{"vulnerability": "cve-2021-4023", "sightings": [{"uuid": "4c0a1c7c-737e-420f-a416-34e91b1a74a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40238", "type": "seen", "source": "https://t.me/cibsecurity/28929", "content": "\u203c CVE-2021-40238 \u203c\n\nA Cross Site Scriptiong (XSS) vulnerability exists in the admin panel in Webuzo < 2.9.0 via an HTTP request to a non-existent page, which is activated by administrators viewing the \"Error Log\" page. An attacker can leverage this to achieve Unauthenticated Remote Code Execution via the \"Cron Jobs\" functionality of Webuzo.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-15T20:22:18.000000Z"}, {"uuid": "068695a3-cb5c-4e60-a9c4-36afd83ed857", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-40239", "type": "seen", "source": "https://t.me/cibsecurity/30365", "content": "\u203c CVE-2021-40239 \u203c\n\nA Buffer Overflow vulnerability exists in the latest version of Miniftpd in the do_retr function in ftpproto.c\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-11T22:24:48.000000Z"}]}