{"vulnerability": "cve-2020-2149", "sightings": [{"uuid": "3f58266b-7791-4bb7-923a-68870a8855d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-21494", "type": "seen", "source": "https://t.me/cibsecurity/29946", "content": "\u203c CVE-2020-21494 \u203c\n\nA cross-site scripting (XSS) vulnerability in the component install\\install.sql of Xiuno BBS 4.0.4 allows attackers to execute arbitrary web scripts or HTML via changing the doctype value to 0.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-05T00:30:25.000000Z"}, {"uuid": "9a1d486a-f71a-4a87-855a-8f91b69a1b75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-21495", "type": "seen", "source": "https://t.me/cibsecurity/29945", "content": "\u203c CVE-2020-21495 \u203c\n\nA cross-site scripting (XSS) vulnerability in the component /admin/?setting-base.htm of Xiuno BBS 4.0.4 allows attackers to execute arbitrary web scripts or HTML via the sitename parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-05T00:30:20.000000Z"}, {"uuid": "3f62e766-d532-4c61-b2e7-8dd665b2b479", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-21496", "type": "seen", "source": "https://t.me/cibsecurity/29943", "content": "\u203c CVE-2020-21496 \u203c\n\nA cross-site scripting (XSS) vulnerability in the component /admin/?setting-base.htm of Xiuno BBS 4.0.4 allows attackers to execute arbitrary web scripts or HTML via the sitebrief parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-05T00:30:09.000000Z"}, {"uuid": "37cd061a-426f-45e8-b3b7-4c4f84e4f3bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2020-21493", "type": "seen", "source": "https://t.me/cibsecurity/29942", "content": "\u203c CVE-2020-21493 \u203c\n\nAn issue in the component route\\user.php of Xiuno BBS v4.0.4 allows attackers to enumerate usernames.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-05T00:30:03.000000Z"}]}