{"vulnerability": "CVE-2022-42458", "sightings": [{"uuid": "5f4a76e5-035f-441f-b5be-1e1b1e61b5aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-42458", "type": "published-proof-of-concept", "source": "https://t.me/TopCyberTechNews/175", "content": "Top Security News for 11/10/2022\n\nPython and Malware: Writing a simple wiper malware\nhttps://0x00sec.org/t/python-and-malware-writing-a-simple-wiper-malware/31652 \n\nGitLab: RCE via github import\nhttps://www.reddit.com/r/netsec/comments/y0cnw1/gitlab_rce_via_github_import/ \n\nWhite House unveils Blueprint for an AI Bill of Rights\nhttps://www.malwarebytes.com/blog/news/2022/10/the-white-houses-new-bill-of-rights-holds-big-tech-companies-accountable-for-their-ai \n\nA week in security (October 3 \u2013 9)\nhttps://www.malwarebytes.com/blog/news/2022/10/a-week-in-security-october-3-9 \n\nEndor Labs offers dependency management platform for open source software\nhttps://www.csoonline.com/article/3675963/endor-labs-offers-dependency-management-platform-for-open-source-software.html#tk.rss_all \n\nWhite House unveils Blueprint for an AI Bill of Rights\nhttps://malware.news/t/white-house-unveils-blueprint-for-an-ai-bill-of-rights/64045#post_1 \n\nISC Stormcast For Tuesday, October 11th, 2022 https://isc.sans.edu/podcastdetail.html?id=8208, (Tue, Oct 11th)\nhttps://malware.news/t/isc-stormcast-for-tuesday-october-11th-2022-https-isc-sans-edu-podcastdetail-html-id-8208-tue-oct-11th/64048#post_1 \n\nHackers Steal $100 Million Cryptocurrency from Binance Bridge\nhttps://thehackernews.com/2022/10/hackers-steal-100-million.html \n\nSecurity Alert: Alert Regarding Authentication Bypass Vulnerability (CVE-2022-42458) in bingo!CMS\nhttps://malware.news/t/security-alert-alert-regarding-authentication-bypass-vulnerability-cve-2022-42458-in-bingo-cms/64049#post_1 \n\nPersistent PHP payloads in PNGs: How to inject PHP code in an image and keep it there!\nhttps://www.reddit.com/r/netsec/comments/y0jlzp/persistent_php_payloads_in_pngs_how_to_inject_php/ \n\n    \nFollow Top Cyber News at https://t.me/TopCyberTechNews\nFeel free to DM me at https://twitter.com/ShayaFeedman", "creation_timestamp": "2022-10-11T07:00:07.000000Z"}]}