{"vulnerability": "cve-2022-4774", "sightings": [{"uuid": "3fa612ae-3f95-43e2-b691-79665bc283a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47740", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10457", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-47740\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Seltmann GmbH Content Management System 6 is vulnerable to SQL Injection via /index.php.\n\ud83d\udccf Published: 2023-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-04T14:06:58.385Z\n\ud83d\udd17 References:\n1. https://github.com/blockomat2100/PoCs/blob/main/seltmann_gmbh_cms.md", "creation_timestamp": "2025-04-04T14:36:05.000000Z"}, {"uuid": "a409d432-8eb3-4ae4-8d7d-02748677c710", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47745", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10458", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-47745\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: ZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can complete SQL injection by constructing a special request and sending it to function importNotice.\n\ud83d\udccf Published: 2023-01-19T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-04T14:05:04.966Z\n\ud83d\udd17 References:\n1. https://github.com/l3s10n/ZenTaoPMS_SqlInjection\n2. https://github.com/easysoft/zentaopms/issues/106", "creation_timestamp": "2025-04-04T14:36:07.000000Z"}, {"uuid": "2ba33edd-4342-49fb-9b17-88b1821d32a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4774", "type": "seen", "source": "https://t.me/cibsecurity/64125", "content": "\u203c CVE-2022-4774 \u203c\n\nThe Bit Form WordPress plugin before 1.9 does not validate the file types uploaded via it's file upload form field, allowing unauthenticated users to upload arbitrary files types such as PHP or HTML files to the server, leading to Remote Code Execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-05-15T16:43:18.000000Z"}, {"uuid": "aa282abe-6dac-41c3-9792-4edb7c0da9ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47747", "type": "seen", "source": "https://t.me/cibsecurity/56775", "content": "\u203c CVE-2022-47747 \u203c\n\nkraken &lt;= 0.1.4 has an arbitrary file read vulnerability via the component testfs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-20T20:22:52.000000Z"}, {"uuid": "ee36642f-d44c-473f-aadd-93be5aa8e389", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47740", "type": "seen", "source": "https://t.me/cibsecurity/56728", "content": "\u203c CVE-2022-47740 \u203c\n\nSeltmann GmbH Content Management System 6 is vulnerable to SQL Injection via /index.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-19T20:22:21.000000Z"}, {"uuid": "28f52729-8bbe-4a2b-a7f4-e0ebd6533cb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-47745", "type": "seen", "source": "https://t.me/cibsecurity/56725", "content": "\u203c CVE-2022-47745 \u203c\n\nZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can complete SQL injection by constructing a special request and sending it to function importNotice.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-01-19T20:22:18.000000Z"}]}