{"vulnerability": "CVE-2020-2590", "sightings": [{"uuid": "3381bebb-e69b-40c5-809c-d3de777260d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25905", "type": "seen", "source": "https://t.me/cibsecurity/36465", "content": "\u203c CVE-2020-25905 \u203c\n\nAn SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in (1) login.php or (2) LoginAsAdmin.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-28T18:26:48.000000Z"}, {"uuid": "2f1d3211-e95c-4803-b291-9a4ebebda54b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25902", "type": "seen", "source": "https://t.me/cibsecurity/24337", "content": "\u203c CVE-2020-25902 \u203c\n\nBlackboard Collaborate Ultra 20.02 is affected by a cross-site scripting (XSS) vulnerability. The XSS payload will execute on the class room, which leads to stealing cookies from users who join the class.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-03-02T16:44:21.000000Z"}, {"uuid": "564784ef-8f38-4209-a88a-5268a08505d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-25901", "type": "seen", "source": "https://t.me/cibsecurity/21076", "content": "\u203c CVE-2020-25901 \u203c\n\nHost Header Injection in Spiceworks 7.5.7.0 allowing the attacker to render arbitrary links that point to a malicious website with poisoned Host header webpages.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-18T18:43:57.000000Z"}]}