{"vulnerability": "CVE-2021-4026", "sightings": [{"uuid": "cf0a1c72-a19e-43a5-83f7-529c04e059ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4026", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-887b81fb-d3ea0e1ba8258ecc", "content": "", "creation_timestamp": "2025-06-01T02:57:47.033174Z"}, {"uuid": "5c1272e7-bdb7-4cee-986c-206220a5c257", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40263", "type": "seen", "source": "https://t.me/cibsecurity/68970", "content": "\u203c CVE-2021-40263 \u203c\n\nA heap overflow vulnerability in FreeImage 1.18.0 via the ofLoad function in PluginTIFF.cpp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-22T22:18:17.000000Z"}, {"uuid": "e9518f3d-1fb6-46ff-a703-c016adc869cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4026", "type": "seen", "source": "https://t.me/cibsecurity/33136", "content": "\u203c CVE-2021-4026 \u203c\n\nbookstack is vulnerable to Improper Access Control\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-30T22:34:45.000000Z"}, {"uuid": "e942a1eb-fea7-4911-9a9e-ca830ffbe933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40261", "type": "seen", "source": "https://t.me/cibsecurity/32023", "content": "\u203c CVE-2021-40261 \u203c\n\nMultiple Cross Site Scripting (XSS) vulnerabilities exist in SourceCodester CASAP Automated Enrollment System 1.0 via the (1) user_username and (2) category parameters in save_class.php, the (3) firstname, (4) class, and (5) status parameters in student_table.php, the (6) category and (7) class_name parameters in add_class1.php, the (8) fname, (9) mname,(10) lname, (11) address, (12) class, (13) gfname, (14) gmname, (15) glname, (16) rship, (17) status, (18) transport, and (19) route parameters in add_student.php, the (20) fname, (21) mname, (22) lname, (23) address, (24) class, (25) fgname, (26) gmname, (27) glname, (28) rship, (29) status, (30) transport, and (31) route parameters in save_stud.php,the (32) status, (33) fname, and (34) lname parameters in add_user.php, the (35) username, (36) firstname, and (37) status parameters in users.php, the (38) fname, (39) lname, and (40) status parameters in save_user.php, and the (41) activity_log, (42) aprjun, (43) class, (44) janmar, (45) Julsep,(46) octdec, (47) Students and (48) users parameters in table_name.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-09T00:29:14.000000Z"}, {"uuid": "5c09a2b3-c6b9-47d0-bef8-07f16dd160e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40260", "type": "seen", "source": "https://t.me/cibsecurity/32022", "content": "\u203c CVE-2021-40260 \u203c\n\nMultiple Cross Site Scripting (XSS) vulnerabilities exist in SourceCodester Tailor Management 1.0 via the (1) eid parameter in (a) partedit.php and (b) customeredit.php, the (2) id parameter in (a) editmeasurement.php and (b) addpayment.php, and the (3) error parameter in index.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-09T00:29:13.000000Z"}, {"uuid": "60a8cb22-f11c-4d24-abdd-3339101aca2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40265", "type": "seen", "source": "https://t.me/cibsecurity/69004", "content": "\u203c CVE-2021-40265 \u203c\n\nA heap overflow bug exists FreeImage before 1.18.0 via ofLoad function in PluginJPEG.cpp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-22T22:25:05.000000Z"}, {"uuid": "0a436a6f-539a-42e6-81f9-d84bca32d873", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40264", "type": "seen", "source": "https://t.me/cibsecurity/69001", "content": "\u203c CVE-2021-40264 \u203c\n\nNULL pointer dereference vulnerability in FreeImage before 1.18.0 via the FreeImage_CloneTag function inFreeImageTag.cpp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-22T22:25:01.000000Z"}, {"uuid": "a13e8031-119b-4e19-b472-9f6eb77cea05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40262", "type": "seen", "source": "https://t.me/cibsecurity/68974", "content": "\u203c CVE-2021-40262 \u203c\n\nA stack exhaustion issue was discovered in FreeImage before 1.18.0 via the Validate function in PluginRAW.cpp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-08-22T22:21:51.000000Z"}]}