{"vulnerability": "cve-2021-3813", "sightings": [{"uuid": "07daea40-f83d-4594-b3a2-0476e1ca100e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38132", "type": "seen", "source": "https://t.me/cvedetector/5475", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2021-38132 - OpenText eDirectory External Service Interaction Information Disclosure Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2021-38132 \nPublished : Sept. 12, 2024, 1:15 p.m. | 16\u00a0minutes ago \nDescription : Possible   \nExternal Service Interaction attack  \n  \nin eDirectory has been discovered in  \nOpenText\u2122 eDirectory. This impact all version before\u00a09.2.6.0000. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-12T15:37:11.000000Z"}, {"uuid": "2695bcb0-b495-4ffc-baa0-01f7aadd725e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38133", "type": "seen", "source": "https://t.me/cvedetector/5476", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2021-38133 - OpenText eDirectory External Service Interaction Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2021-38133 \nPublished : Sept. 12, 2024, 1:15 p.m. | 16\u00a0minutes ago \nDescription : Possible   \nExternal Service Interaction attack  \n  \nin eDirectory has been discovered in  \nOpenText\u2122 eDirectory. This impact all version before\u00a09.2.6.0000. \nSeverity: 7.4 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"12 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-12T15:37:12.000000Z"}, {"uuid": "0102b9fe-d192-4201-b2b8-94907b28e4d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38138", "type": "seen", "source": "https://t.me/cibsecurity/26887", "content": "\u203c CVE-2021-38138 \u203c\n\nOneNav beta 0.9.12 allows XSS via the Add Link feature. NOTE: the vendor's position is that there intentionally is not any XSS protection at present, because the attack risk is largely limited to a compromised account; however, XSS protection is planned for a future release.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-05T20:31:24.000000Z"}, {"uuid": "ad821232-fb5c-4aea-9b63-4ab49998feed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38137", "type": "seen", "source": "https://t.me/cibsecurity/26936", "content": "\u203c CVE-2021-38137 \u203c\n\nCorero SecureWatch Managed Services 9.7.2.0020 does not correctly check swa-monitor and cns-monitor user\u00e2\u20ac\u2122s privileges, allowing a user to perform actions not belonging to his role.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-06T18:32:28.000000Z"}, {"uuid": "ee777cc7-548f-466f-abb1-b039d6029399", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3813", "type": "seen", "source": "https://t.me/cibsecurity/37068", "content": "\u203c CVE-2021-3813 \u203c\n\nImproper Privilege Management in GitHub repository chatwoot/chatwoot prior to v2.2.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-02-09T18:12:59.000000Z"}, {"uuid": "1a49d820-8d14-41ce-8512-bb8a09745344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-38136", "type": "seen", "source": "https://t.me/cibsecurity/26940", "content": "\u203c CVE-2021-38136 \u203c\n\nCorero SecureWatch Managed Services 9.7.2.0020 is affected by a Path Traversal vulnerability via the snap_file parameter in the /it-IT/splunkd/__raw/services/get_snapshot HTTP API endpoint. A \u00e2\u20ac\u02dclow privileged\u00e2\u20ac\u2122 attacker can read any file on the target host.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-06T18:32:31.000000Z"}]}