Houdini تحليل

IOB - Indicator of Behavior (445)

التسلسل الزمني

اللغة

en376
es20
de14
zh10
fr10

البلد

us226
de10
fr8
es8
ru6

الفاعلين

النشاطات

الاهتمام

التسلسل الزمني

النوع

المجهز

منتج

Linux Kernel12
Microsoft Windows10
sized-chunks crate8
PHP6
Apache HTTP Server4

الثغرات

#الثغرةBaseTemp0dayاليومق�معالجةCTIEPSSCVE
1PHP phpinfo سكربتات مشتركة4.33.9$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.040.02101CVE-2007-1287
2Lars Ellingsen Guestserver guestbook.cgi سكربتات مشتركة4.34.3$0-$5k$0-$5kNot DefinedNot Defined0.110.00169CVE-2005-4222
3All Enthusiast Inc Reviewpost Php Pro showproduct.php حقن إس كيو إل7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix0.040.00501CVE-2004-2175
4DZCP deV!L`z Clanportal config.php تجاوز الصلاحيات7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.460.00954CVE-2010-0966
5PhotoPost PHP Pro showproduct.php حقن إس كيو إل9.89.4$0-$5k$0-$5kNot DefinedOfficial Fix0.040.00276CVE-2004-0250
6TikiWiki tiki-register.php تجاوز الصلاحيات7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix1.040.01009CVE-2006-6168
7LogicBoard CMS away.php Redirect6.36.1$0-$5k$0-$5kNot DefinedUnavailable1.220.00000
8MGB OpenSource Guestbook email.php حقن إس كيو إل7.37.3$0-$5k$0-$5kHighUnavailable0.300.02462CVE-2007-0354
9FLDS redir.php حقن إس كيو إل7.37.3$0-$5k$0-$5kHighUnavailable0.060.00203CVE-2008-5928
10Gempar Script Toko Online shop_display_products.php حقن إس كيو إل7.36.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.040.00100CVE-2009-0296
11Squitosoft Squito Gallery photolist.inc.php تلف الذاكرة7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.080.01371CVE-2005-2258
12SourceCodester Employee and Visitor Gate Pass Logging System GET Parameter view_designation.php حقن إس كيو إل7.16.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.020.00117CVE-2023-2090
13bodymen تجاوز الصلاحيات6.36.2$0-$5k$0-$5kNot DefinedNot Defined0.000.00095CVE-2022-25296
14Microsoft IIS سكربتات مشتركة5.24.7$5k-$25k$0-$5kProof-of-ConceptOfficial Fix0.060.00548CVE-2017-0055
15Zemanta Search Everything index.php حقن إس كيو إل7.37.0$0-$5k$0-$5kHighOfficial Fix0.000.00279CVE-2014-2316
16Apple Mac OS X Server Wiki Server حقن إس كيو إل5.34.6$5k-$25k$0-$5kUnprovenOfficial Fix0.130.00339CVE-2015-5911
17Hassan Consulting Shopping Cart shop.cgi اجتياز الدليل5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.000.02149CVE-2000-0921
18Responsive Menus Configuration Setting responsive_menus.module responsive_menus_admin_form_submit سكربتات مشتركة3.23.2$0-$5k$0-$5kNot DefinedOfficial Fix0.060.00073CVE-2018-25085
19FacileForms facileforms.frame.php تجاوز الصلاحيات7.36.6$0-$5k$0-$5kProof-of-ConceptOfficial Fix0.020.02004CVE-2008-2990
20CartWIZ productDetails.asp حقن إس كيو إل6.36.3$0-$5k$0-$5kNot DefinedNot Defined0.030.00000

IOC - Indicator of Compromise (23)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (19)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IOA - Indicator of Attack (204)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDالفئةIndicatorالنوعالثقة
1File/Admin/add-student.phppredictiveعالي
2File/admin/inquiries/view_details.phppredictiveعالي
3File/Admin/login.phppredictiveعالي
4File/admin/maintenance/view_designation.phppredictiveعالي
5File/admin/transactions/update_status.phppredictiveعالي
6File/AdminDirpredictiveمتوسط
7File/api/user/password/sent-reset-emailpredictiveعالي
8File/carbon/ndatasource/validateconnection/ajaxprocessor.jsppredictiveعالي
9File/coreframe/app/order/admin/index.phppredictiveعالي
10File/debug/pprofpredictiveمتوسط
11File/dev/snd/seqpredictiveمتوسط
12File/etc/sudoerspredictiveمتوسط
13File/forum/away.phppredictiveعالي
14File/products/details.asppredictiveعالي
15File/showfile.phppredictiveعالي
16File/uncpath/predictiveمتوسط
17File/usr/www/ja/mnt_cmd.cgipredictiveعالي
18File/Wedding-Management/package_detail.phppredictiveعالي
19Fileadclick.phppredictiveمتوسط
20Fileadmin-ajax.phppredictiveعالي
21Fileadmin/abc.phppredictiveعالي
22Fileadmin/news.phppredictiveعالي
23FileadminCons.phppredictiveعالي
24Fileapps\admin\controller\content\SingleController.phppredictiveعالي
25Filexxxxxxxx.xxxxxxx.xxxpredictiveعالي
26Filexxxx.xxx.xxxpredictiveمتوسط
27Filexxxxxxxxxx.xxxpredictiveعالي
28Filex:\xxxxxxx\xxxxxxxx\xxxxxx\xxxpredictiveعالي
29Filexx.xpredictiveواطئ
30Filexxxx_xxxxxxx.xxxpredictiveعالي
31Filexxx.xxxpredictiveواطئ
32Filexxxxxxxx.xxxpredictiveمتوسط
33Filexxxxxxxx.xxxpredictiveمتوسط
34Filexxxxx.xxxxx.xxxpredictiveعالي
35Filexxx/xx/xxxxxxxxx/xxxxxxx/xxxxxxxxxxx.xxxxpredictiveعالي
36Filexxxxxxxx_xxxxxxxxxxxxxxxxx.xxxpredictiveعالي
37Filexxx\xxxxxxxx\xxxxx\xxxxxx\xxx\xxxxxxxxxx.xxxxpredictiveعالي
38Filexxxxxx.xxxpredictiveمتوسط
39Filexxxxx.xxxpredictiveمتوسط
40Filexxxx/xxxxxxxxxxxxxxx.xxxpredictiveعالي
41Filexxxxxx/xx-xxxxx-xxxxxxxxx!xxxxxxx.xxxxxxpredictiveعالي
42Filexxxxxx.xxxpredictiveمتوسط
43Filexxxxxx.xxxpredictiveمتوسط
44Filexxxxxxxx.xxxpredictiveمتوسط
45Filexxxxxxx/xxxx/xxxx/xxxx_xxx.xpredictiveعالي
46Filexxxxxxx/xxxx/xxxx.xpredictiveعالي
47Filexxxxx.xpredictiveواطئ
48Filexxxxx/xx/xxxxx.xxpredictiveعالي
49Filexxxxx.xxxpredictiveمتوسط
50Filexxx/xxxx/xxxxxx/xxxxxx_xxxxxxx.xpredictiveعالي
51Filexxxxxxxxxxx.xxxxx.xxxpredictiveعالي
52Filexxxxxxxxxxx/xxxxx.xxxpredictiveعالي
53Filexx.xxxxx.xxxpredictiveمتوسط
54Filexxxxxxx.xxxpredictiveمتوسط
55Filexxxxxxxxx.xxxpredictiveعالي
56Filexxxx.xxxpredictiveمتوسط
57Filexxxxxxxxx.xxxpredictiveعالي
58Filexxxxxxxxxx.xxxpredictiveعالي
59Filexxxxxxxxx.xxxpredictiveعالي
60Filexxx/xxxxxx.xxxpredictiveعالي
61Filexxxxxxxx/xxxx.xxxpredictiveعالي
62Filexxxxx.xxxpredictiveمتوسط
63Filexxxxx.xxxpredictiveمتوسط
64Filexxxxx.xxxpredictiveمتوسط
65Filexxxxxxx.xxxpredictiveمتوسط
66Filexxxxxxxxxxxxxxx.xxpredictiveعالي
67Filexxxx_xxxx.xxxpredictiveعالي
68Filexxx/xxxxx/xxxxxxxx/xxxx/xxxxxxx_xxxxxxxxx.xxpredictiveعالي
69Filexxxxx/xxxxxxxx.xpredictiveعالي
70Filexxxxxxxxxxxx/xxxxxxxx.xpredictiveعالي
71Filexxxxxxxxxxxx/xx_xxxxxx.xpredictiveعالي
72Filexxxxx.xxxpredictiveمتوسط
73Filexxxxx.xxxpredictiveمتوسط
74Filexxxxx.xxxxpredictiveمتوسط
75Filexxxxxx.xxxpredictiveمتوسط
76Filexxxxxx/xxxx.xxxpredictiveعالي
77Filexxxxxxx.xxxpredictiveمتوسط
78Filexxx_xxxx.xxxpredictiveمتوسط
79Filexxxxxxx.xxxpredictiveمتوسط
80Filexxxxxxxx.xxxpredictiveمتوسط
81Filexxxxxxxx_xxxxxx.xxxpredictiveعالي
82Filexxx.xxpredictiveواطئ
83Filexxxxxxx.xxxx_xxxpredictiveعالي
84Filexxxxxxxxx.xxx.xxxpredictiveعالي
85Filexxxxxxx.xxxpredictiveمتوسط
86Filexxxx_xxx.xpredictiveمتوسط
87Filexxxxxxxx.xxxpredictiveمتوسط
88Filexxxxx_xxx.xxxpredictiveعالي
89Filexxxx.xxxpredictiveمتوسط
90Filexxxxxxxxxxxxxx.xxxpredictiveعالي
91Filexxxxx.xxxpredictiveمتوسط
92Filexxxxxxxxxxxx_xxxxxxxx.xxx.xxxpredictiveعالي
93Filexxxxxxx_xxx_xxxxx_xxxxxx.xxxxpredictiveعالي
94Filexxxxxxxxxx_xxxxx.xxxxxxpredictiveعالي
95Filexxxxxxx_xxxxxx_xxxxxxxx.xxxpredictiveعالي
96Filexxxx_xxxxxxxxx.xxxpredictiveعالي
97Filexxxxx.xxxpredictiveمتوسط
98Filexxxxx.xxxpredictiveمتوسط
99Filexxxx.xxxpredictiveمتوسط
100Filexxxxxxxxxxxxx.xxxpredictiveعالي
101Filexxxxxxxxxxxx.xxxpredictiveعالي
102Filexxxxxxx.xxxpredictiveمتوسط
103Filexxxxxxxxxxxxxxxx.xxxpredictiveعالي
104Filexxxxxxxxxxxxxx.xxxpredictiveعالي
105Filexxxxxxxxxxxxxxx.xxxpredictiveعالي
106Filexxxx_xxxxxxx_xxxxxxxx.xxxpredictiveعالي
107Filexxxxxxxx.xxx/xxxxxx.xxx/xxxxxxxx.xxxpredictiveعالي
108Filexxxxxxxxxxx.xxxpredictiveعالي
109Filexxx/xxxxxxx.xpredictiveعالي
110Filexxxx-xxxxxxx/xxxxx.xxxpredictiveعالي
111Filexxxx-xxxxxxxx.xxxpredictiveعالي
112Filexxxxxx.xxxxxxx.xxxxxxxxxxxxxxxxxxxxxxxxpredictiveعالي
113Filexxxxxxxxxxxxxxxx.xxxpredictiveعالي
114Filexxxx/xxxxxx.xxxxpredictiveعالي
115Filexx_xxxx.xxxpredictiveمتوسط
116Filexxxxxxxx.xxxpredictiveمتوسط
117Filexxxxxxx.xxxpredictiveمتوسط
118Filexxxxxxx/xxxxxxxxx/xxxxxxxxxxx.xxxpredictiveعالي
119Filexx-xxxxx/xxxxxxx-xxxxxxx.xxx?xxxx=xxxxxxx_xxxxxx_xxxxxxpredictiveعالي
120Filexx-xxxxx.xxxpredictiveمتوسط
121Filexxxxxxxxxxxx.xxxpredictiveعالي
122Library/xxx/xxx/xxx/xxx_xxxxxxxxxx/xxx_xxxx.xxxpredictiveعالي
123Libraryxxx/xxxx/xxxxxxx/xxxxxxxx_xxxxxxx/xxxxxxxx.xxpredictiveعالي
124Libraryxxxxxxxx.xxxpredictiveمتوسط
125Libraryxxx/xxx/xxxx/predictiveعالي
126Argumentx_xxpredictiveواطئ
127Argument?xxxx_xxxx=xxxxxxx.xxx/xxxx=xxxxxx/xxx=xxx+/xxx/.xxxxxxxx/xxxxxxx=//xxxxxxxxxxxxxx.xxx=xpredictiveعالي
128Argumentxxxxxxpredictiveواطئ
129Argumentxxxxxxxxpredictiveمتوسط
130Argumentxxxxxxxxxxxpredictiveمتوسط
131Argumentxxxx_xxx_xxxxpredictiveعالي
132Argumentxxxpredictiveواطئ
133Argumentxxxxxxxxxpredictiveمتوسط
134Argumentxxxxxxxxpredictiveمتوسط
135Argumentxxxxxpredictiveواطئ
136Argumentxxxxxpredictiveواطئ
137Argumentxxx_xxpredictiveواطئ
138Argumentxxxpredictiveواطئ
139Argumentxxxx_xxpredictiveواطئ
140Argumentxxxxxxxxxxxxpredictiveمتوسط
141Argumentxxxxxxxxpredictiveمتوسط
142Argumentxxxxxxxx_xxxxxx/xxxxxxxx_xxxx/xxxxxxxx_xxxxxxxx/xxxxxxxx_xxxxpredictiveعالي
143Argumentxxxxxxxxxxpredictiveمتوسط
144Argumentxxxxpredictiveواطئ
145Argumentxxxxxxxxxxpredictiveمتوسط
146Argumentxxxxxxpredictiveواطئ
147Argumentxxxxxpredictiveواطئ
148Argumentxxxxx_xxxx_xxxxpredictiveعالي
149Argumentxx_xxxxxxxpredictiveمتوسط
150Argumentxxxxpredictiveواطئ
151Argumentxxxxxxxpredictiveواطئ
152Argumentxxxxpredictiveواطئ
153Argumentxxxxpredictiveواطئ
154Argumentxxxxxxxxpredictiveمتوسط
155Argumentxxpredictiveواطئ
156Argumentxxpredictiveواطئ
157Argumentxx/xxxxx/xxxxxxx_xxpredictiveعالي
158Argumentxxxxxxxxxxpredictiveمتوسط
159Argumentxxxxxxxxxpredictiveمتوسط
160Argumentxxxxxxxxpredictiveمتوسط
161Argumentxxxx_xxpredictiveواطئ
162Argumentxxxxxpredictiveواطئ
163Argumentxxxxpredictiveواطئ
164Argumentxxxxxxxxxpredictiveمتوسط
165Argumentxxxpredictiveواطئ
166Argumentxxxxxxxxx_xxxxxxxx_xxxxpredictiveعالي
167Argumentxxxpredictiveواطئ
168Argumentxxxxxpredictiveواطئ
169Argumentxxxpredictiveواطئ
170Argumentxxxx_xxpredictiveواطئ
171Argumentxxxxpredictiveواطئ
172Argumentxxxxxxxxpredictiveمتوسط
173Argumentxxxx_xx_xx_xxxpredictiveعالي
174Argumentxxxxxxxxxpredictiveمتوسط
175Argumentxxxpredictiveواطئ
176Argumentxxxxxpredictiveواطئ
177Argumentxxxxxxxxpredictiveمتوسط
178Argumentxx_xxxxpredictiveواطئ
179Argumentxxxxxxx_xxpredictiveمتوسط
180Argumentxxxxxpredictiveواطئ
181Argumentxxxxxxx/xxxxxpredictiveعالي
182Argumentxxxxxxxxxxxxpredictiveمتوسط
183Argumentxxxxxxpredictiveواطئ
184Argumentxxxxxxx-xxxxpredictiveمتوسط
185Argumentxxxpredictiveواطئ
186Argumentxxxxxxpredictiveواطئ
187Argumentxxpredictiveواطئ
188Argumentxxxxxxxxxpredictiveمتوسط
189Argumentxxxxxxxxxpredictiveمتوسط
190Argumentxxxxxxpredictiveواطئ
191Argumentxxxxxxxxpredictiveمتوسط
192Argumentxxxxxxxxxxpredictiveمتوسط
193Argumentxxxxpredictiveواطئ
194Argumentxxxxx_xxpredictiveمتوسط
195Argumentxxxxxxxxxxxpredictiveمتوسط
196Argumentxxxxxx_xxxxpredictiveمتوسط
197Argumentxxxpredictiveواطئ
198Argumentxxxxxxpredictiveواطئ
199Argumentxxxxxxxxpredictiveمتوسط
200Input Value../../xxx-xxx/xxxpredictiveعالي
201Input Value./xxx/predictiveواطئ
202Input Value<xxxx<xxxxxx>xx>xxxxx(x)</xxxx</xxxxxx>xx>predictiveعالي
203Input Valuexxxxxxxx+'@xxxpredictiveعالي
204Pattern/xxxpredictiveواطئ

المصادر (12)

The following list contains external sources which discuss the actor and the associated activities:

Samples (1)

The following list contains associated samples:

Interested in the pricing of exploits?

See the underground prices here!