{"vulnerability": "CVE-2021-40097", "sightings": [{"uuid": "cb635d10-5697-4ef9-bc85-11a44d54699b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40097", "type": "seen", "source": "https://t.me/cibsecurity/29451", "content": "\u203c CVE-2021-40097 \u203c\n\nAn issue was discovered in Concrete CMS through 8.5.5. Authenticated path traversal leads to to remote code execution via uploaded PHP code, related to the bFilename parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-27T16:34:50.000000Z"}]}