{"vulnerability": "cve-2022-4572", "sightings": [{"uuid": "a393e0b4-01bd-4b9b-bb30-049d4e0546c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45729", "type": "seen", "source": "https://t.me/cibsecurity/56450", "content": "\u203c CVE-2022-45729 \u203c\n\nA cross-site scripting (XSS) vulnerability in Doctor Appointment Management System v1.0.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Employee ID parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-13T00:30:29.000000Z"}, {"uuid": "2160fd76-1d6c-41e2-bfa7-124c5d295ed5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45728", "type": "seen", "source": "https://t.me/cibsecurity/56453", "content": "\u203c CVE-2022-45728 \u203c\n\nDoctor Appointment Management System v1.0.0 was discovered to contain a cross-site scripting (XSS) vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-13T00:30:32.000000Z"}, {"uuid": "800b5b7d-22b5-4360-8762-96ba2e4c3a67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45722", "type": "seen", "source": "https://t.me/cibsecurity/57550", "content": "\u203c CVE-2022-45722 \u203c\n\nezEIP v5.3.0(0649) was discovered to contain a cross-site scripting (XSS) vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-06T16:22:58.000000Z"}, {"uuid": "361d534d-f9b5-487c-9b68-f8c8c186d6fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45724", "type": "seen", "source": "https://t.me/cibsecurity/57997", "content": "\u203c CVE-2022-45724 \u203c\n\nIncorrect Access Control in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to perform any HTTP request to an unauthenticated page to force the server to generate a SESSION_ID, and using this SESSION_ID an attacker can then perform authenticated requests.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-13T16:29:45.000000Z"}, {"uuid": "cd260fad-7b48-46d2-879e-5e27c7b89995", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-45725", "type": "seen", "source": "https://t.me/cibsecurity/57996", "content": "\u203c CVE-2022-45725 \u203c\n\nImproper Input Validation in Comfast router CF-WR6110N V2.3.1 allows a remote attacker on the same network to execute arbitrary code on the target via an HTTP POST request\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-13T16:29:44.000000Z"}]}