{"vulnerability": "CVE-2021-4193", "sightings": [{"uuid": "2902349b-c72d-4469-b2ee-9a37ef9ec976", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-41930", "type": "seen", "source": "https://t.me/cibsecurity/36147", "content": "\u203c CVE-2021-41930 \u203c\n\nCross site scripting (XSS) vulnerability in Sourcecodester Online Covid Vaccination Scheduler System v1 by oretnom23, allows attackers to execute arbitrary code via the lid parameter to /scheduler/addSchedule.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-24T22:17:36.000000Z"}, {"uuid": "4e1a9987-2c0a-452f-94ba-8b62d3a9cf1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-4193", "type": "seen", "source": "https://t.me/cibsecurity/34792", "content": "\u203c CVE-2021-4193 \u203c\n\nvim is vulnerable to Out-of-bounds Read\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-31T18:35:18.000000Z"}, {"uuid": "2370baf0-899d-4afc-ad66-7ca4b6dc6930", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-41938", "type": "seen", "source": "https://t.me/cibsecurity/42980", "content": "\u203c CVE-2021-41938 \u203c\n\nAn issue was discovered in ShopXO CMS 2.2.0. After entering the management page, there is an arbitrary file upload vulnerability in three locations.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-19T18:29:36.000000Z"}, {"uuid": "3db92712-4e6f-45bb-bf89-06d5055fec6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-41932", "type": "seen", "source": "https://t.me/cibsecurity/43847", "content": "\u203c CVE-2021-41932 \u203c\n\nA blind SQL injection vulnerability in search form in TeamMate+ Audit version 28.0.19.0 allows any authenticated user to create malicious SQL injections, which can result in complete database compromise, gaining information about other users, unauthorized access to audit data etc.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-06T18:29:59.000000Z"}]}