{"vulnerability": "CVE-2021-40662", "sightings": [{"uuid": "ed0b2414-0916-4377-b838-50fdd37435d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40662", "type": "seen", "source": "https://t.me/cibsecurity/39350", "content": "\u203c CVE-2021-40662 \u203c\n\nA Cross-Site Request Forgery (CSRF) in Chamilo LMS 1.11.14 allows attackers to execute arbitrary commands on victim hosts via user interaction with a crafted URL.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-21T23:26:40.000000Z"}, {"uuid": "cca15f7b-268d-4d71-9edb-0234f9f379ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40662", "type": "published-proof-of-concept", "source": "https://t.me/cKure/10479", "content": "\u25a0\u25a0\u25a0\u25a0\u25a0 Zero-Day: A good chained exploit using XSS, CSRF to achive command execution; CVE-2021-40662, Chamilo LMS 1.11.14 RCE.\n https://febin.hacklido.com/d/90-cve-2021-40662-chamilo-lms-11114-rce", "creation_timestamp": "2022-11-23T20:50:09.000000Z"}, {"uuid": "e950d2f1-212b-49d1-a87b-53e6a2d4b3e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40662", "type": "published-proof-of-concept", "source": "Telegram/YFXYCCVQZRGOcIyKtXLJhlRicEOjhhsvwkUuMglsfVEAzkc", "content": "", "creation_timestamp": "2022-11-23T18:58:28.000000Z"}]}