\u3001\u6279\u91cf\u5bf9\u91c7\u96c6\u7684url\u8fdb\u884c\u5404\u79cdnday\u68c0\u6d4b\u7684\u5de5\u5177\u3002\u53ef\u7528\u4e8esrc\u6316\u6398\u3001cnvd\u6316\u6398\u30010day\u5229\u7528\u3001\u6253\u9020\u81ea\u5df1\u7684\u6b66\u5668\u5e93\u7b49\u573a\u666f\u3002\u53ef\u4ee5\u6279\u91cf\u5229\u7528Actively Exploited Atlassian Confluence 0Day CVE-2022-26134\u548cDedeCMS v5.7.87 SQL\u6ce8\u5165 CVE-2022-23337\u3002\nURL\uff1ahttps://github.com/infowangxin/sc\n\n\u6807\u7b7e\uff1a#sql\u6ce8\u5165", "creation_timestamp": "2022-07-19T06:36:52.000000Z"}, {"uuid": "c57e782e-420e-4f6d-9ffd-532c6e242271", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23337", "type": "exploited", "source": "https://t.me/GithubRedTeam/2565", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1asql\u6ce8\u5165\n\u63cf\u8ff0\uff1a\u3010\u61d2\u4eba\u795e\u5668\u3011\u4e00\u6b3e\u56fe\u5f62\u5316\u3001\u6279\u91cf\u91c7\u96c6url\u3001\u6279\u91cf\u5bf9\u91c7\u96c6\u7684url\u8fdb\u884c\u5404\u79cdnday\u68c0\u6d4b\u7684\u5de5\u5177\u3002\u53ef\u7528\u4e8esrc\u6316\u6398\u3001cnvd\u6316\u6398\u30010day\u5229\u7528\u3001\u6253\u9020\u81ea\u5df1\u7684\u6b66\u5668\u5e93\u7b49\u573a\u666f\u3002\u53ef\u4ee5\u6279\u91cf\u5229\u7528Actively Exploited Atlassian Confluence 0Day CVE-2022-26134\u548cDedeCMS v5.7.87 SQL\u6ce8\u5165 CVE-2022-23337\u3002\nURL\uff1ahttps://github.com/wanghuan9/elasticsearch-engine\n\n\u6807\u7b7e\uff1a#sql\u6ce8\u5165", "creation_timestamp": "2022-06-23T14:10:35.000000Z"}, {"uuid": "7bf082b5-add5-41bd-9133-714d17e62a82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23337", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2688", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2022\n\u63cf\u8ff0\uff1a\u3010\u61d2\u4eba\u795e\u5668\u3011\u4e00\u6b3e\u56fe\u5f62\u5316\u3001\u6279\u91cf\u91c7\u96c6url\u3001\u6279\u91cf\u5bf9\u91c7\u96c6\u7684url\u8fdb\u884c\u5404\u79cdnday\u68c0\u6d4b\u7684\u5de5\u5177\u3002\u53ef\u7528\u4e8esrc\u6316\u6398\u3001cnvd\u6316\u6398\u30010day\u5229\u7528\u3001\u6253\u9020\u81ea\u5df1\u7684\u6b66\u5668\u5e93\u7b49\u573a\u666f\u3002\u53ef\u4ee5\u6279\u91cf\u5229\u7528Actively Exploited Atlassian Confluence 0Day CVE-2022-26134\u548cDedeCMS v5.7.87 SQL\u6ce8\u5165 CVE-2022-23337\u3002\nURL\uff1ahttps://github.com/Lubnan-Skech/Nft-Grabber-Stealer-Exploit-Cve-2022-Steal-BlockHain-Hack-Nft\n\n\u6807\u7b7e\uff1a#CVE-2022", "creation_timestamp": "2022-07-12T13:38:11.000000Z"}, {"uuid": "07527c48-566b-4598-9700-48220e43afb3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23336", "type": "seen", "source": "https://t.me/cibsecurity/37454", "content": "\u203c CVE-2022-23336 \u203c\n\nS-CMS v5.0 was discovered to contain a SQL injection vulnerability in member_pay.php via the O_id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T00:33:07.000000Z"}, {"uuid": "e2bf95a4-d679-4d8d-a4dd-2c3a3a2b367d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23332", "type": "seen", "source": "https://t.me/cibsecurity/42175", "content": "\u203c CVE-2022-23332 \u203c\n\nCommand injection vulnerability in Manual Ping Form (Web UI) in Shenzhen Ejoin Information Technology Co., Ltd. ACOM508/ACOM516/ACOM532 609-915-041-100-020 allows a remote attacker to inject arbitrary code via the field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-09T18:36:21.000000Z"}, {"uuid": "bd9961f2-926e-464c-806b-8d1adc495934", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23334", "type": "seen", "source": "https://t.me/cibsecurity/57165", "content": "\u203c CVE-2022-23334 \u203c\n\nThe Robot application in Ip-label Newtest before v8.5R0 was discovered to use weak signature checks on executed binaries, allowing attackers to have write access and escalate privileges via replacing NEWTESTREMOTEMANAGER.EXE.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-30T18:36:12.000000Z"}, {"uuid": "5131d9e7-c5f5-4780-82e2-2f74284e275b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23337", "type": "seen", "source": "https://t.me/cibsecurity/37467", "content": "\u203c CVE-2022-23337 \u203c\n\nDedeCMS v5.7.87 was discovered to contain a SQL injection vulnerability in article_coonepage_rule.php via the ids parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T00:33:21.000000Z"}, {"uuid": "439cab55-2edf-45af-abfb-51e55ebeeda4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23335", "type": "seen", "source": "https://t.me/cibsecurity/37466", "content": "\u203c CVE-2022-23335 \u203c\n\nMetinfo v7.5.0 was discovered to contain a SQL injection vulnerability in language_general.class.php via doModifyParameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T00:33:20.000000Z"}, {"uuid": "3048369e-2372-4a44-9a1d-d174ab670d9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23331", "type": "seen", "source": "https://t.me/cibsecurity/37003", "content": "\u203c CVE-2022-23331 \u203c\n\nIn DataEase v1.6.1, an authenticated user can gain unauthorized access to all user information and can change the administrator password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-08T16:36:44.000000Z"}, {"uuid": "5e99b1f8-145a-4465-8fbe-aed3c82f7579", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-23330", "type": "seen", "source": "https://t.me/cibsecurity/36887", "content": "\u203c CVE-2022-23330 \u203c\n\nA remote code execution (RCE) vulnerability in HelloWorldAddonController.java of jpress v4.2.0 allows attackers to execute arbitrary code via a crafted JAR package.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-05T00:31:16.000000Z"}]}