{"vulnerability": "CVE-2019-2090", "sightings": [{"uuid": "600b43e5-fbf8-40c9-8187-347a280bd202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-20909", "type": "seen", "source": "https://t.me/cibsecurity/13517", "content": "ATENTION\u203c New - CVE-2019-20909\n\nAn issue was discovered in GNU LibreDWG through 0.9.3. There is a NULL pointer dereference in the function dwg_encode_LWPOLYLINE in dwg.spec.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-07-16T22:55:40.000000Z"}, {"uuid": "3896aeda-c5f8-4567-88e4-bd37e1cfba89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2019-20907", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0395/", "content": "", "creation_timestamp": "2026-04-02T17:00:00.000000Z"}, {"uuid": "a8311823-5157-4aa1-906e-c4aa1a518529", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-20902", "type": "seen", "source": "https://t.me/cibsecurity/14976", "content": "\u203c CVE-2019-20902 \u203c\n\nUpgrading Crowd via XML Data Transfer can reactivate a disabled user from OpenLDAP. The affected versions are from before version 3.4.6 and from 3.5.0 before 3.5.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-10-01T07:52:37.000000Z"}, {"uuid": "96322c5b-c551-49d0-ae84-25bf5413c73c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-20903", "type": "seen", "source": "https://t.me/cibsecurity/14977", "content": "\u203c CVE-2019-20903 \u203c\n\nThe hyperlinks functionality in atlaskit/editor-core in before version 113.1.5 allows remote attackers to inject arbitrary HTML or JavaScript via a Cross-Site Scripting (XSS) vulnerability in link targets.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-10-01T07:52:38.000000Z"}]}