{"vulnerability": "cve-2022-3132", "sightings": [{"uuid": "3519d59f-f631-4f68-b63b-ab7ad182865a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31322", "type": "seen", "source": "https://t.me/cibsecurity/49741", "content": "\u203c CVE-2022-31322 \u203c\n\nPenta Security Systems Inc WAPPLES v6.0 r3 4.10-hotfix1 allows attackers to escalate privileges via overwriting files using SUID flagged executables.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-14T02:25:45.000000Z"}, {"uuid": "805f0d74-94e6-4c5d-b1e2-cfe31369fcea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31324", "type": "seen", "source": "https://t.me/cibsecurity/49748", "content": "\u203c CVE-2022-31324 \u203c\n\nAn arbitrary file download vulnerability in the downloadAction() function of Penta Security Systems Inc WAPPLES v6.0 r3 4.10-hotfix1 allows attackers to download arbitrary files via a crafted POST request.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-14T02:25:55.000000Z"}, {"uuid": "89e902b5-50f0-4f96-9c8e-fc41a9950cad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-31325", "type": "seen", "source": "https://t.me/cibsecurity/44044", "content": "\u203c CVE-2022-31325 \u203c\n\nThere is a SQL Injection vulnerability in ChurchCRM 4.4.5 via the 'PersonID' field in /churchcrm/WhyCameEditor.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-08T20:32:23.000000Z"}]}