{"vulnerability": "cve-2020-1904", "sightings": [{"uuid": "bbb0abbe-84f5-49f2-9f50-36579ca7a81d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-19042", "type": "seen", "source": "https://t.me/cibsecurity/33891", "content": "\u203c CVE-2020-19042 \u203c\n\nCross Site Scripting (XSS) vulnerability exists in zzcms 2019 XSS via a modify action in user/adv.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-14T00:13:32.000000Z"}, {"uuid": "3e195f46-b500-42f7-a5cd-241b2f653b44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-19047", "type": "seen", "source": "https://t.me/cibsecurity/28085", "content": "\u203c CVE-2020-19047 \u203c\n\nCross Site Request Forgey (CSRF) in iWebShop v5.3 allows remote atatckers to execute arbitrary code via malicious POST request to the component '/index.php?controller=system&amp;action=admin_edit_act'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-31T18:33:33.000000Z"}, {"uuid": "a169f87c-d013-4cfd-8826-9136d29d355c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-19048", "type": "seen", "source": "https://t.me/cibsecurity/28092", "content": "\u203c CVE-2020-19048 \u203c\n\nCross Site Scripting (XSS) in MyBB v1.8.20 allows remote attackers to inject arbitrary web script or HTML via the \"Title\" field found in the \"Add New Forum\" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-management&amp;action=add'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-31T18:33:44.000000Z"}, {"uuid": "0bd8dc2c-6dc2-4f7b-9111-fa7cbbcf4349", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-19046", "type": "seen", "source": "https://t.me/cibsecurity/28091", "content": "\u203c CVE-2020-19046 \u203c\n\nCross Site Scripting (XSS) in S-CMS v1.0 allows remote attackers to execute arbitrary code via the component '/admin/tpl.php?page='.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-31T18:33:43.000000Z"}, {"uuid": "11123ee6-9a49-415c-9465-758bafedf18f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-19049", "type": "seen", "source": "https://t.me/cibsecurity/28087", "content": "\u203c CVE-2020-19049 \u203c\n\nCross Site Scripting (XSS) in MyBB v1.8.20 allows remote attackers to inject arbitrary web script or HTML via the \"Description\" field found in the \"Add New Forum\" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-management&amp;action=add'.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-31T18:33:38.000000Z"}]}