{"vulnerability": "CVE-2020-2164", "sightings": [{"uuid": "4f749086-2b4f-4261-9c63-49ffdabf4221", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-21643", "type": "seen", "source": "https://t.me/cibsecurity/63092", "content": "\u203c CVE-2020-21643 \u203c\n\nCross Site Scripting (XSS) vulnerability in HongCMS 3.0 allows attackers to run arbitrary code via the callback parameter to /ajax/myshop.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-04-29T00:27:32.000000Z"}, {"uuid": "9c281443-5a33-4af4-8206-e260740547ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-21641", "type": "seen", "source": "https://t.me/cibsecurity/48186", "content": "\u203c CVE-2020-21641 \u203c\n\nOut-of-Band XML External Entity (OOB-XXE) vulnerability in Zoho ManageEngine Analytics Plus before 4.3.5 allows remote attackers to read arbitrary files, enumerate folders and scan internal ports via crafted XML license file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-16T00:38:23.000000Z"}]}