{"vulnerability": "CVE-2021-4373", "sightings": [{"uuid": "c65ac974-de9f-4d3c-b54d-b6f5f7ffb1fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43735", "type": "seen", "source": "https://t.me/cibsecurity/39426", "content": "\u203c CVE-2021-43735 \u203c\n\nCmsWing 1.3.7 is affected by a SQLi vulnerability via parameter: behavior rule.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-23T19:28:48.000000Z"}, {"uuid": "d6212bb5-88b7-46d5-ba61-fbb44f5d6735", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43734", "type": "seen", "source": "https://t.me/cibsecurity/37491", "content": "\u203c CVE-2021-43734 \u203c\n\nkkFileview v4.0.0 has arbitrary file read through a directory traversal vulnerability which may lead to sensitive file leak on related host.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T16:34:33.000000Z"}, {"uuid": "88b90bf6-d161-4376-b635-8f52bbc23967", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43737", "type": "seen", "source": "https://t.me/cibsecurity/39425", "content": "\u203c CVE-2021-43737 \u203c\n\nAn issus was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can modify administrator account's password.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-23T19:28:47.000000Z"}, {"uuid": "33f506db-fc9d-439b-b755-e4d268467a41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43738", "type": "seen", "source": "https://t.me/cibsecurity/39422", "content": "\u203c CVE-2021-43738 \u203c\n\nAn issue was discovered in xiaohuanxiong CMS 5.0.17. There is a CSRF vulnerability that can that can add the administrator account.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-23T19:28:42.000000Z"}, {"uuid": "7f2bf654-5e51-4fcf-96a5-75d161228895", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-43736", "type": "seen", "source": "https://t.me/cibsecurity/39421", "content": "\u203c CVE-2021-43736 \u203c\n\nCmsWing CMS 1.3.7 is affected by a Remote Code Execution (RCE) vulnerability via parameter: log rule\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-23T19:28:41.000000Z"}]}