{"vulnerability": "cve-2021-23784", "sightings": [{"uuid": "8d56b54f-8607-46e9-a951-63e9148e3fe1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-23784", "type": "seen", "source": "https://t.me/cibsecurity/31768", "content": "\u203c CVE-2021-23784 \u203c\n\nThis affects the package tempura before 0.4.0. If the input to the esc function is of type object (i.e an array) it is returned without being escaped/sanitized, leading to a potential Cross-Site Scripting vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-03T21:23:31.000000Z"}]}