{"vulnerability": "CVE-2022-2626", "sightings": [{"uuid": "2c013d0b-38fc-486d-bdd7-ab2cd5f24c81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2626", "type": "seen", "source": "https://t.me/cibsecurity/47600", "content": "\u203c CVE-2022-2626 \u203c\n\nIncorrect Privilege Assignment in GitHub repository hestiacp/hestiacp prior to 1.6.6.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-05T12:20:26.000000Z"}, {"uuid": "28fe9181-f6de-49bc-8aab-d76e9c999dc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34550", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aThe first proof of concept of the Contao CMS RCE\nURL\uff1ahttps://github.com/SystemVll/CVE-2022-26265\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-04-28T17:49:10.000000Z"}, {"uuid": "96c8717d-4d7f-4768-a286-b9b239e1814d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/simosaper/748", "content": "#exploit\n1. CVE-2022-26265:\nContao CMS v.1.5.0 - RCE\nhttps://github.com/Inplex-sys/CVE-2022-26265\n\n2. CVE-2022-25765:\npdfkit URL Command Injection\nhttps://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795\n]-&gt; A Shell exploit: https://github.com/Atsukoro1/PDFKitExploit", "creation_timestamp": "2022-12-06T06:38:55.000000Z"}, {"uuid": "d67d9d65-dc19-4b9c-b489-2afb6c6e7aa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/1638", "content": "#exploit\n1. CVE-2022-26265:\nContao CMS v.1.5.0 - RCE\nhttps://github.com/Inplex-sys/CVE-2022-26265\n\n2. CVE-2022-25765:\npdfkit URL Command Injection\nhttps://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795\n]-&gt; A Shell exploit: https://github.com/Atsukoro1/PDFKitExploit", "creation_timestamp": "2022-12-06T04:04:20.000000Z"}, {"uuid": "6fb11f0b-2c1e-40ed-baef-cb0698315bc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26267", "type": "seen", "source": "https://t.me/cibsecurity/39285", "content": "\u203c CVE-2022-26267 \u203c\n\nPiwigo v12.2.0 was discovered to contain an information leak via the action parameter in /admin/maintenance_actions.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-19T01:23:17.000000Z"}, {"uuid": "0bc4271c-7987-4d79-8386-49ba605f1d17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "seen", "source": "https://t.me/cibsecurity/39283", "content": "\u203c CVE-2022-26265 \u203c\n\nContao Managed Edition v1.5.0 was discovered to contain a remote command execution (RCE) vulnerability via the component php_cli parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-19T01:23:14.000000Z"}, {"uuid": "8d7254b3-1895-42d7-802e-2b7839b99812", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26266", "type": "seen", "source": "https://t.me/cibsecurity/39289", "content": "\u203c CVE-2022-26266 \u203c\n\nPiwigo v12.2.0 was discovered to contain a SQL injection vulnerability via pwg.users.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-19T01:23:23.000000Z"}, {"uuid": "2799857b-f657-43fd-b77e-e7a1946a7323", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26269", "type": "seen", "source": "https://t.me/cibsecurity/39709", "content": "\u203c CVE-2022-26269 \u203c\n\nSuzuki Connect v1.0.15 allows attackers to tamper with displayed messages via spoofed CAN messages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-29T07:40:50.000000Z"}, {"uuid": "2bf373de-77f3-4686-a644-517cb25f5ebf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26268", "type": "seen", "source": "https://t.me/cibsecurity/39621", "content": "\u203c CVE-2022-26268 \u203c\n\nXiaohuanxiong v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /app/controller/Books.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-28T07:39:45.000000Z"}, {"uuid": "e870ee71-4990-4946-a47a-46dc8144986b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26263", "type": "seen", "source": "https://t.me/cibsecurity/39542", "content": "\u203c CVE-2022-26263 \u203c\n\nYonyou u8 v13.0 was discovered to contain a DOM-based cross-site scripting (XSS) vulnerability via the component /u8sl/WebHelp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-25T19:30:49.000000Z"}, {"uuid": "2dc95671-e214-4a99-9497-089b644118fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7308", "content": "#exploit\n1. CVE-2022-26265:\nContao CMS v.1.5.0 - RCE\nhttps://github.com/Inplex-sys/CVE-2022-26265\n\n2. CVE-2022-25765:\npdfkit URL Command Injection\nhttps://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795\n]-&gt; A Shell exploit: https://github.com/Atsukoro1/PDFKitExploit", "creation_timestamp": "2022-12-06T11:01:01.000000Z"}]}