Zegost Analysis

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en989
zh7
ar2
fr1
sv1

Country

Actors

Activities

Interest

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vulnerabilities

#VulnerabilityBaseTemp0dayTodayExpRemCTICVE
1Oracle Retail Customer Insights Other input validation6.66.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-44832
2Oracle Retail Invoice Matching Security deserialization7.37.1$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2019-10086
3E4J VikBooking Hotel Booking Engine & PMS Plugin POST Request information disclosure4.54.4$0-$5k$0-$5kNot DefinedNot Defined0.05CVE-2022-27863
4CipherMail Webmail Messenger Roundcube Configuration File information disclosure3.33.3$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-28218
5Tobesoft XPlatform File Creation path traversal7.57.4$0-$5k$0-$5kNot DefinedNot Defined0.03CVE-2021-26629
6Nop Solution Ltd nopCommerce Forums cross site scripting3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.09CVE-2022-28450
7Zammad Forgot Password denial of service3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2022-29701
8MaxBoard Menu cross site scripting6.26.1$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-26628
9Oracle Retail Data Extractor for Merchandising Installer input validation6.66.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.00CVE-2021-44832
10Oracle Retail Service Backbone RSB Installation information disclosure7.57.3$5k-$25k$0-$5kNot DefinedOfficial Fix0.04CVE-2021-40690
11FreeRDP NTLM Authentication improper authentication9.59.3$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2022-24882
12ShortPixel Adaptive Images Plugin Setting access control5.35.2$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2022-29417
13Master Elements Plugin remove_post_meta_condition sql injection7.37.1$0-$5k$0-$5kNot DefinedNot Defined0.07CVE-2022-0693
14Users Ultra Plugin AJAX Action rating_vote sql injection7.37.1$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2022-0769
15RRatingg Plugin rrtngg_delete_leads sql injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.00CVE-2022-0657
16myCred Plugin AJAX Action mycred-tools-select-user information disclosure3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.06CVE-2022-0287
17English Admin Plugin admin_custom_language_return_url redirect4.94.7$0-$5k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-25111
18IBM Planning Analytics Workspace unrestricted upload5.95.8$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2021-39040
19SourceCodester SCBS Online Sports Venue Reservation System booking.php cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.06CVE-2022-28094
20IBM Planning Analytics unrestricted upload5.55.4$5k-$25k$0-$5kNot DefinedOfficial Fix0.03CVE-2022-22392

IOC - Indicator of Compromise (132)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

IDIP addressHostnameActorCampaignsTypeConfidence
114.17.74.162ZegostverifiedHigh
214.113.128.7ZegostverifiedHigh
314.113.128.191ZegostverifiedHigh
414.210.50.189ZegostverifiedHigh
514.210.91.15ZegostverifiedHigh
614.210.95.203ZegostverifiedHigh
714.210.98.141ZegostverifiedHigh
814.210.109.122ZegostverifiedHigh
914.210.222.241ZegostverifiedHigh
1020.189.173.20ZegostverifiedHigh
1120.210.205.20ZegostverifiedHigh
1223.89.5.60mtx77mcs683.webex.comZegostverifiedHigh
1327.40.253.131ZegostverifiedHigh
1434.107.221.8282.221.107.34.bc.googleusercontent.comZegostverifiedMedium
1535.244.181.201201.181.244.35.bc.googleusercontent.comZegostverifiedMedium
1643.248.201.133ZegostverifiedHigh
1745.35.20.197unassigned.psychz.netZegostverifiedHigh
1845.39.189.31ZegostverifiedHigh
1945.114.11.195ZegostverifiedHigh
2045.119.125.223ZegostverifiedHigh
2147.111.82.157ZegostverifiedHigh
2249.2.123.56ZegostverifiedHigh
2350.63.202.70ip-50-63-202-70.ip.secureserver.netZegostverifiedHigh
2450.63.202.73ip-50-63-202-73.ip.secureserver.netZegostverifiedHigh
2550.63.202.88ip-50-63-202-88.ip.secureserver.netZegostverifiedHigh
2652.168.117.173ZegostverifiedHigh
2754.76.135.1ec2-54-76-135-1.eu-west-1.compute.amazonaws.comZegostverifiedMedium
28XX.XXX.XXX.XXXXxxxxxverifiedHigh
29XX.XX.XX.XXxx.xx.xx.xx.xxxxx.xx.xx.xxxxxxx.xxxxxxx.xxx.xxXxxxxxverifiedHigh
30XX.XX.XX.XXXXxxxxxverifiedHigh
31XX.XX.XX.XXXXxxxxxverifiedHigh
32XX.XXX.XX.XXXxxxxxverifiedHigh
33XX.XXX.XXX.XXXxxxxxverifiedHigh
34XX.XXX.XX.XXXXxxxxxverifiedHigh
35XX.XXX.XXX.XXXXxxxxxverifiedHigh
36XX.XXX.XXX.XXXXxxxxxverifiedHigh
37XX.XXX.XXX.XXxxxxxx.xxxxx.xxxXxxxxxverifiedHigh
38XX.XXX.X.XXXxxx-xxxxxxxx.xxxxxxxxx.xxxXxxxxxverifiedHigh
39XX.XXX.XX.XXXxxxxxverifiedHigh
40XX.XXX.XXX.XXXXxxxxxverifiedHigh
41XX.X.X.XXxxxxxxx-xxx-xxx-xxx-xxx.xx.x.xxxx.xxxxxxxxxx.xxXxxxxxverifiedHigh
42XX.XX.XX.XXxxxxxverifiedHigh
43XXX.XXX.XXX.XXXXxxxxxverifiedHigh
44XXX.XX.XXX.XXXXxxxxxverifiedHigh
45XXX.XXX.XX.XXXXxxxxxverifiedHigh
46XXX.XXX.XXX.XXXxxxxxx.xxxxx.xxxXxxxxxverifiedHigh
47XXX.XXX.XXX.XXXXxxxxxverifiedHigh
48XXX.XXX.XXX.XXXxx-xxx-xxx.xxxxx.xxxXxxxxxverifiedHigh
49XXX.XXX.XXX.XXXXxxxxxverifiedHigh
50XXX.XXX.XXX.XXXxxxxxverifiedHigh
51XXX.XXX.XX.XXXxxxxxverifiedHigh
52XXX.XXX.XXX.XXXXxxxxxverifiedHigh
53XXX.XXX.XXX.XXXXxxxxxverifiedHigh
54XXX.XXX.XX.XXXxxx.xxx.xx.xxx.xxxxxxxx.xxxXxxxxxverifiedHigh
55XXX.XXX.XXX.XXXxxxxxverifiedHigh
56XXX.XXX.XXX.XXXxxxxxverifiedHigh
57XXX.XX.XX.XXXXxxxxxverifiedHigh
58XXX.XX.XXX.XXXXxxxxxverifiedHigh
59XXX.X.XXX.XXXXxxxxxverifiedHigh
60XXX.XX.XXX.XXXxxxxxverifiedHigh
61XXX.XX.XXX.XXxxxxxverifiedHigh
62XXX.XXX.XXX.XXXxxxxxverifiedHigh
63XXX.XX.XXX.XXXXxxxxxverifiedHigh
64XXX.XXX.XXX.XXXXxxxxxverifiedHigh
65XXX.XX.XX.XXXxxxxxverifiedHigh
66XXX.X.XX.Xxxxxxxx-xxxxxxxxxxxxxxx.xxxxxxxxx.xxx.xx.xxXxxxxxverifiedHigh
67XXX.XX.XXX.XXXxxxxxverifiedHigh
68XXX.XXX.XX.XXXxxxxxverifiedHigh
69XXX.XXX.XXX.XXXXxxxxxverifiedHigh
70XXX.XXX.XX.XXXxxxxxverifiedHigh
71XXX.XXX.XXX.XXxxxx-xxx-xxx-xx.xxxxxx.xxxXxxxxxverifiedHigh
72XXX.XXX.XXX.XXXXxxxxxverifiedHigh
73XXX.XXX.XXX.XXXxxxxxverifiedHigh
74XXX.XXX.XXX.XXXXxxxxxverifiedHigh
75XXX.XX.XX.XXXXxxxxxverifiedHigh
76XXX.XXX.XXX.XXXXxxxxxverifiedHigh
77XXX.XX.XX.XXXxxxxxverifiedHigh
78XXX.XX.XX.XXxx.xx.xx.xxx.xxxx-xxxx.xx.xxXxxxxxverifiedHigh
79XXX.XXX.XX.XXxxxxxverifiedHigh
80XXX.XX.XXX.XXXxxxxxverifiedHigh
81XXX.XX.XX.XXXXxxxxxverifiedHigh
82XXX.XXX.XX.XXxxx-xxx-xxx-xx-xx.xxxxxxx.xxxxxxxx-xxx.xxxXxxxxxverifiedHigh
83XXX.XXX.XXX.XXXxxxxxverifiedHigh
84XXX.XX.XXX.XXXxxx.xxx.xx.xxx.xxxx-xxxx.xxxxxxx.xxx.xxXxxxxxverifiedHigh
85XXX.XX.XX.XXXXxxxxxverifiedHigh
86XXX.XX.XX.XXXXxxxxxverifiedHigh
87XXX.X.XXX.XXXXxxxxxverifiedHigh
88XXX.XXX.XX.XXXXxxxxxverifiedHigh
89XXX.XXX.XXX.XXXXxxxxxverifiedHigh
90XXX.XX.XX.XXXxxx.xx.xx.xxx.xxxxxxxxxxxxxxxx.xxxXxxxxxverifiedHigh
91XXX.XXX.XXX.XXXxxxxxxx-xxxxxx.xxxxx.xxx.xx.xxXxxxxxverifiedHigh
92XXX.XX.XX.XXXxxxxxverifiedHigh
93XXX.XXX.XX.XXXxxxxxverifiedHigh
94XXX.XXX.XX.XXXXxxxxxverifiedHigh
95XXX.XX.XXX.XXXxxxxxxxxxx.xxxxxxxxx.xxxXxxxxxverifiedHigh
96XXX.XXX.XX.XXXxxxxxverifiedHigh
97XXX.XXX.XX.XXXXxxxxxverifiedHigh
98XXX.XX.XX.XXXXxxxxxverifiedHigh
99XXX.XXX.X.XXXxxxxxxxx-xx-xxx.xxxxx.xxxXxxxxxverifiedHigh
100XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxverifiedHigh
101XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxverifiedHigh
102XXX.XXX.XXX.XXXxx-xx-xxxx.xxxxx.xxxXxxxxxverifiedHigh
103XXX.XXX.XXX.XXXXxxxxxverifiedHigh
104XXX.XXX.XXX.XXXXxxxxxverifiedHigh
105XXX.XX.XXX.XXXxxxxxverifiedHigh
106XXX.XXX.XXX.XXXxxxxxverifiedHigh
107XXX.XX.XXX.XXXXxxxxxverifiedHigh
108XXX.XX.XXX.XXXXxxxxxverifiedHigh
109XXX.XXX.X.XXXxxxxxverifiedHigh
110XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxxverifiedHigh
111XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxxverifiedHigh
112XXX.XXX.XXX.XXxx-xxx-xxx-xxx-xx.xx.xxxxxxxxxxxx.xxxXxxxxxverifiedHigh
113XXX.X.X.XXxx-x-x-xxx.xxxxxxxxxxxxxx.xxxxxxxx.xxXxxxxxverifiedHigh
114XXX.XXX.XX.Xxxx-xxx-xxx-xx-x-xxx.xxxx-xxxxxxxxx.xxx.xxXxxxxxverifiedHigh
115XXX.XXX.X.XXXXxxxxxverifiedHigh
116XXX.X.X.XXXxxxxxverifiedHigh
117XXX.XXX.XXX.XXXxxxxxverifiedHigh
118XXX.XX.XXX.XXXx-xxxx.x-xxxxxx.xxxXxxxxxverifiedHigh
119XXX.XX.XXX.XXXxxxxxxxxxx.xxxxxx.xxxXxxxxxverifiedHigh
120XXX.XXX.XX.XXXXxxxxxverifiedHigh
121XXX.XXX.XX.XXXxxxxxverifiedHigh
122XXX.XXX.XX.XXXxxxxxverifiedHigh
123XXX.XXX.XX.XXXxxxxxverifiedHigh
124XXX.XXX.XX.XXXxxxxxverifiedHigh
125XXX.XXX.XXX.XXXXxxxxxverifiedHigh
126XXX.XXX.X.Xxxxx-xxx-xxx-x-x.xxxxxx.xxxxxxxx.xxxXxxxxxverifiedHigh
127XXX.XXX.X.XXXxxxx-xxx-xxx-x-xxx.xxxxxx.xxxxxxxx.xxxXxxxxxverifiedHigh
128XXX.XXX.X.XXxxxx-xxx-xxx-x-xx.xxxxxx.xxxxxxxx.xxxXxxxxxverifiedHigh
129XXX.XXX.X.XXXxxxxxverifiedHigh
130XXX.XXX.XX.XXXXxxxxxverifiedHigh
131XXX.XXX.XX.XXXXxxxxxverifiedHigh
132XXX.XXX.XXX.XXXxxxxxverifiedHigh

TTP - Tactics, Techniques, Procedures (10)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (100)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClassIndicatorTypeConfidence
1File/admin.php?r=admin/AdminBackup/delpredictiveHigh
2File/admin/edit.phppredictiveHigh
3File/admin/index.php/template/ajax?action=deletepredictiveHigh
4File/admin/index.php?mode=content&page=media&action=editpredictiveHigh
5File/admin/users.php?source=edit_user&id=1predictiveHigh
6File/administrator/alerts/alertLightbox.phppredictiveHigh
7File/administrator/templates/default/html/windows/right.phppredictiveHigh
8File/apps/acs-commons/content/page-compare.htmlpredictiveHigh
9File/Content/Template/root/reverse-shell.aspxpredictiveHigh
10File/demo/module/?module=HEREpredictiveHigh
11File/download/set.cgipredictiveHigh
12File/dvcset/sysset/set.cgipredictiveHigh
13File/xxxxxx/xxxxxxxxxxxxxpredictiveHigh
14File/xxxxxx/xxxxxxxxxxxxpredictiveHigh
15File/xxxxxxx/xxxxxxxpredictiveHigh
16File/xxxxx.xxx?x=xxxxx&x=xxxxxx&x=xxxxxxxxxxxxxxxpredictiveHigh
17File/xxxxxx/xxxxxxxpredictiveHigh
18File/xxxxxxx/xxxxpredictiveHigh
19File/xxxxxx/xxxxxxxxxxxxxxx.xxxpredictiveHigh
20Filexxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxxxxxxxx.xxxpredictiveHigh
21Filexxxx.xxx_xxxxx_xxxx_xxxx-xxxx.xxxpredictiveHigh
22Filexxxxxxx.xxxpredictiveMedium
23Filexxxxxxxxxx.xxxpredictiveHigh
24Filexxx-xxx/xxxxxxxxxxxxx.xxxpredictiveHigh
25Filexxxxxxx/xxx/xxxx/xxx-xxxxxx-xxxxxx.xpredictiveHigh
26Filexxxxxxxxxxxxxxxxx.xxxpredictiveHigh
27FilexxxpredictiveLow
28Filexxxx.xpredictiveLow
29Filexxxxxxx.xpredictiveMedium
30Filexxxx/xxx_xxx_xxxxx.xpredictiveHigh
31Filexxxxx.xxxxpredictiveMedium
32Filexxxxx.xxx?x=xxxx&x=xxxx&x=xx_xxx_xxxxxxpredictiveHigh
33Filexxxxx.xxx?x=xxxx&x=xxxxxxx&x=xxxpredictiveHigh
34Filexxxxx/xxx/xxxxxxxxx/xx_xxxxxx_xxx.xpredictiveHigh
35Filexxxxxxxx.xxpredictiveMedium
36Filexxx_xx/xxx_xx_xxxxxx.xpredictiveHigh
37Filexxx_xxxxxxx.xpredictiveHigh
38Filexxxx.xxxpredictiveMedium
39Filexx-xxx.xxxpredictiveMedium
40Filexxxx.xxxpredictiveMedium
41Filexxxxxx.xxxpredictiveMedium
42Filexxxx.xxxpredictiveMedium
43Filexx_xxxx/xxxx_xxxx.xpredictiveHigh
44Filexx_xxxx/xxxxxxxxxxxxxxxx.xpredictiveHigh
45Filexxx_xxxxx.xpredictiveMedium
46Filexxxxx/xxxx_xxxxx.xpredictiveHigh
47Filexxxxxxxxxxxxxxx.xxxpredictiveHigh
48Filexxx/xxxxxx/xxxxxxxxxxxxx.xxxpredictiveHigh
49FilexxxxxxpredictiveLow
50Filexxxxxx.xxxpredictiveMedium
51Filexx-xxxxxx.xxxpredictiveHigh
52Filexxxx.xxpredictiveLow
53File\xxxxxxx\xxxxxxxx_xxxxxxxxxx.xxxpredictiveHigh
54File\xxxxxxx\xxxx_xxxxxxxxxx.xxxpredictiveHigh
55File~/xxxx/xxx/xxxxxxx/xxxxxxxxxx/xxxxxx.xxxpredictiveHigh
56File~/xxx/xxxxx.xxxpredictiveHigh
57File~/xxxxxxxx/xx-xxxxxxxxxx.xxxpredictiveHigh
58Library/xxx/xxxxxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxxx/xxxxxxxx.xxxpredictiveHigh
59Library/xxx/xxxxxxxxx/xxxxxxx/xxxxxxxx/xxxxxxxxx/xxxxx.xxxpredictiveHigh
60Argumentx/xpredictiveLow
61Argumentxxxxx_xxxpredictiveMedium
62Argumentxxxxx_xxxxxxxxpredictiveHigh
63Argumentxxxxx.xxxxxxxxpredictiveHigh
64ArgumentxxxxxpredictiveLow
65ArgumentxxxxxpredictiveLow
66ArgumentxxxxxxxpredictiveLow
67ArgumentxxxxxxxxxxpredictiveMedium
68Argumentxxxx_xxxxxxpredictiveMedium
69ArgumentxxxxxxpredictiveLow
70Argumentxx-xxxxx-xxxxxxpredictiveHigh
71ArgumentxxxxxxxxxxxpredictiveMedium
72ArgumentxxxpredictiveLow
73Argumentxxxxx xxxx/xxxx xxxxpredictiveHigh
74Argumentxxx_xxxxxx_xxxxx_xxxxxxpredictiveHigh
75ArgumentxxpredictiveLow
76ArgumentxxxxpredictiveLow
77Argumentxxxx_xxxxxxpredictiveMedium
78Argumentxxxx_xxxpredictiveMedium
79Argumentxxxx/xxxxxxxxxxxpredictiveHigh
80Argumentxx_xxxxxxxxx_xxpredictiveHigh
81Argumentxxxxxx_xxxx_xxxxxxx[xxxxxx-xx]/xxxxxx_xxxx_xxxxxxx[xx-xxxxx]/xxxxxx_xxxx_xxxxxxx[xxx-xxxxx]/xxxxxx_xxxx_xxxxxxx[xxx_xxxxx]predictiveHigh
82ArgumentxxxxpredictiveLow
83ArgumentxxxxxxxxpredictiveMedium
84ArgumentxxxxpredictiveLow
85Argumentxxxxxx_xxxxpredictiveMedium
86Argumentxxxx-xxxxxxxpredictiveMedium
87ArgumentxxxxxxxxxxxxxxpredictiveHigh
88Argumentxxxxx_xxxxxxpredictiveMedium
89Argumentxxxxxxx xxxxxxxpredictiveHigh
90ArgumentxxxxxxpredictiveLow
91Argumentxxxxxxxx[xxxx xxxxxxx][xxxxxxxxxxxxxxxxxx]predictiveHigh
92ArgumentxxxpredictiveLow
93ArgumentxxxpredictiveLow
94ArgumentxxxxpredictiveLow
95ArgumentxxxxxpredictiveLow
96ArgumentxxpredictiveLow
97ArgumentxxxpredictiveLow
98Argumentxxx/xxxxpredictiveMedium
99Argumentxxx_xxxx_xxxx_xxxxxx_xxxxxx_xxxxxxxpredictiveHigh
100Input Value<xxxxxx>xxxxx(x)</xxxxxx>predictiveHigh

References (22)

The following list contains external sources which discuss the actor and the associated activities:

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!