{"vulnerability": "cve-2022-2798", "sightings": [{"uuid": "c854eb51-49b4-47bc-996c-e04118b8f455", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2798", "type": "seen", "source": "https://t.me/cibsecurity/49864", "content": "\u203c CVE-2022-2798 \u203c\n\nThe Affiliates Manager WordPress plugin before 2.9.14 does not validate and sanitise the affiliate data, which could allow users registering as affiliate to perform CSV injection attacks against an admin exporting the data\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:38:56.000000Z"}, {"uuid": "3d990d52-206a-4f68-a11e-bb7e522d5a6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27984", "type": "seen", "source": "https://t.me/cibsecurity/41434", "content": "\u203c CVE-2022-27984 \u203c\n\nCuppaCMS v1.0 was discovered to contain a SQL injection vulnerability via the menu_filter parameter at /administrator/templates/default/html/windows/right.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-26T18:37:13.000000Z"}, {"uuid": "961b58fa-9b76-439d-83e2-442c8c0918a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27985", "type": "seen", "source": "https://t.me/cibsecurity/41433", "content": "\u203c CVE-2022-27985 \u203c\n\nCuppaCMS v1.0 was discovered to contain a SQL injection vulnerability via /administrator/alerts/alertLightbox.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-26T18:37:12.000000Z"}, {"uuid": "7edf4d69-00ad-4a50-b758-e46d379478dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27983", "type": "seen", "source": "https://t.me/cibsecurity/41730", "content": "\u203c CVE-2022-27983 \u203c\n\nRG-NBR-E Enterprise Gateway RG-NBR2100G-E was discovered to contain an arbitrary file read vulnerability via the url parameter in check.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-02T18:32:55.000000Z"}, {"uuid": "109d803e-21c0-4485-acf3-8d157130d76b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27982", "type": "seen", "source": "https://t.me/cibsecurity/41729", "content": "\u203c CVE-2022-27982 \u203c\n\nRG-NBR-E Enterprise Gateway RG-NBR2100G-E was discovered to contain a remote code execution (RCE) vulnerability via the fileName parameter at /guest_auth/cfg/upLoadCfg.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-02T18:32:54.000000Z"}]}