{"vulnerability": "cve-2022-2565", "sightings": [{"uuid": "01fb7757-2d3e-48c1-baa9-e776181b84d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2565", "type": "seen", "source": "https://t.me/cibsecurity/49291", "content": "\u203c CVE-2022-2565 \u203c\n\nThe Simple Payment Donations & Subscriptions WordPress plugin before 4.2.1 does not sanitise and escape user input given in its forms, which could allow unauthenticated attackers to perform Cross-Site Scripting attacks against admins\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-05T16:12:17.000000Z"}, {"uuid": "19bbba0b-d750-4da1-977d-21bdef62bcc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25659", "type": "seen", "source": "https://t.me/cibsecurity/49238", "content": "\u203c CVE-2022-25659 \u203c\n\nMemory corruption due to buffer overflow while parsing MKV clips with invalid bitmap size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-02T16:39:31.000000Z"}, {"uuid": "f00b6ac6-94d7-4405-92d2-8cd91ccd4dd7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25654", "type": "seen", "source": "https://t.me/cibsecurity/49880", "content": "\u203c CVE-2022-25654 \u203c\n\nMemory corruption in kernel due to improper input validation while processing ION commands in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Wearables\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:42:12.000000Z"}, {"uuid": "1ad1170b-e6df-4bbc-8fe9-c2eac2e01c36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25652", "type": "seen", "source": "https://t.me/cibsecurity/49889", "content": "\u203c CVE-2022-25652 \u203c\n\nCryptographic issues in BSP due to improper hash verification in Snapdragon Wired Infrastructure and Networking\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:44:58.000000Z"}, {"uuid": "707de2a0-4277-4bde-9a85-5d6d3dcf50cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25653", "type": "seen", "source": "https://t.me/cibsecurity/49888", "content": "\u203c CVE-2022-25653 \u203c\n\nInformation disclosure in video due to buffer over-read while processing avi file in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:42:22.000000Z"}, {"uuid": "d648ec9e-7711-4695-a8b6-daea8ad61164", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25656", "type": "seen", "source": "https://t.me/cibsecurity/49887", "content": "\u203c CVE-2022-25656 \u203c\n\nPossible integer overflow and memory corruption due to improper validation of buffer size sent to write to console when computing the payload size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:42:21.000000Z"}, {"uuid": "70544b9b-98a7-4a2e-b26e-88acb724c214", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-25650", "type": "seen", "source": "https://t.me/cibsecurity/40602", "content": "\u203c CVE-2022-25650 \u203c\n\nA vulnerability has been identified in Mendix Applications using Mendix 7 (All versions < V7.23.27), Mendix Applications using Mendix 8 (All versions < V8.18.14), Mendix Applications using Mendix 9 (All versions < V9.12.0), Mendix Applications using Mendix 9 (V9.6) (All versions < V9.6.3). When querying the database, it is possible to sort the results using a protected field. With this an authenticated attacker could extract information about the contents of a protected field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-12T12:23:24.000000Z"}]}