{"vulnerability": "CVE-2022-4711", "sightings": [{"uuid": "f9e3048b-5173-4cc4-a5ca-a26cf3485ac3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47112", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12596", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-47112\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: 7-Zip through 24.09 does not report an error for certain invalid xz files, involving stream flags and reserved bits.\n\ud83d\udccf Published: 2025-04-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-19T20:54:15.597Z\n\ud83d\udd17 References:\n1. https://github.com/boofish/semantic-bugs/", "creation_timestamp": "2025-04-19T20:59:58.000000Z"}, {"uuid": "9b83389a-6aef-42a4-9357-d196b14154b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47111", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12595", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-47111\n\ud83d\udd25 CVSS Score: 2.5 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: 7-Zip through 24.09 does not report an error for certain invalid xz files, involving block flags and reserved bits.\n\ud83d\udccf Published: 2025-04-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-19T20:56:02.896Z\n\ud83d\udd17 References:\n1. https://github.com/boofish/semantic-bugs/", "creation_timestamp": "2025-04-19T20:59:57.000000Z"}, {"uuid": "8d3191d2-4643-4ba2-a470-f078c38add9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47116", "type": "seen", "source": "https://t.me/cibsecurity/55651", "content": "\u203c CVE-2022-47116 \u203c\n\nTenda A15 V15.13.07.13 was discovered to contain a stack overflow via the SYSPS parameter at /goform/SysToolChangePwd.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-31T00:27:42.000000Z"}, {"uuid": "95e55d1d-e0b4-4b1b-9319-6c43b962cd8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47112", "type": "seen", "source": "https://t.me/cvedetector/23400", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-47112 - 7-Zip XZ File Format Parsing Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2022-47112 \nPublished : April 19, 2025, 9:15 p.m. | 1\u00a0hour, 47\u00a0minutes ago \nDescription : 7-Zip 22.01 does not report an error for certain invalid xz files, involving stream flags and reserved bits. Some later versions are unaffected. \nSeverity: 2.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-20T01:10:38.000000Z"}, {"uuid": "7edd38a7-cdeb-49ba-88dd-7b4536c508b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47111", "type": "seen", "source": "https://t.me/cvedetector/23399", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2022-47111 - 7-Zip XZ File Format Parsing Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2022-47111 \nPublished : April 19, 2025, 9:15 p.m. | 1\u00a0hour, 47\u00a0minutes ago \nDescription : 7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected. \nSeverity: 2.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-20T01:10:37.000000Z"}, {"uuid": "2f434db6-f829-49c2-8c02-55a71a5ddd79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4711", "type": "seen", "source": "https://t.me/cibsecurity/56242", "content": "\u203c CVE-2022-4711 \u203c\n\nThe Royal Elementor Addons plugin for WordPress is vulnerable to insufficient access control in the 'wpr_save_mega_menu_settings' AJAX action in versions up to, and including, 1.3.59. This allows any authenticated user, including those with subscriber-level permissions, to enable and modify Mega Menu settings for any menu item.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-10T20:28:35.000000Z"}, {"uuid": "6a825244-4325-4e3b-a0d4-2739009fa782", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47115", "type": "seen", "source": "https://t.me/cibsecurity/55598", "content": "\u203c CVE-2022-47115 \u203c\n\nTenda A15 V15.13.07.13 was discovered to contain a stack overflow via the wepauth parameter at /goform/WifiBasicSet.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-31T00:20:26.000000Z"}]}