{"vulnerability": "cve-2022-4610", "sightings": [{"uuid": "83c6978e-160e-4528-979a-99966874a376", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46109", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12294", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-46109\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Tenda AC15 V15.03.06.23 is vulnerable to Buffer Overflow via function formSetClientState.\n\ud83d\udccf Published: 2022-12-16T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-17T17:48:32.235Z\n\ud83d\udd17 References:\n1. https://github.com/z1r00/IOT_Vul/tree/main/Tenda/AC10/formSetClientState", "creation_timestamp": "2025-04-17T17:57:23.000000Z"}, {"uuid": "77574a8e-cd12-467d-8625-92c69de9f327", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46102", "type": "seen", "source": "https://t.me/cibsecurity/55126", "content": "\u203c CVE-2022-46102 \u203c\n\nAyaCMS 3.1.2 is vulnerable to Arbitrary file upload via /aya/module/admin/fst_down.inc.php\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T20:13:49.000000Z"}, {"uuid": "7b3eefdc-27d6-403f-aea6-104a9cc984cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4610", "type": "seen", "source": "https://t.me/cibsecurity/54881", "content": "\u203c CVE-2022-4610 \u203c\n\nA vulnerability, which was classified as problematic, has been found in Click Studios Passwordstate and Passwordstate Browser Extension Chrome. Affected by this issue is some unknown functionality. The manipulation leads to risky cryptographic algorithm. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-216272.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-19T18:11:32.000000Z"}, {"uuid": "26ddbe83-a3b9-4555-8a80-79369b478713", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46101", "type": "seen", "source": "https://t.me/cibsecurity/55123", "content": "\u203c CVE-2022-46101 \u203c\n\nAyaCMS v3.1.2 was found to have a code flaw in the ust_sql.inc.php file, which allows attackers to cause command execution by inserting malicious code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-22T20:13:45.000000Z"}, {"uuid": "e558b189-96ce-4237-8e2c-ec2600586ab9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-46109", "type": "seen", "source": "https://t.me/cibsecurity/54774", "content": "\u203c CVE-2022-46109 \u203c\n\nTenda AC15 V15.03.06.23 is vulnerable to Buffer Overflow via function formSetClientState.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-16T20:24:44.000000Z"}]}