{"vulnerability": "CVE-2021-3529", "sightings": [{"uuid": "a3994eaf-ae87-4a5b-a0ea-bbde8b0f09d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35296", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/620", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aPOC of CVE-2021-35296 - PTCL Modem HG150-Ub\nURL\uff1ahttps://github.com/afaq1337/CVE-2021-35296", "creation_timestamp": "2021-09-30T18:08:29.000000Z"}, {"uuid": "f9c0ac4d-1d49-41a5-a703-caa8a2bb7a57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35296", "type": "published-proof-of-concept", "source": "https://t.me/hack_room_channel/62", "content": "#exploit\n CVE-2021-35296:\nPTCL Modem HG150-Ub - Authentication Bypass through response manipulation\nhttps://github.com/afaq1337/CVE-2021-35296", "creation_timestamp": "2022-01-05T15:35:34.000000Z"}, {"uuid": "a612d841-e045-4446-ba12-3fd95c772067", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35290", "type": "seen", "source": "https://t.me/cibsecurity/58894", "content": "\u203c CVE-2021-35290 \u203c\n\nFile Upload vulnerability in balerocms-src 0.8.3 allows remote attackers to run arbitrary code via rich text editor on /admin/main/mod-blog page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-25T00:19:34.000000Z"}, {"uuid": "7d25682c-b838-47c8-a802-5535d3df713a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35296", "type": "seen", "source": "https://t.me/cibsecurity/29893", "content": "\u203c CVE-2021-35296 \u203c\n\nAn issue in the administrator authentication panel of PTCL HG150-Ub v3.0 allows attackers to bypass authentication via modification of the cookie value and Response Path.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-04T20:23:33.000000Z"}, {"uuid": "0afea3d9-b610-4a39-85c7-cea810d7f1be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35297", "type": "seen", "source": "https://t.me/cibsecurity/29794", "content": "\u203c CVE-2021-35297 \u203c\n\nScalabium dBase Viewer version 2.6 (Build 5.751) is vulnerable to remote code execution via a crafted DBF file that triggers a buffer overflow. An attacker can use the Structured Exception Handler (SEH) records and redirect execution to attacker-controlled code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-01T16:15:07.000000Z"}, {"uuid": "2e02a5c9-f950-4ff8-b750-ae71c56d33b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35298", "type": "seen", "source": "https://t.me/cibsecurity/25762", "content": "\u203c CVE-2021-35298 \u203c\n\nCross Site Scripting (XSS) in Zammad 1.0.x up to 4.0.0 allows remote attackers to execute arbitrary web script or HTML via multiple models that contain a 'note' field to store additional information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-29T00:27:59.000000Z"}, {"uuid": "52dc0d2c-68ff-4fc0-a34a-6b253125d724", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35299", "type": "seen", "source": "https://t.me/cibsecurity/25768", "content": "\u203c CVE-2021-35299 \u203c\n\nIncorrect Access Control in Zammad 1.0.x up to 4.0.0 allows attackers to obtain sensitive information via email connection configuration probing.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-29T00:28:07.000000Z"}, {"uuid": "e6eb6882-437f-40f3-9a0e-8325b1f846bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35296", "type": "published-proof-of-concept", "source": "https://t.me/BlueRedTeam/1591", "content": "#exploit\n\n1. CVE-2021-35296:\nPTCL Modem HG150-Ub - Authentication Bypass through response manipulation\nhttps://github.com/afaq1337/CVE-2021-35296\n\n2. CVE-2017-5816:\nRCE in HP Intelligent Management Center (iMC) PLAT\nhttps://oxagast.org/posts/CVE-2017-5816\n\n@BlueRedTeam", "creation_timestamp": "2022-01-05T10:15:33.000000Z"}, {"uuid": "5275f31c-6074-474a-a14b-eb76d719208d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-35296", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5131", "content": "#exploit\n1. CVE-2021-35296:\nPTCL Modem HG150-Ub - Authentication Bypass through response manipulation\nhttps://github.com/afaq1337/CVE-2021-35296\n\n2. CVE-2017-5816:\nRCE in HP Intelligent Management Center (iMC) PLAT\nhttps://oxagast.org/posts/CVE-2017-5816", "creation_timestamp": "2022-01-05T11:33:20.000000Z"}]}