{"vulnerability": "CVE-2021-3924", "sightings": [{"uuid": "982b572f-9b53-4ab5-ae73-82b38bc4d97b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39246", "type": "published-proof-of-concept", "source": "https://t.me/cKure/7313", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 CVE-2021-39246 \u2013 Tor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack excessive verbose logging \u2013 Windows, macOS, Linux\n\nhttps://sick.codes/sick-2021-111/", "creation_timestamp": "2021-09-26T06:30:57.000000Z"}, {"uuid": "bb52fc23-ebcc-41f2-b4fd-e231e2e7c226", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39243", "type": "seen", "source": "https://t.me/cibsecurity/27677", "content": "\u203c CVE-2021-39243 \u203c\n\nCross-Site Request Forgery (CSRF) exists on Altus Nexto, Nexto Xpress, and Hadron Xtorm devices via any CGI endpoint. This affects Nexto NX3003 1.8.11.0, Nexto NX3004 1.8.11.0, Nexto NX3005 1.8.11.0, Nexto NX3010 1.8.3.0, Nexto NX3020 1.8.3.0, Nexto NX3030 1.8.3.0, Nexto NX5100 1.8.11.0, Nexto NX5101 1.8.11.0, Nexto NX5110 1.1.2.8, Nexto NX5210 1.1.2.8, Nexto Xpress XP300 1.8.11.0, Nexto Xpress XP315 1.8.11.0, Nexto Xpress XP325 1.8.11.0, Nexto Xpress XP340 1.8.11.0, and Hadron Xtorm HX3040 1.7.58.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-23T12:22:45.000000Z"}, {"uuid": "b4c86e29-d6da-4f69-84ad-7a428e366cfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3924", "type": "seen", "source": "https://t.me/cibsecurity/31889", "content": "\u203c CVE-2021-3924 \u203c\n\ngrav is vulnerable to Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-05T17:26:43.000000Z"}, {"uuid": "3c41acc0-7287-4d5b-a3f1-08d68577747d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39245", "type": "seen", "source": "https://t.me/cibsecurity/27676", "content": "\u203c CVE-2021-39245 \u203c\n\nHardcoded .htaccess Credentials for getlogs.cgi exist on Altus Nexto, Nexto Xpress, and Hadron Xtorm devices. This affects Nexto NX3003 1.8.11.0, Nexto NX3004 1.8.11.0, Nexto NX3005 1.8.11.0, Nexto NX3010 1.8.3.0, Nexto NX3020 1.8.3.0, Nexto NX3030 1.8.3.0, Nexto NX5100 1.8.11.0, Nexto NX5101 1.8.11.0, Nexto NX5110 1.1.2.8, Nexto NX5210 1.1.2.8, Nexto Xpress XP300 1.8.11.0, Nexto Xpress XP315 1.8.11.0, Nexto Xpress XP325 1.8.11.0, Nexto Xpress XP340 1.8.11.0, and Hadron Xtorm HX3040 1.7.58.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-23T12:22:44.000000Z"}, {"uuid": "0118a4eb-d183-4de8-a3eb-d8ed2f28d500", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39244", "type": "seen", "source": "https://t.me/cibsecurity/27678", "content": "\u203c CVE-2021-39244 \u203c\n\nAuthenticated Semi-Blind Command Injection (via Parameter Injection) exists on Altus Nexto, Nexto Xpress, and Hadron Xtorm devices via the getlogs.cgi tcpdump feature. This affects Nexto NX3003 1.8.11.0, Nexto NX3004 1.8.11.0, Nexto NX3005 1.8.11.0, Nexto NX3010 1.8.3.0, Nexto NX3020 1.8.3.0, Nexto NX3030 1.8.3.0, Nexto NX5100 1.8.11.0, Nexto NX5101 1.8.11.0, Nexto NX5110 1.1.2.8, Nexto NX5210 1.1.2.8, Nexto Xpress XP300 1.8.11.0, Nexto Xpress XP315 1.8.11.0, Nexto Xpress XP325 1.8.11.0, Nexto Xpress XP340 1.8.11.0, and Hadron Xtorm HX3040 1.7.58.0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-23T12:22:46.000000Z"}, {"uuid": "8ad9770b-a9fa-4c6e-9b11-c2064b0fe09b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39246", "type": "seen", "source": "https://t.me/cibsecurity/29402", "content": "\u203c CVE-2021-39246 \u203c\n\nTor Browser through 10.5.6 and 11.x through 11.0a4 allows a correlation attack that can compromise the privacy of visits to v2 onion addresses. If --log or --verbose is used, exact timestamps of these onion-service visits are logged locally, and an attacker might be able to compare them to timestamp data collected by the destination server (or collected by a rogue site within the Tor network).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-24T22:31:02.000000Z"}, {"uuid": "a8a65f15-3bbb-4282-bf5d-c7e0688b9097", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39249", "type": "seen", "source": "https://t.me/cibsecurity/27473", "content": "\u203c CVE-2021-39249 \u203c\n\nInvision Community (aka IPS Community Suite or IP-Board) before 4.6.5.1 allows reflected XSS because the filenames of uploaded files become predictable through a brute-force attack against the PHP mt_rand function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-18T02:16:15.000000Z"}, {"uuid": "e08c8e3a-d4c4-42d8-a48f-6273a2b23d41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39240", "type": "seen", "source": "https://t.me/cibsecurity/27462", "content": "\u203c CVE-2021-39240 \u203c\n\nAn issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It does not ensure that the scheme and path portions of a URI have the expected characters. For example, the authority field (as observed on a target HTTP/2 server) might differ from what the routing rules were intended to achieve.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-17T22:16:18.000000Z"}, {"uuid": "b256f74b-85b2-4dd9-b178-2146f5122656", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39241", "type": "seen", "source": "https://t.me/cibsecurity/27455", "content": "\u203c CVE-2021-39241 \u203c\n\nAn issue was discovered in HAProxy 2.0 before 2.0.24, 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. An HTTP method name may contain a space followed by the name of a protected resource. It is possible that a server would interpret this as a request for that protected resource, such as in the \"GET /admin? HTTP/1.1 /static/images HTTP/1.1\" example.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-17T22:16:10.000000Z"}, {"uuid": "4d3df2f6-c118-426a-a5b3-0d1953902ae5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39242", "type": "seen", "source": "https://t.me/cibsecurity/27447", "content": "\u203c CVE-2021-39242 \u203c\n\nAn issue was discovered in HAProxy 2.2 before 2.2.16, 2.3 before 2.3.13, and 2.4 before 2.4.3. It can lead to a situation with an attacker-controlled HTTP Host header, because a mismatch between Host and authority is mishandled.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-17T22:15:57.000000Z"}, {"uuid": "0a0ac6c9-e1df-485d-99cd-b86b2b2e940c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-39246", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4386", "content": "#exploit\n1. CVE-2021-39246:\nTor Browser through 10.5.6, 11.x through 11.0a4 allows a correlation attack excessive verbose logging - Windows, macOS, Linux\nhttps://sick.codes/sick-2021-111\n2. CVE-2020-10086:\nGitLab 10.4 - 12.8.1 - Directory Traversal\nhttps://github.com/Mochican/CVE-2021-10086", "creation_timestamp": "2021-09-27T13:09:13.000000Z"}]}