{"vulnerability": "CVE-2021-4088", "sightings": [{"uuid": "e4e98cf9-ec47-4368-8355-f272f55ec8f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40883", "type": "seen", "source": "https://t.me/cibsecurity/33977", "content": "\u203c CVE-2021-40883 \u203c\n\nA Remote Code Execution (RCE) vulnerability exists in emlog 5.3.1 via content/plugins.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-14T22:14:50.000000Z"}, {"uuid": "cf20ff49-50dc-4945-b9f8-f182a6be2cd5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-4088", "type": "seen", "source": "https://t.me/cibsecurity/36131", "content": "\u203c CVE-2021-4088 \u203c\n\nSQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server with privilege escalation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-24T18:17:29.000000Z"}, {"uuid": "2cf7cd99-5c96-4e5d-b5ec-1cd39f397146", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40882", "type": "seen", "source": "https://t.me/cibsecurity/33957", "content": "\u203c CVE-2021-40882 \u203c\n\nA Cross Site Scripting (XSS) vulnerability exists in Piwigo 11.5.0 via the system album name and description of the location.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-14T20:13:17.000000Z"}, {"uuid": "ce22d4eb-8805-4ade-a89e-87763616dd30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40881", "type": "seen", "source": "https://t.me/cibsecurity/28960", "content": "\u203c CVE-2021-40881 \u203c\n\nAn issue in the BAT file parameters of PublicCMS v4.0 allows attackers to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-16T02:22:23.000000Z"}, {"uuid": "1d5d83d7-0420-4865-a205-74de14f2b323", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40887", "type": "seen", "source": "https://t.me/cibsecurity/30328", "content": "\u203c CVE-2021-40887 \u203c\n\nProjectsend version r1295 is affected by a directory traversal vulnerability. Because of lacking sanitization input for files[] parameter, an attacker can add ../ to move all PHP files or any file on the system that has permissions to /upload/files/ folder.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-11T14:24:44.000000Z"}, {"uuid": "63c8791f-8d00-4242-a5df-e9b4ed4bcd3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40884", "type": "seen", "source": "https://t.me/cibsecurity/30314", "content": "\u203c CVE-2021-40884 \u203c\n\nProjectsend version r1295 is affected by sensitive information disclosure. Because of not checking authorization in ids parameter in files-edit.php and id parameter in process.php function, a user with uploader role can download and edit all files of users in application.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-11T14:24:29.000000Z"}, {"uuid": "4ffdd616-f568-4100-b8d6-d314b94871e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40888", "type": "seen", "source": "https://t.me/cibsecurity/30327", "content": "\u203c CVE-2021-40888 \u203c\n\nProjectsend version r1295 is affected by Cross Site Scripting (XSS) due to lack of sanitization when echo output data in returnFilesIds() function. A low privilege user can call this function through process.php file and execute scripting code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-11T14:24:43.000000Z"}, {"uuid": "5c10aa6f-70d5-4b02-9e1e-4d88b840c4da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40886", "type": "seen", "source": "https://t.me/cibsecurity/30323", "content": "\u203c CVE-2021-40886 \u203c\n\nProjectsend version r1295 is affected by a directory traversal vulnerability. A user with Uploader role can add value `2` for `chunks` parameter to bypass `fileName` sanitization.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-11T14:24:39.000000Z"}, {"uuid": "f19cf3e4-eb6c-4693-b80d-7ba9055fc4bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-40889", "type": "seen", "source": "https://t.me/cibsecurity/30313", "content": "\u203c CVE-2021-40889 \u203c\n\nCMSUno version 1.7.2 is affected by a PHP code execution vulnerability. sauvePass action in {webroot}/uno/central.php file calls to file_put_contents() function to write username in password.php file when a user successfully changed their password. The attacker can inject malicious PHP code into password.php and then use the login function to execute code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-11T14:24:25.000000Z"}]}