{"vulnerability": "CVE-2022-4308", "sightings": [{"uuid": "03a9217e-0d05-40de-83a3-4803e521d9a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43085", "type": "seen", "source": "https://t.me/cibsecurity/52385", "content": "\u203c CVE-2022-43085 \u203c\n\nAn arbitrary file upload vulnerability in add_product.php of Restaurant POS System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-01T17:14:07.000000Z"}, {"uuid": "ff41039b-6af8-418b-a367-54a73cbed72f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4308", "type": "seen", "source": "Telegram/Ng2d7KOtZMk4d0cjlLBShtBkKtDcBXnVeO024jOwMabu5kOX", "content": "", "creation_timestamp": "2025-02-06T02:43:29.000000Z"}, {"uuid": "4f1cc73f-068f-4873-947b-5f8359256c43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4308", "type": "seen", "source": "https://t.me/cibsecurity/62465", "content": "\u203c CVE-2022-4308 \u203c\n\nPlaintext Storage of a Password vulnerability in Secomea GateManager (USB wizard) allows Authentication abuse on SiteManager, if the generated file is leaked.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-19T16:30:05.000000Z"}, {"uuid": "610b017f-2f43-4581-9851-436d3792cbb5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43083", "type": "seen", "source": "https://t.me/cibsecurity/52379", "content": "\u203c CVE-2022-43083 \u203c\n\nAn arbitrary file upload vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-01T17:14:00.000000Z"}, {"uuid": "75dd38de-a0fd-414a-8267-828882d0a733", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43086", "type": "seen", "source": "https://t.me/cibsecurity/52374", "content": "\u203c CVE-2022-43086 \u203c\n\nRestaurant POS System v1.0 was discovered to contain a SQL injection vulnerability via update_customer.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-01T17:13:51.000000Z"}, {"uuid": "0f4edb33-3ae7-477a-839f-5b04bcc3807a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43084", "type": "seen", "source": "https://t.me/cibsecurity/52377", "content": "\u203c CVE-2022-43084 \u203c\n\nA cross-site scripting (XSS) vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the v_name parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-01T17:13:54.000000Z"}, {"uuid": "bca41d5b-c080-4929-bb2f-4c4420c9b484", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43081", "type": "seen", "source": "https://t.me/cibsecurity/52386", "content": "\u203c CVE-2022-43081 \u203c\n\nFast Food Ordering System v1.0 was discovered to contain a SQL injection vulnerability via the component /fastfood/purchase.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-01T17:14:09.000000Z"}, {"uuid": "5d2e4f40-7e43-41e9-97e8-62c85402eccf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-43082", "type": "seen", "source": "https://t.me/cibsecurity/52368", "content": "\u203c CVE-2022-43082 \u203c\n\nA cross-site scripting (XSS) vulnerability in /fastfood/purchase.php of Fast Food Ordering System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the customer parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-01T17:13:43.000000Z"}]}