{"vulnerability": "CVE-2022-4428", "sightings": [{"uuid": "b37a1db8-9024-4022-a35f-aaf8f132dda8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44289", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/3642", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1agetshell\n\u63cf\u8ff0\uff1aThinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell. CVE project by @Sn0wAlice\nURL\uff1ahttps://github.com/Live-Hack-CVE/CVE-2022-44289\n\n\u6807\u7b7e\uff1a#getshell", "creation_timestamp": "2022-12-28T02:40:14.000000Z"}, {"uuid": "efaaa67b-4681-4840-889a-c81f15c865b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44283", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13523", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-44283\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: AVS Audio Converter 10.3 is vulnerable to Buffer Overflow.\n\ud83d\udccf Published: 2022-11-28T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-25T19:52:11.020Z\n\ud83d\udd17 References:\n1. https://packetstormsecurity.com/files/169427/AVS-Audio-Converter-10.3-Stack-Overflow.html", "creation_timestamp": "2025-04-25T20:08:05.000000Z"}, {"uuid": "1c2d5f0b-367d-45cf-8482-4b7f6494da56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44284", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13521", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-44284\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Dinstar FXO Analog VoIP Gateway DAG2000-16O is vulnerable to Cross Site Scripting (XSS).\n\ud83d\udccf Published: 2022-11-28T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-25T19:53:22.241Z\n\ud83d\udd17 References:\n1. https://packetstormsecurity.com/files/169531/Dinstar-FXO-Analog-VoIP-Gateway-DAG2000-16O-Cross-Site-Scripting.html", "creation_timestamp": "2025-04-25T20:08:02.000000Z"}, {"uuid": "32606c46-bb5c-416d-a163-096f6c354131", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44280", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13520", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-44280\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Automotive Shop Management System v1.0 is vulnerable to Delete any file via /asms/classes/Master.php?f=delete_img.\n\ud83d\udccf Published: 2022-11-23T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-25T19:54:01.316Z\n\ud83d\udd17 References:\n1. https://github.com/Onetpaer/bug_report/blob/main/vendors/oretnom23/automotive-shop-management-system/delete-1.md", "creation_timestamp": "2025-04-25T20:08:01.000000Z"}, {"uuid": "313c7b34-7fda-4938-8c85-5440e68bd3e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44284", "type": "seen", "source": "https://t.me/cibsecurity/53588", "content": "\u203c CVE-2022-44284 \u203c\n\nDinstar FXO Analog VoIP Gateway DAG2000-16O is vulnerable to Cross Site Scripting (XSS).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-28T18:28:11.000000Z"}, {"uuid": "4c2e779e-e2cc-43c8-96c2-9f5e3b9967e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4428", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/11049", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-4428\n\ud83d\udd25 CVSS Score: 8.9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L)\n\ud83d\udd39 Description: support_uri parameter in the WARP client local settings file (mdm.xml) lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the \"Send feedback\" option. An attacker with access to the local file system could use a crafted XML config file pointing to a malicious file or set a local path to the executable using Cloudflare Zero Trust Dashboard (for Zero Trust enrolled clients).\n\n\ud83d\udccf Published: 2023-01-11T16:49:36.512Z\n\ud83d\udccf Modified: 2025-04-09T13:43:13.391Z\n\ud83d\udd17 References:\n1. https://github.com/cloudflare/advisories/security/advisories/GHSA-h3j3-fhqg-66rh", "creation_timestamp": "2025-04-09T13:47:21.000000Z"}, {"uuid": "29e2f814-46f5-479d-b20b-6645969095ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44283", "type": "seen", "source": "https://t.me/cibsecurity/53590", "content": "\u203c CVE-2022-44283 \u203c\n\nAVS Audio Converter 10.3 is vulnerable to Buffer Overflow.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-28T18:28:16.000000Z"}, {"uuid": "9e7d07f2-dfc4-4ae7-a218-65e92a2cd31f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4428", "type": "seen", "source": "https://t.me/cibsecurity/56360", "content": "\u203c CVE-2022-4428 \u203c\n\nsupport_uri parameter in the WARP client local settings file (mdm.xml) lacked proper validation which allowed for privilege escalation and launching an arbitrary executable on the local machine upon clicking on the \"Send feedback\" option. An attacker with access to the local file system could use a crafted XML config file pointing to a malicious file or set a local path to the executable using Cloudflare Zero Trust Dashboard (for Zero Trust enrolled clients).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-11T20:43:48.000000Z"}, {"uuid": "ff3db5d7-1f17-4c07-97a7-c270c560141c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44280", "type": "seen", "source": "https://t.me/cibsecurity/53428", "content": "\u203c CVE-2022-44280 \u203c\n\nAutomotive Shop Management System v1.0 is vulnerable to Delete any file via /asms/classes/Master.php?f=delete_img.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-23T18:14:07.000000Z"}, {"uuid": "47aa06f9-28ba-4614-a696-3c7f0afadf9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44289", "type": "seen", "source": "https://t.me/cibsecurity/54069", "content": "\u203c CVE-2022-44289 \u203c\n\nThinkphp 5.1.41 and 5.0.24 has a code logic error which causes file upload getshell.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-06T18:41:20.000000Z"}]}