{"vulnerability": "CVE-2022-4034", "sightings": [{"uuid": "4a47f8ed-b337-456f-bd1c-98b37adae491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40347", "type": "exploited", "source": "https://www.exploit-db.com/exploits/51274", "content": "", "creation_timestamp": "2023-04-06T00:00:00.000000Z"}, {"uuid": "fe00f72d-b9d7-4e42-9782-2a12eb2135a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40347", "type": "seen", "source": "https://t.me/cibsecurity/58432", "content": "\u203c CVE-2022-40347 \u203c\n\nSQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-17T16:13:09.000000Z"}, {"uuid": "352d7e19-bf80-4b8d-893f-ba470af4806a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40348", "type": "seen", "source": "https://t.me/cibsecurity/58502", "content": "\u203c CVE-2022-40348 \u203c\n\nCross Site Scripting (XSS) vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'name' and 'email' parameters, allows attackers to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-18T07:13:44.000000Z"}, {"uuid": "56a3a441-564e-4394-a187-2a08c73d733a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40341", "type": "seen", "source": "https://t.me/cibsecurity/50806", "content": "\u203c CVE-2022-40341 \u203c\n\nmojoPortal v2.7 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted PNG file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-30T22:36:37.000000Z"}]}