{"vulnerability": "CVE-2021-4370", "sightings": [{"uuid": "2c09119f-18af-4729-aa21-f8dfaccc90bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43707", "type": "seen", "source": "https://t.me/cibsecurity/39940", "content": "\u203c CVE-2021-43707 \u203c\n\nCross Site Scripting (XSS) vulnerability exists in Maccms v10 via link_Name parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-01T00:18:49.000000Z"}, {"uuid": "1bab4f19-d768-452f-b69c-2cacf32a3368", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43700", "type": "seen", "source": "https://t.me/cibsecurity/39485", "content": "\u203c CVE-2021-43700 \u203c\n\nAn issue was discovered in ApiManager 1.1. there is sql injection vulnerability that can use in /index.php?act=api&amp;tag=8.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-24T15:34:36.000000Z"}, {"uuid": "12d1dbd8-d6ae-4999-93c4-b74395b02a5c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43703", "type": "seen", "source": "https://t.me/cibsecurity/33718", "content": "\u203c CVE-2021-43703 \u203c\n\nAn Incorrect Access Control vulnerability exists in zzcms less than or equal to 2019 via admin.php. After disabling JavaScript, you can directly access the administrator console.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-09T20:23:59.000000Z"}, {"uuid": "c46a6032-b620-4cef-9b52-49f03cae4106", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43702", "type": "seen", "source": "https://t.me/cibsecurity/45581", "content": "\u203c CVE-2021-43702 \u203c\n\nASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to change the SSID of the router with a custom payload, they could achieve stored XSS on the device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-05T16:13:25.000000Z"}, {"uuid": "c16fede2-4533-447a-aa57-be47b78aa3ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43708", "type": "seen", "source": "https://t.me/cibsecurity/41242", "content": "\u203c CVE-2021-43708 \u203c\n\nThe Labeling tool in Titus Classification Suite 18.8.1910.140 allows users to avoid the generation of a classification label by using Excel's safe mode.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-21T22:26:56.000000Z"}]}