{"vulnerability": "CVE-2021-4265", "sightings": [{"uuid": "54b16c18-8837-4c13-a9e4-3513829026a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42650", "type": "seen", "source": "https://t.me/cibsecurity/30737", "content": "\u203c CVE-2021-42650 \u203c\n\nCross Site Scripting (XSS vulnerability exists in Portainer before 2.9.1 via the node input box in Custom Templates.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-19T00:32:16.000000Z"}, {"uuid": "f8185e16-b861-49b9-97aa-98e336908d82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42654", "type": "seen", "source": "https://t.me/cibsecurity/43246", "content": "\u203c CVE-2021-42654 \u203c\n\nSiteServer CMS < V5.1 is affected by an unrestricted upload of a file with dangerous type (getshell), which could be used to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-24T16:50:57.000000Z"}, {"uuid": "33d16b07-3c97-4eb0-8633-dac389233dc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42655", "type": "seen", "source": "https://t.me/cibsecurity/43245", "content": "\u203c CVE-2021-42655 \u203c\n\nSiteServer CMS V6.15.51 is affected by a SQL injection vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-24T16:50:56.000000Z"}, {"uuid": "67f573f5-b669-4d3e-b82c-864ae0b8e28b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42656", "type": "seen", "source": "https://t.me/cibsecurity/43241", "content": "\u203c CVE-2021-42656 \u203c\n\nSiteServer CMS V6.15.51 is affected by a Cross Site Scripting (XSS) vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-24T16:47:50.000000Z"}, {"uuid": "f6ce3cfe-637e-49d3-a5b3-f5506a8000d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-42659", "type": "seen", "source": "https://t.me/cibsecurity/43240", "content": "\u203c CVE-2021-42659 \u203c\n\nThere is a buffer overflow vulnerability in the Web server httpd of the router in Tenda router devices such as Tenda AC9 V1.0 V15.03.02.19(6318) and Tenda AC9 V3.0 V15.03.06.42_multi. When setting the virtual service, the httpd program will crash and exit when the super-long list parameter occurs.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-24T18:27:39.000000Z"}]}