{"vulnerability": "CVE-2021-4057", "sightings": [{"uuid": "dad4c354-2776-4385-9c39-c92fc741394e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40577", "type": "seen", "source": "https://t.me/cibsecurity/32001", "content": "\u203c CVE-2021-40577 \u203c\n\nA Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Online Enrollment Management System in PHP and PayPal Free Source Code 1.0 in the Add-Users page via the Name parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T20:29:33.000000Z"}, {"uuid": "034e1c72-99c3-4028-8930-aa0f25de5577", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40574", "type": "seen", "source": "Telegram/8Ua1uuFsS4lVaniA9Qwngl2mtnFv6wibcBJHKD_UZWfR12aH", "content": "", "creation_timestamp": "2025-03-06T02:17:24.000000Z"}, {"uuid": "be8cd615-ffdb-49a8-be1f-bdc25f12d72a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40578", "type": "seen", "source": "https://t.me/cibsecurity/33534", "content": "\u203c CVE-2021-40578 \u203c\n\nAuthenticated Blind & Error-based SQL injection vulnerability was discovered in Online Enrollment Management System in PHP and PayPal Free Source Code 1.0, that allows attackers to obtain sensitive information and execute arbitrary SQL commands via IDNO parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-08T00:23:13.000000Z"}, {"uuid": "34c3d3b6-5177-4509-94ed-47b02cebf875", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40570", "type": "seen", "source": "https://t.me/cibsecurity/35425", "content": "\u203c CVE-2021-40570 \u203c\n\nThe binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the avc_compute_poc function in av_parsers.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-13T20:18:23.000000Z"}, {"uuid": "0519a40b-ca9d-46aa-9062-2d96bc570994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40571", "type": "seen", "source": "https://t.me/cibsecurity/35431", "content": "\u203c CVE-2021-40571 \u203c\n\nThe binary MP4Box in Gpac 1.0.1 has a double-free vulnerability in the ilst_box_read function in box_code_apple.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-13T20:18:29.000000Z"}]}