https://vulnerability.circl.lu/sightings/feed 2026-06-10T08:29:02.295748+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/3a9dddf1-0797-4020-9123-179b005af360/export 2026-06-10T08:29:02.666771+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "3a9dddf1-0797-4020-9123-179b005af360", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38150", "type": "seen", "source": "https://t.me/cibsecurity/28807", "content": "\u203c CVE-2021-38150 \u203c\n\nWhen an attacker manages to get access to the local memory, or the memory dump of a victim, for example by a social engineering attack, SAP Business Client versions - 7.0, 7.70, will allow him to read extremely sensitive data, such as credentials. This would allow the attacker to compromise the corresponding backend for which the credentials are valid.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-14T16:22:04.000000Z"} 2021-09-14T16:22:04+00:00 https://vulnerability.circl.lu/sighting/921fdfc7-2f2a-46ff-b6fe-2cce358717e3/export 2026-06-10T08:29:02.666697+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "921fdfc7-2f2a-46ff-b6fe-2cce358717e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38156", "type": "seen", "source": "https://t.me/cibsecurity/28907", "content": "\u203c CVE-2021-38156 \u203c\n\nIn Nagios XI before 5.8.6, XSS exists in the dashboard page (/dashboards/#) when administrative users attempt to edit a dashboard.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-09-15T18:22:33.000000Z"} 2021-09-15T18:22:33+00:00 https://vulnerability.circl.lu/sighting/cb9f952b-7f61-495a-81a5-19d0042ce411/export 2026-06-10T08:29:02.666619+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "cb9f952b-7f61-495a-81a5-19d0042ce411", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38156", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/644", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aPoC for exploiting CVE-2021-38156 : In Nagios XI before 5.8.6, XSS exists in the dashboard page (/dashboards/#) when administrative users attempt to edit a dashboard.\nURL\uff1ahttps://github.com/AIPOCAI/CVE-2021-39204", "creation_timestamp": "2021-10-05T12:34:09.000000Z"} 2021-10-05T12:34:09+00:00 https://vulnerability.circl.lu/sighting/ca671249-1520-4caf-b68c-43c5078561ff/export 2026-06-10T08:29:02.666534+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "ca671249-1520-4caf-b68c-43c5078561ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38156", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/645", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aPoC for exploiting CVE-2021-38156 : In Nagios XI before 5.8.6, XSS exists in the dashboard page (/dashboards/#) when administrative users attempt to edit a dashboard.\nURL\uff1ahttps://github.com/AKIA27TACKEDYE76PUGU/CVE-2021-39204", "creation_timestamp": "2021-10-05T13:51:13.000000Z"} 2021-10-05T13:51:13+00:00 https://vulnerability.circl.lu/sighting/79ca4a8f-8dac-46b4-96c7-2be7c489231a/export 2026-06-10T08:29:02.666445+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "79ca4a8f-8dac-46b4-96c7-2be7c489231a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3815", "type": "seen", "source": "https://t.me/cibsecurity/33614", "content": "\u203c CVE-2021-3815 \u203c\n\nutils.js is vulnerable to Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-08T20:22:47.000000Z"} 2021-12-08T20:22:47+00:00 https://vulnerability.circl.lu/sighting/88e57af2-cd7e-4198-815c-89507bb91fe7/export 2026-06-10T08:29:02.666369+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "88e57af2-cd7e-4198-815c-89507bb91fe7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38159", "type": "published-proof-of-concept", "source": "https://t.me/ctinow/49716", "content": "Palantir Public: SQL Injection at https://ift.tt/xHz9Lcb due to CVE-2021-38159\n\nhttps://ift.tt/LyudQ2n", "creation_timestamp": "2022-04-05T13:51:54.000000Z"} 2022-04-05T13:51:54+00:00 https://vulnerability.circl.lu/sighting/7ed13f30-1986-4849-8b43-ef7e039b01ae/export 2026-06-10T08:29:02.666300+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "7ed13f30-1986-4849-8b43-ef7e039b01ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38154", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-38154.yaml", "content": "", "creation_timestamp": "2025-10-10T10:51:44.000000Z"} 2025-10-10T10:51:44+00:00 https://vulnerability.circl.lu/sighting/b5b002b9-70b9-4815-ad01-401d39c8584d/export 2026-06-10T08:29:02.666224+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "b5b002b9-70b9-4815-ad01-401d39c8584d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38154", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m2zlw2iwgd2n", "content": "", "creation_timestamp": "2025-10-12T21:02:31.314343Z"} 2025-10-12T21:02:31.314343+00:00 https://vulnerability.circl.lu/sighting/880c13dc-8e9c-43b5-a27a-f236794935b2/export 2026-06-10T08:29:02.666115+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "880c13dc-8e9c-43b5-a27a-f236794935b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38154", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-05-21)", "content": "", "creation_timestamp": "2026-05-21T00:00:00.000000Z"} 2026-05-21T00:00:00+00:00 https://vulnerability.circl.lu/sighting/81f62f0a-745d-462d-9006-1a2e5bea0623/export 2026-06-10T08:29:02.662151+00:00 Automation user https://vulnerability.circl.lu/user/automation {"uuid": "81f62f0a-745d-462d-9006-1a2e5bea0623", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38154", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2026-06-04)", "content": "", "creation_timestamp": "2026-06-04T00:00:00.000000Z"} 2026-06-04T00:00:00+00:00