{"vulnerability": "cve-2021-4277", "sightings": [{"uuid": "d5d6824e-33f7-4c37-81bd-f12c9ae98f82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42770", "type": "seen", "source": "https://t.me/cibsecurity/31983", "content": "\u203c CVE-2021-42770 \u203c\n\nA Cross-site scripting (XSS) vulnerability was discovered in OPNsense before 21.7.4 via the LDAP attribute return in the authentication tester.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-08T18:29:04.000000Z"}, {"uuid": "2493ac77-0fe4-455e-86ac-875f940efa9b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42771", "type": "seen", "source": "https://t.me/cibsecurity/30924", "content": "\u203c CVE-2021-42771 \u203c\n\nBabel.Locale in Babel before 2.9.1 allows attackers to load arbitrary locale .dat files (containing serialized Python objects) via directory traversal, leading to code execution.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-21T00:35:41.000000Z"}, {"uuid": "98377e5c-5002-40c8-871d-b98b21e1f16f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42777", "type": "published-proof-of-concept", "source": "https://t.me/cibsecurity/52267", "content": "\u203c CVE-2021-42777 \u203c\n\nStimulsoft (aka Stimulsoft Reports) 2013.1.1600.0, when Compilation Mode is used, allows an attacker to execute arbitrary C# code on any machine that renders a report, including the application server or a user's local machine, as demonstrated by System.Diagnostics.Process.Start.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-10-29T20:30:24.000000Z"}, {"uuid": "4aa57796-71ec-4331-bb0a-f2e2a6b46062", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42776", "type": "seen", "source": "https://t.me/cibsecurity/33219", "content": "\u203c CVE-2021-42776 \u203c\n\nCloverDX Server before 5.11.2 and and 5.12.x before 5.12.1 allows XXE during configuration import.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-01T20:35:35.000000Z"}, {"uuid": "c088e70c-cfb6-4051-838c-c9a1e33e9347", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42771", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0395/", "content": "", "creation_timestamp": "2026-04-02T17:00:00.000000Z"}, {"uuid": "4f50f06e-47cd-474d-beb0-b42a488e9e02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-42779", "type": "seen", "source": "https://t.me/cibsecurity/41044", "content": "\u203c CVE-2021-42779 \u203c\n\nA heap use after free issue was found in Opensc before version 0.22.0 in sc_file_valid.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-04-18T20:29:45.000000Z"}, {"uuid": "8586a40f-66bc-425f-b7df-1beb8cc0fe59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2021-42771", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}]}