{"vulnerability": "CVE-2021-4059", "sightings": [{"uuid": "17353290-e109-45ea-994d-ca5355b638a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40595", "type": "seen", "source": "https://t.me/cibsecurity/36047", "content": "\u203c CVE-2021-40595 \u203c\n\nSQL injection vulnerability in Sourcecodester Online Leave Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /leave_system/classes/Login.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-21T22:13:36.000000Z"}, {"uuid": "0d1b0bda-cf84-4982-ae0d-b218fe4d6387", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40592", "type": "seen", "source": "https://t.me/cibsecurity/44059", "content": "\u203c CVE-2021-40592 \u203c\n\nGPAC version before commit 71460d72ec07df766dab0a4d52687529f3efcf0a (version v1.0.1 onwards) contains loop with unreachable exit condition ('infinite loop') vulnerability in ISOBMFF reader filter, isoffin_read.c. Function isoffin_process() can result in DoS by infinite loop. To exploit, the victim must open a specially crafted mp4 file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-08T22:32:29.000000Z"}, {"uuid": "7fb23803-bd37-4fb3-a8d6-e8f03eaf6091", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40597", "type": "seen", "source": "https://t.me/cibsecurity/45385", "content": "\u203c CVE-2021-40597 \u203c\n\nThe firmware of EDIMAX IC-3140W Version 3.11 is hardcoded with Administrator username and password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-30T00:37:48.000000Z"}, {"uuid": "4507d2f0-7c3b-420d-8063-529e2704529d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40596", "type": "seen", "source": "https://t.me/cibsecurity/36132", "content": "\u203c CVE-2021-40596 \u203c\n\nSQL injection vulnerability in Login.php in sourcecodester Online Learning System v2 by oretnom23, allows attackers to execute arbitrary SQL commands via the faculty_id parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-24T18:17:30.000000Z"}]}