{"vulnerability": "cve-2022-4303", "sightings": [{"uuid": "f42626bd-e264-4833-80a7-786ca6c14fd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43031", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14303", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-43031\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: DedeCMS v6.1.9 was discovered to contain a Cross-Site Request Forgery (CSRF) which allows attackers to arbitrarily add Administrator accounts and modify Admin passwords.\n\ud83d\udccf Published: 2022-11-09T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T15:07:14.229Z\n\ud83d\udd17 References:\n1. https://github.com/cai-niao98/Dedecmsv6\n2. https://gist.github.com/cai-niao98/77a7aa934492c2d651b37b75243eda0b", "creation_timestamp": "2025-05-01T15:15:22.000000Z"}, {"uuid": "282775f8-b027-4922-a377-293d06dcea96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43034", "type": "seen", "source": "https://t.me/cibsecurity/51780", "content": "\u203c CVE-2022-43034 \u203c\n\nAn issue was discovered in Bento4 v1.6.0-639. There is a heap buffer overflow vulnerability in the AP4_BitReader::SkipBits(unsigned int) function in mp42ts.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:17.000000Z"}, {"uuid": "1eb42918-f3c1-41a8-b91b-3969dbdfa46b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43033", "type": "seen", "source": "https://t.me/cibsecurity/51779", "content": "\u203c CVE-2022-43033 \u203c\n\nAn issue was discovered in Bento4 1.6.0-639. There is a bad free in the component AP4_HdlrAtom::~AP4_HdlrAtom() which allows attackers to cause a Denial of Service (DoS) via a crafted input.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:15.000000Z"}, {"uuid": "d66b6147-c66b-47a9-86f2-0a383c8a17b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43039", "type": "seen", "source": "https://t.me/cibsecurity/51778", "content": "\u203c CVE-2022-43039 \u203c\n\nGPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gf_isom_meta_restore_items_ref at /isomedia/meta.c.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:14.000000Z"}, {"uuid": "e4d757ab-c558-4f9a-83c4-769e030770e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43038", "type": "seen", "source": "https://t.me/cibsecurity/51777", "content": "\u203c CVE-2022-43038 \u203c\n\nBento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4_BitReader::ReadCache() function in mp42ts.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:13.000000Z"}, {"uuid": "1ab20ee2-ed45-4448-91a9-f1c131aa300b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43037", "type": "seen", "source": "https://t.me/cibsecurity/51775", "content": "\u203c CVE-2022-43037 \u203c\n\nAn issue was discovered in Bento4 1.6.0-639. There is a memory leak in the function AP4_File::ParseStream in /Core/Ap4File.cpp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:11.000000Z"}, {"uuid": "f69dbdfd-aef2-4465-811c-c01fa61ede52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43035", "type": "seen", "source": "https://t.me/cibsecurity/51787", "content": "\u203c CVE-2022-43035 \u203c\n\nAn issue was discovered in Bento4 v1.6.0-639. There is a heap-buffer-overflow in AP4_Dec3Atom::AP4_Dec3Atom at Ap4Dec3Atom.cpp, leading to a Denial of Service (DoS), as demonstrated by mp42aac.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:29.000000Z"}, {"uuid": "0f549e1f-4d99-4cc7-b697-5853fd1bc0ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43032", "type": "seen", "source": "https://t.me/cibsecurity/51786", "content": "\u203c CVE-2022-43032 \u203c\n\nAn issue was discovered in Bento4 v1.6.0-639. There is a memory leak in AP4_DescriptorFactory::CreateDescriptorFromStream in Core/Ap4DescriptorFactory.cpp, as demonstrated by mp42aac.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-19T18:15:25.000000Z"}]}