{"vulnerability": "cve-2022-4716", "sightings": [{"uuid": "c88d3cc9-b2d8-4915-9a60-e9d27e8f24dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47168", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113646164775749151", "content": "", "creation_timestamp": "2024-12-13T15:14:16.810757Z"}, {"uuid": "a1b01a17-c4da-4204-834d-95160429fa56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47169", "type": "seen", "source": "https://t.me/cibsecurity/66898", "content": "\u203c CVE-2022-47169 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in StaxWP Visibility Logic for Elementor plugin <=\u00c2\u00a02.3.4 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-07-18T16:31:11.000000Z"}, {"uuid": "6b51847f-fff1-4923-b2be-952691e1afcd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47167", "type": "seen", "source": "https://t.me/cibsecurity/64519", "content": "\u203c CVE-2022-47167 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Aram Kocharyan Crayon Syntax Highlighter plugin <=\u00c2\u00a02.8.4 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-22T14:25:32.000000Z"}, {"uuid": "9cd74f68-e7d1-41fd-b981-76fc5a22d023", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47166", "type": "seen", "source": "https://t.me/cibsecurity/59878", "content": "\u203c CVE-2022-47166 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in voidCoders Void Contact Form 7 Widget For Elementor Page Builder plugin <= 2.1.1 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-13T13:23:08.000000Z"}, {"uuid": "203a271e-35ba-4db1-b7c9-9a2c5866336d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47163", "type": "seen", "source": "https://t.me/cibsecurity/59943", "content": "\u203c CVE-2022-47163 \u203c\n\nCross-Site Request Forgery (CSRF) vulnerability in Tips and Tricks HQ, josh401 WP CSV to Database \u00e2\u20ac\u201c Insert CSV file content into WordPress plugin <= 2.6 versions.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-03-14T12:53:59.000000Z"}, {"uuid": "4aa26630-3285-486e-9754-0ed1e4ee3c39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4716", "type": "seen", "source": "https://t.me/cibsecurity/56853", "content": "\u203c CVE-2022-4716 \u203c\n\nThe WP Popups WordPress plugin before 2.1.4.8 does not validate and escape some of its shortcode attributes before outputting them back in the page, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attacks which could be used against high privilege users such as admins.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-23T18:31:11.000000Z"}]}