{"vulnerability": "CVE-2021-33021", "sightings": [{"uuid": "0667fe37-5497-456c-81b8-68e81610b7a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-33021", "type": "seen", "source": "https://t.me/cibsecurity/42770", "content": "\u203c CVE-2021-33021 \u203c\n\nxArrow SCADA versions 7.2 and prior is vulnerable to cross-site scripting due to parameter \u00e2\u20ac\u02dcedate\u00e2\u20ac\u2122 of the resource xhisalarm.htm, which may allow an unauthorized attacker to execute arbitrary code.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-05-16T22:26:37.000000Z"}]}