{"vulnerability": "CVE-2022-2853", "sightings": [{"uuid": "10b4d726-a2d1-463e-9528-0e9746b804b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2853", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17285", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-2853\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Heap buffer overflow in Downloads in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page.\n\ud83d\udccf Published: 2022-09-26T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-22T14:27:58.069Z\n\ud83d\udd17 References:\n1. https://chromereleases.googleblog.com/2022/08/stable-channel-update-for-desktop_16.html\n2. https://crbug.com/1350097\n3. https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/T4NMJURTG5RO3TGD7ZMIQ6Z4ZZ3SAVYE/\n4. http://packetstormsecurity.com/files/169459/Chrome-offline_items_collection-OfflineContentAggregator-OnItemRemoved-Heap-Buffer-Overflow.html", "creation_timestamp": "2025-05-22T14:44:06.000000Z"}, {"uuid": "7d91d900-59b5-431f-a7e2-535a744bd05f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28531", "type": "seen", "source": "https://t.me/cibsecurity/43085", "content": "\u203c CVE-2022-28531 \u203c\n\nSourcecodester Covid-19 Directory on Vaccination System1.0 is vulnerable to SQL Injection via the admin/login.php txtusername (aka Username) field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-20T22:30:56.000000Z"}, {"uuid": "8e15904d-75ea-4b6a-b0b4-1a1f96b65fae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-28530", "type": "seen", "source": "https://t.me/cibsecurity/42035", "content": "\u203c CVE-2022-28530 \u203c\n\nSourcecodester Covid-19 Directory on Vaccination System 1.0 is vulnerable to SQL Injection via cmdcategory.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-05T20:42:58.000000Z"}]}