{"vulnerability": "cve-2022-3840", "sightings": [{"uuid": "4deccb54-9700-43a9-a43e-1c45d3e65ece", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-3840", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/11612", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-3840\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Login for Google Apps WordPress plugin before 3.4.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\ud83d\udccf Published: 2022-12-26T12:28:09.060Z\n\ud83d\udccf Modified: 2025-04-14T13:36:20.832Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/71414436-ef54-4ce6-94e2-62e68d1a371d", "creation_timestamp": "2025-04-14T13:54:57.000000Z"}, {"uuid": "58d77aa3-a40f-43fa-83da-63390a067cb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38408", "type": "seen", "source": "https://t.me/cibsecurity/49939", "content": "\u203c CVE-2022-38408 \u203c\n\nAdobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an Improper Input Validation vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file. requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T20:29:09.000000Z"}, {"uuid": "f6feb3ef-bddc-4587-a61a-a5ac7d800550", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38409", "type": "seen", "source": "https://t.me/cibsecurity/49930", "content": "\u203c CVE-2022-38409 \u203c\n\nAdobe Illustrator versions 26.4 (and earlier) and 25.4.7 (and earlier) are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. An attacker could leverage this vulnerability to bypass mitigations such as ASLR. Exploitation of this issue requires user interaction in that a victim must open a malicious file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-16T20:28:58.000000Z"}, {"uuid": "362b733e-fafc-4cc0-ba19-473beff07b04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-38400", "type": "seen", "source": "https://t.me/cibsecurity/49442", "content": "\u203c CVE-2022-38400 \u203c\n\nMailform Pro CGI 4.3.1 and earlier allow a remote unauthenticated attacker to obtain the user input data by having a use of the product to access a specially crafted URL.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-08T12:15:01.000000Z"}]}