{"vulnerability": "CVE-2020-3515", "sightings": [{"uuid": "24a8215b-bba2-4aa5-b0b5-c61cc8c48fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35152", "type": "seen", "source": "https://t.me/cibsecurity/22992", "content": "\u203c CVE-2020-35152 \u203c\n\nCloudflare WARP for Windows allows privilege escalation due to an unquoted service path. A malicious user or process running with non-administrative privileges can become an administrator by abusing the unquoted service path issue. Since version 1.2.2695.1, the vulnerability was fixed by adding quotes around the service's binary path. This issue affects Cloudflare WARP for Windows, versions prior to 1.2.2695.1.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-02-03T02:29:28.000000Z"}, {"uuid": "99e202f9-fb34-4107-b5ef-f02cb606ff2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35151", "type": "seen", "source": "https://t.me/cibsecurity/21148", "content": "\u203c CVE-2020-35151 \u203c\n\nThe Online Marriage Registration System 1.0 post parameter \"searchdata\" in the user/search.php request is vulnerable to Time Based Sql Injection.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-22T00:52:21.000000Z"}]}