{"vulnerability": "CVE-2021-23899", "sightings": [{"uuid": "c02d0e03-05c6-42d0-b1fa-b4f0ec7371e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23899", "type": "seen", "source": "https://t.me/arpsyndicate/2818", "content": "#ExploitObserverAlert\n\nCVE-2021-23899\n\nDESCRIPTION: Exploit Observer has 5 entries in 2 file formats related to CVE-2021-23899. OWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.\n\nFIRST-EPSS: 0.002450000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2024-01-16T00:56:53.000000Z"}, {"uuid": "e58e4cde-49b5-4b95-81bf-86a13cb9a380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-23899", "type": "seen", "source": "https://t.me/cibsecurity/22095", "content": "\u203c CVE-2021-23899 \u203c\n\nOWASP json-sanitizer before 1.2.2 may emit closing SCRIPT tags and CDATA section delimiters for crafted input. This allows an attacker to inject arbitrary HTML or XML into embedding documents.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-13T19:25:34.000000Z"}]}