{"vulnerability": "CVE-2021-3783", "sightings": [{"uuid": "144b397d-6d22-4224-aa61-55c6326cdf44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-37839", "type": "seen", "source": "https://t.me/cibsecurity/45646", "content": "\u203c CVE-2021-37839 \u203c\n\nApache Superset up to 1.5.1 allowed for authenticated users to access metadata information related to datasets they have no permission on. This metadata included the dataset name, columns and metrics.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-07-06T16:20:55.000000Z"}, {"uuid": "3be9fe2e-6d96-44aa-85b7-e175bdc8da02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-37833", "type": "seen", "source": "https://t.me/cibsecurity/26732", "content": "\u203c CVE-2021-37833 \u203c\n\nA reflected cross-site scripting (XSS) vulnerability exists in multiple pages in version 3.0.2 of the Hotel Druid application that allows for arbitrary execution of JavaScript commands.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-03T16:28:28.000000Z"}, {"uuid": "0977cb0f-6221-4ee1-a47e-728e5e131f1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-37832", "type": "seen", "source": "https://t.me/cibsecurity/26731", "content": "\u203c CVE-2021-37832 \u203c\n\nA SQL injection vulnerability exists in version 3.0.2 of Hotel Druid when SQLite is being used as the application database. A malicious attacker can issue SQL commands to the SQLite database through the vulnerable idappartamenti parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-03T16:28:27.000000Z"}]}