{"vulnerability": "cve-2021-4367", "sightings": [{"uuid": "d1e838a9-1359-4647-997d-2e2b23a0bae6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43678", "type": "seen", "source": "https://t.me/cibsecurity/34186", "content": "\u203c CVE-2021-43678 \u203c\n\nWechat-php-sdk v1.10.2 is affected by a Cross Site Scripting (XSS) vulnerability in Wechat.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-17T16:37:33.000000Z"}, {"uuid": "4e412124-a446-4ffc-92f8-172b6ea960bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43677", "type": "seen", "source": "https://t.me/cibsecurity/34954", "content": "\u203c CVE-2021-43677 \u203c\n\nFluxbb v1.4.12 is affected by a Cross Site Scripting (XSS) vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-04T22:38:28.000000Z"}, {"uuid": "28a9d940-419f-4e83-94d5-29d43332b318", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43673", "type": "seen", "source": "https://t.me/cibsecurity/33301", "content": "\u203c CVE-2021-43673 \u203c\n\ndzzoffice 2.02.1_SC_UTF8 is affected by a Cross Site Scripting (XSS) vulnerability in explorerfile.php. The output of exit function will be print for the user exit(json_encode($return)).\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-03T14:37:41.000000Z"}, {"uuid": "4dc44a07-0444-46f7-ad66-e62d606a4ab1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43675", "type": "seen", "source": "https://t.me/cibsecurity/34020", "content": "\u203c CVE-2021-43675 \u203c\n\nLychee-v3 3.2.16 is affected by a Cross Site Scripting (XSS) vulnerability in php/Access/Guest.php. The function exit will terminate the script and print the message to the user. The message will contain albumID which is controlled by the user.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-15T18:14:35.000000Z"}, {"uuid": "24a9e180-4039-4cf3-ba23-0b1f405cd675", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43674", "type": "seen", "source": "https://t.me/cibsecurity/33311", "content": "\u203c CVE-2021-43674 \u203c\n\n** UNSUPPORTED WHEN ASSIGNED ** ThinkUp 2.0-beta.10 is affected by a path manipulation vulnerability in Smarty.class.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-03T16:37:54.000000Z"}, {"uuid": "b26b1ccd-4582-4cb1-a1b6-c019a2edad00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43676", "type": "seen", "source": "https://t.me/cibsecurity/33310", "content": "\u203c CVE-2021-43676 \u203c\n\nmatyhtf framework v3.0.5 is affected by a path manipulation vulnerability in Smarty.class.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-03T16:37:52.000000Z"}, {"uuid": "f01eeb9f-6586-46f4-94fa-e4b38bf28248", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-43679", "type": "seen", "source": "https://t.me/cibsecurity/33267", "content": "\u203c CVE-2021-43679 \u203c\n\necshop v2.7.3 is affected by a SQL injection vulnerability in shopex\\ecshop\\upload\\api\\client\\api.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-02T18:36:41.000000Z"}]}