{"vulnerability": "CVE-2022-3982", "sightings": [{"uuid": "a45239f4-617f-4348-9188-b5b1ebfb209d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3982", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2025-12-30)", "content": "", "creation_timestamp": "2025-12-30T00:00:00.000000Z"}, {"uuid": "e24b356b-db55-4f9b-b542-add05155d083", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39822", "type": "seen", "source": "https://t.me/arpsyndicate/2204", "content": "#ExploitObserverAlert\n\nCVE-2022-39822\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-39822. In NOKIA NFM-T R19.9, a SQL Injection vulnerability occurs in /cgi-bin/R19.9/easy1350.pl of the VM Manager WebUI via the id or host HTTP GET parameter. An authenticated attacker is required for exploitation.", "creation_timestamp": "2023-12-28T06:34:36.000000Z"}, {"uuid": "695f2a19-fadd-484a-ba60-a0c5060b7182", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3982", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12860", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3982\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Booking calendar, Appointment Booking System WordPress plugin before 3.2.2 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE\n\ud83d\udccf Published: 2022-12-12T17:54:47.850Z\n\ud83d\udccf Modified: 2025-04-22T14:52:56.748Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/4d91f3e1-4de9-46c1-b5ba-cc55b7726867", "creation_timestamp": "2025-04-22T15:03:36.000000Z"}, {"uuid": "b10ebfa0-e1b2-4ecd-9c99-ce4d6fdadce1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39822", "type": "seen", "source": "https://t.me/ctinow/169940", "content": "https://ift.tt/k7DvV6S\nCVE-2022-39822 | Nokia NFM-T R19.9 VM Manager WebUI easy1350.pl id/host sql injection", "creation_timestamp": "2024-01-18T21:21:32.000000Z"}, {"uuid": "740491fc-04f3-4fc1-aaa7-7cfa50481626", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39820", "type": "seen", "source": "https://t.me/arpsyndicate/2192", "content": "#ExploitObserverAlert\n\nCVE-2022-39820\n\nDESCRIPTION: Exploit Observer has 1 entries related to CVE-2022-39820. In Network Element Manager in NOKIA NFM-T R19.9, an Unprotected Storage of Credentials vulnerability occurs under /root/RestUploadManager.xml.DRC and /DEPOT/KECustom_199/OTNE_DRC/RestUploadManager.xml. A remote user, authenticated to the operating system, with access privileges to the directory /root or /DEPOT, is able to read cleartext credentials to access the web portal NFM-T and control all the PPS Network elements.", "creation_timestamp": "2023-12-28T04:46:51.000000Z"}, {"uuid": "48ccd8a3-1408-4a7c-b788-9b4beab6dfdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39824", "type": "seen", "source": "https://t.me/cibsecurity/49282", "content": "\u203c CVE-2022-39824 \u203c\n\nServer-side JavaScript injection in Appsmith through 1.7.14 allows remote attackers to execute arbitrary JavaScript code from the server via the currentItem property of the list widget, e.g., to perform DoS attacks or achieve an information leak.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-05T07:11:47.000000Z"}, {"uuid": "d39e3833-7972-41ff-832a-71d474707991", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39820", "type": "seen", "source": "https://t.me/ctinow/162720", "content": "https://ift.tt/Xc6RyQ9\nCVE-2022-39820 Exploit", "creation_timestamp": "2024-01-04T01:17:20.000000Z"}, {"uuid": "13dc00a2-f8bc-43aa-aa6f-f01549e2d426", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39822", "type": "seen", "source": "https://t.me/ctinow/162719", "content": "https://ift.tt/p2U70ok\nCVE-2022-39822 Exploit", "creation_timestamp": "2024-01-04T01:17:19.000000Z"}, {"uuid": "a6b88db4-2f89-4b2b-acbd-2c36d344276a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39822", "type": "seen", "source": "https://t.me/ctinow/159142", "content": "https://ift.tt/Gxs51nr\nCVE-2022-39822", "creation_timestamp": "2023-12-25T07:26:51.000000Z"}, {"uuid": "6a99f185-afd5-4d62-bc1f-b0059b8b5741", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39820", "type": "seen", "source": "https://t.me/ctinow/159141", "content": "https://ift.tt/Ygxm3Gu\nCVE-2022-39820", "creation_timestamp": "2023-12-25T07:26:50.000000Z"}, {"uuid": "a6873e09-f51c-43c0-a133-010b6829e66d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3982", "type": "seen", "source": "https://t.me/cibsecurity/54353", "content": "\u203c CVE-2022-3982 \u203c\n\nThe Booking calendar, Appointment Booking System WordPress plugin before 3.2.2 does not validate uploaded files, which could allow unauthenticated users to upload arbitrary files, such as PHP and achieve RCE\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T20:21:19.000000Z"}, {"uuid": "3b05bbf6-b567-4ac5-b94a-296104a7ea67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39823", "type": "seen", "source": "https://t.me/cibsecurity/51904", "content": "\u203c CVE-2022-39823 \u203c\n\nAn issue was discovered in Softing OPC UA C++ SDK 5.66 through 6.x before 6.10. An OPC/UA browse request exceeding the server limit on continuation points may cause a use-after-free error\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-21T00:21:47.000000Z"}, {"uuid": "7c5cfd86-bfc1-4589-bc4c-39185d7b281c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39821", "type": "seen", "source": "https://t.me/cibsecurity/49731", "content": "\u203c CVE-2022-39821 \u203c\n\nIn NOKIA 1350 OMS R14.2, an Insertion of Sensitive Information into an Application Log File vulnerability occurs under /usr/Systems/OTNE_1_14_Master/maintenance/trace/web/.otn.default.log. The web application stores critical information, such as cleartext user credentials, in world-readable files in the filesystem.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-14T00:25:55.000000Z"}, {"uuid": "20be2e0c-1b1a-46bc-8c49-091c2dd9a61b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39828", "type": "seen", "source": "https://t.me/cibsecurity/49281", "content": "\u203c CVE-2022-39828 \u203c\n\nsign_pFwInfo in Samsung mTower through 0.3.0 has a missing check on the return value of EC_KEY_set_private_key, leading to a denial of service.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-05T07:11:46.000000Z"}, {"uuid": "5da032c5-55e7-4c24-b0d3-7585013cdb6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-39829", "type": "seen", "source": "https://t.me/cibsecurity/49278", "content": "\u203c CVE-2022-39829 \u203c\n\nThere is a NULL pointer dereference in aes256_encrypt in Samsung mTower through 0.3.0 due to a missing check on the return value of EVP_CIPHER_CTX_new.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-05T07:11:44.000000Z"}]}