{"vulnerability": "CVE-2022-4044", "sightings": [{"uuid": "4e009563-92cb-499e-86e7-349a60b07dec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40443", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lg7ad5bhdy2x", "content": "", "creation_timestamp": "2025-01-20T21:02:00.221008Z"}, {"uuid": "1b8fa03d-e9fa-44c5-ac13-bf185f67ad12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40443", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-40443.yaml", "content": "", "creation_timestamp": "2025-01-16T09:28:49.000000Z"}, {"uuid": "386d014e-3165-4f10-be75-5e328852dee5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40447", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17677", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40447\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojia_list.php.\n\ud83d\udccf Published: 2022-09-22T13:32:37.000Z\n\ud83d\udccf Modified: 2025-05-27T15:52:29.673Z\n\ud83d\udd17 References:\n1. https://github.com/liong007/ZZCMS/issues/5", "creation_timestamp": "2025-05-27T16:53:11.000000Z"}, {"uuid": "29908546-7428-4a35-a703-f6f44c6405d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40446", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17675", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40446\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: ZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&amp;groupid=.\n\ud83d\udccf Published: 2022-09-22T13:32:36.000Z\n\ud83d\udccf Modified: 2025-05-27T15:56:37.792Z\n\ud83d\udd17 References:\n1. https://github.com/liong007/ZZCMS/issues/4", "creation_timestamp": "2025-05-27T16:53:06.000000Z"}, {"uuid": "2dee281e-2f25-426c-adf9-4d5783e43566", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40444", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17667", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40444\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: ZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? _server.\n\ud83d\udccf Published: 2022-09-22T13:32:35.000Z\n\ud83d\udccf Modified: 2025-05-27T16:14:39.393Z\n\ud83d\udd17 References:\n1. https://github.com/liong007/ZZCMS/issues/2", "creation_timestamp": "2025-05-27T16:52:55.000000Z"}, {"uuid": "1ad88f9d-69e4-4e14-90bb-47d5b8cde28d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40443", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17666", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-40443\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /one/siteinfo.php.\n\ud83d\udccf Published: 2022-09-22T13:32:34.000Z\n\ud83d\udccf Modified: 2025-05-27T16:15:21.257Z\n\ud83d\udd17 References:\n1. https://github.com/liong007/ZZCMS/issues/1", "creation_timestamp": "2025-05-27T16:52:51.000000Z"}, {"uuid": "be730b4c-1be0-42a0-969b-06015db9b6c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40444", "type": "seen", "source": "https://t.me/cibsecurity/50268", "content": "\u203c CVE-2022-40444 \u203c\n\nZZCMS 2022 was discovered to contain a full path disclosure vulnerability via the page /admin/index.PHP? _server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-22T18:12:21.000000Z"}, {"uuid": "c1d47cee-3cf4-46b1-b1d6-9496b78dacd1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40447", "type": "seen", "source": "https://t.me/cibsecurity/50265", "content": "\u203c CVE-2022-40447 \u203c\n\nZZCMS 2022 was discovered to contain a SQL injection vulnerability via the keyword parameter at /admin/baojia_list.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-22T18:12:17.000000Z"}, {"uuid": "d2481aea-0c4c-4359-bfad-d7933c2e16c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40443", "type": "seen", "source": "https://t.me/cibsecurity/50264", "content": "\u203c CVE-2022-40443 \u203c\n\nAn absolute path traversal vulnerability in ZZCMS 2022 allows attackers to obtain sensitive information via a crafted GET request sent to /one/siteinfo.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-22T18:12:16.000000Z"}, {"uuid": "879229da-a8e8-4269-b386-15e60a9b49ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-40446", "type": "seen", "source": "https://t.me/cibsecurity/50263", "content": "\u203c CVE-2022-40446 \u203c\n\nZZCMS 2022 was discovered to contain a SQL injection vulnerability via the component /admin/sendmailto.php?tomail=&amp;groupid=.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-22T18:12:16.000000Z"}, {"uuid": "5f877f58-7e45-42ee-97e1-bbe0750e20de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4044", "type": "seen", "source": "https://t.me/cibsecurity/53410", "content": "\u203c CVE-2022-4044 \u203c\n\nA denial-of-service vulnerability in Mattermost allows an authenticated user to crash the server via multiple large autoresponder messages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-23T12:13:44.000000Z"}]}