{"vulnerability": "CVE-2021-27513", "sightings": [{"uuid": "9729677a-b48a-4d99-8c22-326ac1dbca96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-27513", "type": "seen", "source": "https://t.me/cibsecurity/23895", "content": "\u203c CVE-2021-27514 \u203c\n\nEyesOfNetwork 5.3-10 uses an integer of between 8 and 10 digits for the session ID, which might be leveraged for brute-force authentication bypass (such as in CVE-2021-27513 exploitation).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-22T02:53:40.000000Z"}, {"uuid": "19eb4ff3-7d52-4cb9-ae73-bf3d374be38c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-27513", "type": "seen", "source": "https://t.me/cibsecurity/23894", "content": "\u203c CVE-2021-27513 \u203c\n\nThe module admin_ITSM in EyesOfNetwork 5.3-10 allows remote authenticated users to upload arbitrary .xml.php files because it relies on \"le filtre userside.\"\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-22T02:53:39.000000Z"}]}