{"vulnerability": "cve-2021-3394", "sightings": [{"uuid": "5e3ad7fd-6a9a-40ee-8ada-4aadd2a4d4b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-3394", "type": "exploited", "source": "https://www.exploit-db.com/exploits/49530", "content": "", "creation_timestamp": "2021-02-08T00:00:00.000000Z"}, {"uuid": "cb1696bd-ce3e-4f67-a20b-ff233e21e2ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-3394", "type": "seen", "source": "https://t.me/cibsecurity/23303", "content": "\u203c CVE-2021-3394 \u203c\n\nMillennium Millewin (also known as \"Cartella clinica\") 13.39.028, 13.39.28.3342, and 13.39.146.1 has insecure folder permissions allowing a malicious user for a local privilege escalation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-09T18:40:35.000000Z"}, {"uuid": "33183815-26c0-4c58-9325-995a80a687b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-33949", "type": "seen", "source": "https://t.me/cibsecurity/58468", "content": "\u203c CVE-2021-33949 \u203c\n\nAn issue in FeMiner WMS v1.1 allows attackers to execute arbitrary code via the filename parameter and the exec function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-17T20:19:25.000000Z"}, {"uuid": "c204b300-25f6-4f69-8ec4-59f402480f13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-33948", "type": "seen", "source": "https://t.me/cibsecurity/58451", "content": "\u203c CVE-2021-33948 \u203c\n\nSQL injection vulnerability in FantasticLBP Hotels Server v1.0 allows attacker to execute arbitrary code via the username parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-02-17T20:13:23.000000Z"}, {"uuid": "2991b4ac-ad1d-4f60-b7b7-c4a864c4922b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-33945", "type": "seen", "source": "https://t.me/cibsecurity/37538", "content": "\u203c CVE-2021-33945 \u203c\n\nRICOH Printer series SP products 320DN, SP 325DNw, SP 320SN, SP 320SFN, SP 325SNw, SP 325SFNw, SP 330SN, Aficio SP 3500SF, SP 221S, SP 220SNw, SP 221SNw, SP 221SF, SP 220SFNw, SP 221SFNw v1.06 were discovered to contain a stack buffer overflow in the file /etc/wpa_supplicant.conf. This vulnerability allows attackers to cause a Denial of Service (DoS) via crafted overflow data.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-15T22:34:56.000000Z"}, {"uuid": "1b411253-39af-4bc4-b601-f987a927426c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-33949", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7965", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2021-33949\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: An issue in FeMiner WMS v1.1 allows attackers to execute arbitrary code via the filename parameter and the exec function.\n\ud83d\udccf Published: 2023-02-17T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-18T18:33:32.055Z\n\ud83d\udd17 References:\n1. https://github.com/FeMiner/wms/issues/10", "creation_timestamp": "2025-03-18T19:03:02.000000Z"}]}