{"vulnerability": "CVE-2022-41042", "sightings": [{"uuid": "16f2abc4-c0c7-46a9-83b1-852ed90a8010", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41042", "type": "published-proof-of-concept", "source": "Telegram/aZv6MAkPy0Zg9M5eswpBgPGNLziNK_Z6couQG8utTPmkEhE", "content": "", "creation_timestamp": "2023-02-26T12:28:03.000000Z"}, {"uuid": "ca9a010b-a8f7-4441-b451-d316609e004a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41042", "type": "seen", "source": "https://t.me/cibsecurity/51157", "content": "\u203c CVE-2022-41042 \u203c\n\nVisual Studio Code Information Disclosure Vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-11T22:26:23.000000Z"}, {"uuid": "23519490-846e-4356-bc30-98b955e4bf4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-41042", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7807", "content": "#exploit\n1. CVE-2022-41042:\nHTML/JavaScript injection in MS SARIF viewer/MS Live Preview extension, Path traversal in the local HTTP server in MS Live Preview extension\nhttps://blog.trailofbits.com/2023/02/21/vscode-extension-escape-vulnerability\n\n2. CVE-2023-21839:\nVulnerability in the Oracle WebLogic Server\nhttps://github.com/Scarehehe/Weblogic-CVE-2023-21839", "creation_timestamp": "2023-02-23T11:23:01.000000Z"}]}