{"vulnerability": "cve-2022-2799", "sightings": [{"uuid": "9a9b4d99-0664-4b37-bc45-0bc2c41ab172", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-2799", "type": "seen", "source": "https://t.me/cibsecurity/49872", "content": "\u203c CVE-2022-2799 \u203c\n\nThe Affiliates Manager WordPress plugin before 2.9.14 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T12:42:00.000000Z"}, {"uuid": "9dfdf983-c509-4b04-875d-8e818b4d12d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27992", "type": "seen", "source": "https://t.me/cibsecurity/40370", "content": "\u203c CVE-2022-27992 \u203c\n\nZoo Management System v1.0 was discovered to contain a SQL injection vulnerability at /public_html/animals via the class_id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-08T12:38:30.000000Z"}, {"uuid": "5b9417d6-6e59-4f3e-9ee5-a06b15277fa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-27991", "type": "seen", "source": "https://t.me/cibsecurity/40361", "content": "\u203c CVE-2022-27991 \u203c\n\nOnline Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities at /staff_login.php via the Staff ID and Staff Password parameters.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-08T12:38:18.000000Z"}]}