{"vulnerability": "cve-2022-3853", "sightings": [{"uuid": "351efb22-dfa4-419d-9c42-1e3d0103410e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38532", "type": "seen", "source": "https://gist.github.com/jeraldjunkmail/ee0ad43aba73dd2e8960007d9955b4c2", "content": "", "creation_timestamp": "2025-06-11T18:40:35.000000Z"}, {"uuid": "30530040-c8ae-4edc-bdbd-9595051c158b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38532", "type": "seen", "source": "https://gist.github.com/jeraldjunkmail/fe1c2e33393e241b86f89150e3b5c455", "content": "", "creation_timestamp": "2025-06-11T18:42:10.000000Z"}, {"uuid": "c4c8c34d-8983-4ce3-8f89-9c71f6b5036e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3853", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12856", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3853\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Cross-site Scripting (XSS) is a client-side code injection attack. The attacker aims to execute malicious scripts in a web browser of the victim by including malicious code in a legitimate web page or web application.\n\ud83d\udccf Published: 2022-12-12T17:54:45.964Z\n\ud83d\udccf Modified: 2025-04-22T14:55:55.048Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/c2bc7d23-5bfd-481c-b42b-da7ee80d9514", "creation_timestamp": "2025-04-22T15:03:32.000000Z"}, {"uuid": "4e64c6c1-70a7-449b-bebb-2ef8019a4c6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3853", "type": "seen", "source": "https://t.me/cibsecurity/54340", "content": "\u203c CVE-2022-3853 \u203c\n\nCross-site Scripting (XSS) is a client-side code injection attack. The attacker aims to execute malicious scripts in a web browser of the victim by including malicious code in a legitimate web page or web application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-12T20:21:03.000000Z"}, {"uuid": "dd3f94b4-d464-4d9e-9efc-e959b1d1448f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38538", "type": "seen", "source": "https://t.me/cibsecurity/49642", "content": "\u203c CVE-2022-38538 \u203c\n\nArchery v1.7.0 to v1.8.5 was discovered to contain a SQL injection vulnerability via the checksum parameter in the report module.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T18:25:24.000000Z"}, {"uuid": "f71bdab3-66fa-427f-8650-b2a73635ab72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38532", "type": "seen", "source": "https://t.me/cibsecurity/50109", "content": "\u203c CVE-2022-38532 \u203c\n\nMicro-Star International Co., Ltd MSI Center 1.0.50.0 was discovered to contain a vulnerability in the component C_Features of MSI.CentralServer.exe. This vulnerability allows attackers to escalate privileges via running a crafted executable.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-20T02:38:30.000000Z"}, {"uuid": "1565bf45-870b-42d6-a850-e87337c486f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38537", "type": "seen", "source": "https://t.me/cibsecurity/49655", "content": "\u203c CVE-2022-38537 \u203c\n\nArchery v1.4.5 to v1.8.5 was discovered to contain multiple SQL injection vulnerabilities via the start_file, end_file, start_time, and stop_time parameters in the binlog2sql interface.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-13T18:25:39.000000Z"}, {"uuid": "48f3a9c2-35d7-4468-ac91-45f08a0d4a04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38533", "type": "seen", "source": "https://t.me/cibsecurity/48841", "content": "\u203c CVE-2022-38533 \u203c\n\nIn GNU Binutils before 2.4.0, there is a heap-buffer-overflow in the error function bfd_getl32 when called from the strip_main function in strip-new via a crafted file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-26T07:29:41.000000Z"}]}