{"vulnerability": "cve-2022-3863", "sightings": [{"uuid": "2c2defda-02b7-44ec-b5a9-e199a087e0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38633", "type": "seen", "source": "https://t.me/cibsecurity/49744", "content": "\u203c CVE-2022-38633 \u203c\n\nGenymotion Desktop v3.2.1 was discovered to contain a DLL hijacking vulnerability which allows attackers to escalate privileges and execute arbitrary code via a crafted binary.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-14T02:25:48.000000Z"}, {"uuid": "35f8d6d9-f28c-419a-94a0-3aaf97517389", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3863", "type": "seen", "source": "https://t.me/cibsecurity/55792", "content": "\u203c CVE-2022-3863 \u203c\n\nUse after free in Browser History in Google Chrome prior to 100.0.4896.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chrome security severity: High)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-03T02:16:52.000000Z"}, {"uuid": "e4cc4699-2c25-483c-8352-3ac1b714b7cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38638", "type": "seen", "source": "https://t.me/cibsecurity/49562", "content": "\u203c CVE-2022-38638 \u203c\n\nCasdoor v1.97.3 was discovered to contain an arbitrary file write vulnerability via the fullFilePath parameter at /api/upload-resource.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-10T01:23:07.000000Z"}, {"uuid": "cfed025c-a190-494e-80ab-bbb5cc1adf29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38639", "type": "seen", "source": "https://t.me/cibsecurity/49555", "content": "\u203c CVE-2022-38639 \u203c\n\nA cross-site scripting (XSS) vulnerability in Markdown-Nice v1.8.22 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Community Posting field.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-09T22:26:33.000000Z"}]}