{"vulnerability": "cve-2020-1888", "sightings": [{"uuid": "e95ea4eb-1604-463d-8fad-6249b394a55b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-18886", "type": "seen", "source": "https://t.me/cibsecurity/27638", "content": "\u203c CVE-2020-18886 \u203c\n\nUnrestricted File Upload in PHPMyWind v5.6 allows remote attackers to execute arbitrary code via the component 'admin/upload_file_do.php'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-20T18:31:53.000000Z"}, {"uuid": "038b3bd0-0450-466a-a6cf-7d3e7af488d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-18885", "type": "seen", "source": "https://t.me/cibsecurity/27640", "content": "\u203c CVE-2020-18885 \u203c\n\nCommand Injection in PHPMyWind v5.6 allows remote attackers to execute arbitrary code via the \"text color\" field of the component '/admin/web_config.php'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-20T18:34:50.000000Z"}, {"uuid": "2caf3666-dc45-4676-8e47-9b186213ae87", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-18888", "type": "published-proof-of-concept", "source": "Telegram/pjy2dVN_JdaQ3ohYVFEhzKW69yU3sPubERsh3wnzvFoTvnw", "content": "", "creation_timestamp": "2021-05-07T17:46:44.000000Z"}, {"uuid": "7fe384b0-1361-4c0b-bab3-de80f76061d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-18889", "type": "published-proof-of-concept", "source": "Telegram/c8CTlGLh2XOBmjgSkO3vEgPD8le5HG-lvSwoYktelPdd_HI", "content": "", "creation_timestamp": "2021-05-07T17:46:56.000000Z"}]}