{"vulnerability": "CVE-2021-4363", "sightings": [{"uuid": "9a8d007a-dd51-4b21-8675-5071cd50884e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43635", "type": "seen", "source": "https://t.me/cibsecurity/36864", "content": "\u203c CVE-2021-43635 \u203c\n\nA Cross Site Scripting (XSS) vulnerability exists in Codex before 1.4.0 via Notebook/Page name field, which allows malicious users to execute arbitrary code via a crafted http code in a .json file.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-04T20:31:00.000000Z"}, {"uuid": "b67cd604-c5bb-4e7c-b34c-428088685d86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43633", "type": "seen", "source": "https://t.me/cibsecurity/40770", "content": "\u203c CVE-2021-43633 \u203c\n\nSourcecodester Messaging Web Application 1.0 is vulnerable to stored XSS. If a sender inserts valid scripts into the chat, the script will be executed on the receiver chat.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-14T16:19:14.000000Z"}, {"uuid": "05c7e290-6462-45e4-93d3-473e97ca8f8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43630", "type": "seen", "source": "https://t.me/cibsecurity/34513", "content": "\u203c CVE-2021-43630 \u203c\n\nProjectworlds Hospital Management System v1.0 is vulnerable to SQL injection via multiple parameters in add_patient.php. As a result, an authenticated malicious user can compromise the databases system and in some cases leverage this vulnerability to get remote code execution on the remote web server.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-22T20:18:34.000000Z"}]}