{"vulnerability": "cve-2022-2628", "sightings": [{"uuid": "8a49a13b-8c9a-4137-aa32-ead8d04a18e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26280", "type": "seen", "source": "https://t.me/cibsecurity/39701", "content": "\u203c CVE-2022-26280 \u203c\n\nLibarchive v3.6.0 was discovered to contain an out-of-bounds read via the component zipx_lzma_alone_init.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-29T02:40:50.000000Z"}, {"uuid": "31bbc15d-a5f0-468c-bbfd-681407a1bde6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26285", "type": "seen", "source": "https://t.me/cibsecurity/39362", "content": "\u203c CVE-2022-26285 \u203c\n\nSimple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the apply endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-22T07:14:30.000000Z"}, {"uuid": "0b78b4ce-ca50-4f76-b14f-5147b927e226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26284", "type": "seen", "source": "https://t.me/cibsecurity/39356", "content": "\u203c CVE-2022-26284 \u203c\n\nSimple Client Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the manage_client endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-22T01:26:34.000000Z"}, {"uuid": "2488bb6c-fb1b-4bb6-8b1e-6727f8a2b5f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26283", "type": "seen", "source": "https://t.me/cibsecurity/39355", "content": "\u203c CVE-2022-26283 \u203c\n\nSimple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the view_plan endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-22T01:26:33.000000Z"}]}