https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 07 Jun 2026 10:53:59 +0000 https://db.gcve.eu/sighting/8b915176-bc4e-42a0-bed4-2ef617ee294f/export {"uuid": "8b915176-bc4e-42a0-bed4-2ef617ee294f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35475", "type": "seen", "source": "https://t.me/cibsecurity/25700", "content": "\u203c CVE-2021-35475 \u203c\n\nSAS Environment Manager 2.5 allows XSS through the Name field when creating/editing a server. The XSS will prompt when editing the Configuration Properties.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-25T14:19:25.000000Z"} {"uuid": "8b915176-bc4e-42a0-bed4-2ef617ee294f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35475", "type": "seen", "source": "https://t.me/cibsecurity/25700", "content": "\u203c CVE-2021-35475 \u203c\n\nSAS Environment Manager 2.5 allows XSS through the Name field when creating/editing a server. The XSS will prompt when editing the Configuration Properties.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-25T14:19:25.000000Z"} https://db.gcve.eu/sighting/8b915176-bc4e-42a0-bed4-2ef617ee294f/export Fri, 25 Jun 2021 14:19:25 +0000 https://db.gcve.eu/sighting/51f985c0-b3c2-4b20-a5ed-d1a0f3cca4fb/export {"uuid": "51f985c0-b3c2-4b20-a5ed-d1a0f3cca4fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35474", "type": "seen", "source": "https://t.me/cibsecurity/25810", "content": "\u203c CVE-2021-35474 \u203c\n\nStack-based Buffer Overflow vulnerability in cachekey plugin of Apache Traffic Server. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-30T12:29:47.000000Z"} {"uuid": "51f985c0-b3c2-4b20-a5ed-d1a0f3cca4fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35474", "type": "seen", "source": "https://t.me/cibsecurity/25810", "content": "\u203c CVE-2021-35474 \u203c\n\nStack-based Buffer Overflow vulnerability in cachekey plugin of Apache Traffic Server. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.0.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-06-30T12:29:47.000000Z"} https://db.gcve.eu/sighting/51f985c0-b3c2-4b20-a5ed-d1a0f3cca4fb/export Wed, 30 Jun 2021 12:29:47 +0000 https://db.gcve.eu/sighting/c4bb2e7a-8e85-4882-9751-32c996d0a61b/export {"uuid": "c4bb2e7a-8e85-4882-9751-32c996d0a61b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35478", "type": "seen", "source": "https://t.me/cibsecurity/26612", "content": "\u203c CVE-2021-35478 \u203c\n\nNagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function. All parameters used for filtering are affected. This affects users who open a crafted link or third-party web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-30T18:21:23.000000Z"} {"uuid": "c4bb2e7a-8e85-4882-9751-32c996d0a61b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35478", "type": "seen", "source": "https://t.me/cibsecurity/26612", "content": "\u203c CVE-2021-35478 \u203c\n\nNagios Log Server before 2.1.9 contains Reflected XSS in the dropdown box for the alert history and audit log function. All parameters used for filtering are affected. This affects users who open a crafted link or third-party web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-30T18:21:23.000000Z"} https://db.gcve.eu/sighting/c4bb2e7a-8e85-4882-9751-32c996d0a61b/export Fri, 30 Jul 2021 18:21:23 +0000 https://db.gcve.eu/sighting/56fbf7a9-ce3f-4b13-a3f7-04f2584539b9/export {"uuid": "56fbf7a9-ce3f-4b13-a3f7-04f2584539b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35472", "type": "seen", "source": "https://t.me/cibsecurity/26620", "content": "\u203c CVE-2021-35472 \u203c\n\nAn issue was discovered in LemonLDAP::NG before 2.0.12. Session cache corruption can lead to authorization bypass or spoofing. By running a loop that makes many authentication attempts, an attacker might alternately be authenticated as one of two different users.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-30T18:21:32.000000Z"} {"uuid": "56fbf7a9-ce3f-4b13-a3f7-04f2584539b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35472", "type": "seen", "source": "https://t.me/cibsecurity/26620", "content": "\u203c CVE-2021-35472 \u203c\n\nAn issue was discovered in LemonLDAP::NG before 2.0.12. Session cache corruption can lead to authorization bypass or spoofing. By running a loop that makes many authentication attempts, an attacker might alternately be authenticated as one of two different users.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-30T18:21:32.000000Z"} https://db.gcve.eu/sighting/56fbf7a9-ce3f-4b13-a3f7-04f2584539b9/export Fri, 30 Jul 2021 18:21:32 +0000 https://db.gcve.eu/sighting/83041920-597d-4519-8e4f-1ed2df6b864b/export {"uuid": "83041920-597d-4519-8e4f-1ed2df6b864b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35479", "type": "seen", "source": "https://t.me/cibsecurity/26621", "content": "\u203c CVE-2021-35479 \u203c\n\nNagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter. This affects users who open a crafted link or third-party web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-30T18:21:33.000000Z"} {"uuid": "83041920-597d-4519-8e4f-1ed2df6b864b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35479", "type": "seen", "source": "https://t.me/cibsecurity/26621", "content": "\u203c CVE-2021-35479 \u203c\n\nNagios Log Server before 2.1.9 contains Stored XSS in the custom column view for the alert history and audit log function through the affected pp parameter. This affects users who open a crafted link or third-party web page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-07-30T18:21:33.000000Z"} https://db.gcve.eu/sighting/83041920-597d-4519-8e4f-1ed2df6b864b/export Fri, 30 Jul 2021 18:21:33 +0000 https://db.gcve.eu/sighting/ed0cd600-2a1c-48f3-8d00-877e51f213ac/export {"uuid": "ed0cd600-2a1c-48f3-8d00-877e51f213ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35475", "type": "seen", "source": "https://t.me/pwnwiki_zhchannel/718", "content": "CVE-2021-35475 SAS Environment Manager 2.5 XSS\u6f0f\u6d1e\nhttps://www.pwnwiki.org/index.php?title=CVE-2021-35475_SAS_Environment_Manager_2.5_XSS%E6%BC%8F%E6%B4%9E", "creation_timestamp": "2021-09-21T04:42:21.000000Z"} {"uuid": "ed0cd600-2a1c-48f3-8d00-877e51f213ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35475", "type": "seen", "source": "https://t.me/pwnwiki_zhchannel/718", "content": "CVE-2021-35475 SAS Environment Manager 2.5 XSS\u6f0f\u6d1e\nhttps://www.pwnwiki.org/index.php?title=CVE-2021-35475_SAS_Environment_Manager_2.5_XSS%E6%BC%8F%E6%B4%9E", "creation_timestamp": "2021-09-21T04:42:21.000000Z"} https://db.gcve.eu/sighting/ed0cd600-2a1c-48f3-8d00-877e51f213ac/export Tue, 21 Sep 2021 04:42:21 +0000 https://db.gcve.eu/sighting/f4a72e71-0c6b-4e11-8087-996412b80e11/export {"uuid": "f4a72e71-0c6b-4e11-8087-996412b80e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35473", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113461030972663623", "content": "", "creation_timestamp": "2024-11-10T22:32:18.885126Z"} {"uuid": "f4a72e71-0c6b-4e11-8087-996412b80e11", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35473", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113461030972663623", "content": "", "creation_timestamp": "2024-11-10T22:32:18.885126Z"} https://db.gcve.eu/sighting/f4a72e71-0c6b-4e11-8087-996412b80e11/export Sun, 10 Nov 2024 22:32:18 +0000 https://db.gcve.eu/sighting/d9a615a5-93f9-4704-9e67-c5b81c1e9b6c/export {"uuid": "d9a615a5-93f9-4704-9e67-c5b81c1e9b6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35473", "type": "seen", "source": "https://t.me/cvedetector/10441", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2021-35473 - LemonLDAP::NG OAuth2.0 Access Token Validation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2021-35473 \nPublished : Nov. 10, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token validity. An attacker can use a expired access token from an OIDC client to access the OAuth2 handler The earliest affected version is 2.0.4. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"11 Nov 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-11T01:02:40.000000Z"} {"uuid": "d9a615a5-93f9-4704-9e67-c5b81c1e9b6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-35473", "type": "seen", "source": "https://t.me/cvedetector/10441", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2021-35473 - LemonLDAP::NG OAuth2.0 Access Token Validation Vulnerability\", \n \"Content\": \"CVE ID : CVE-2021-35473 \nPublished : Nov. 10, 2024, 11:15 p.m. | 44\u00a0minutes ago \nDescription : An issue was discovered in LemonLDAP::NG before 2.0.12. There is a missing expiration check in the OAuth2.0 handler, i.e., it does not verify access token validity. An attacker can use a expired access token from an OIDC client to access the OAuth2 handler The earliest affected version is 2.0.4. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"11 Nov 2024\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-11T01:02:40.000000Z"} https://db.gcve.eu/sighting/d9a615a5-93f9-4704-9e67-c5b81c1e9b6c/export Mon, 11 Nov 2024 01:02:40 +0000