Settore Hostingprovider

Timeframe: -28 days

Default Categories (69): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Backup Software, Billing Software, Bug Tracking Software, Calendar Software, Chat Software, Cloud Software, Communications System, Connectivity Software, Content Management System, Continuous Integration Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Reader Software, Domain Name Software, E-Commerce Management Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Information Management Software, JavaScript Library, Joomla Component, Log Management Software, Mail Client Software, Mail Server Software, Mailing List Software, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Network Utility Software, Office Suite Software, Operating System, Operating System Utility Software, Packet Analyzer Software, Printing Software, Product Lifecycle Management Software, Programming Language Software, Programming Tool Software, Project Management Software, Remote Access Software, Router Operating System, Server Management Software, Service Management Software, Software Library, Software Management Software, Spreadsheet Software, SSH Server Software, Testing Software, Ticket Tracking Software, Versioning Software, Virtualization Software, Web Browser, Web Server, Windowing System Software, Word Processing Software, WordPress Plugin

Sequenza temporale

Fornitore

Not Defined364
Microsoft92
Apple56
Google40
Linux26

Prodotto

Apple macOS50
Microsoft Windows48
Google Chrome40
Linux Kernel26
Adobe Experience Manager18

Contromisure

Official Fix454
Temporary Fix0
Workaround0
Unavailable2
Not Defined380

Sfruttabilità

High0
Functional6
Proof-of-Concept54
Unproven62
Not Defined714

Accesso al vettore

Not Defined0
Physical4
Local130
Adjacent74
Network628

Autenticazione

Not Defined0
High92
Low428
None316

Interazione dell'utente

Not Defined0
Required414
None422

C3BM Index

CVSSv3 Base

≤10
≤20
≤326
≤4126
≤5224
≤6182
≤7162
≤870
≤942
≤104

CVSSv3 Temp

≤10
≤20
≤330
≤4132
≤5252
≤6240
≤790
≤878
≤912
≤102

VulDB

≤10
≤20
≤370
≤4154
≤5210
≤6144
≤7160
≤868
≤926
≤104

NVD

≤1828
≤20
≤30
≤42
≤50
≤60
≤70
≤82
≤94
≤100

CNA

≤1566
≤20
≤34
≤412
≤554
≤672
≤742
≤842
≤930
≤1014

Fornitore

≤1770
≤20
≤30
≤40
≤52
≤66
≤714
≤820
≤920
≤104

Exploiter 0 giorni

<1k94
<2k436
<5k88
<10k62
<25k54
<50k76
<100k26
≥100k0

Exploiter aujourd'hui

<1k422
<2k222
<5k66
<10k38
<25k88
<50k0
<100k0
≥100k0

Sfrutta il volume del mercato

IOB - Indicator of Behavior (1000)

Sequenza temporale

Linguaggio

en902
it50
de14
es10
fr8

Nazione

us132
it70
gb30
in18
de18

Attori

Qakbot2

Attività

Interesse

Sequenza temporale

Genere

Anti-Malware Software28
WordPress Plugin22
Operating System18
Content Management System16
E-Commerce Management Software14

Fornitore

Not Defined58
SourceCodester10
Microsoft8
Apple8
Max Secure8

Prodotto

Apple macOS8
Max Secure Anti Virus Plus8
IObit Malware Fighter8
Foxit PDF Reader6
DriverGenius6

Vulnerabilità

#VulnerabilitàBaseTemp0dayOggiSfrConCTIEPSSCVE
1Zhong Bang CRMEB Java list getAdminList sql injection6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined5.210.00063CVE-2023-1608
2zwczou WeChat SDK Python to_xml XML External Entity6.36.0$0-$5k$0-$5kNot DefinedOfficial Fix2.610.00063CVE-2018-25082
3404like Plugin 404Like.php checkPage sql injection7.37.0$0-$5k$0-$5kNot DefinedOfficial Fix2.560.00058CVE-2012-10009
4Zoho ManageEngine OpManager XML File XML External Entity5.45.4$0-$5k$0-$5kNot DefinedNot Defined0.62+0.00000CVE-2022-43473
5SourceCodester E-Commerce System Username escalazione di privilegi6.35.7$0-$5k$0-$5kProof-of-ConceptNot Defined1.650.00091CVE-2023-1557
6SNIProxy Wildcard Backend Host buffer overflow8.58.4$0-$5k$0-$5kNot DefinedOfficial Fix0.57+0.00000CVE-2023-25076
7Dreamer CMS File Upload cross site scripting3.53.4$0-$5k$0-$5kNot DefinedNot Defined0.54+0.00000CVE-2023-1746
8Infoline Project Management System escalazione di privilegi6.96.8$0-$5k$0-$5kNot DefinedOfficial Fix0.54+0.00000CVE-2023-1725
9DriverGenius IOCTL mydrivers64.sys 0x9C402088 buffer overflow7.87.1$0-$5k$0-$5kProof-of-ConceptNot Defined1.520.00045CVE-2023-1676
10IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E004 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.240.00064CVE-2023-1646
11IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E008 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.240.00045CVE-2023-1645
12IObit Malware Fighter IOCTL ImfHpRegFilter.sys 0x8001E040 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.140.00045CVE-2023-1643
13DriverGenius IOCTL mydrivers64.sys 0x9c402084 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.550.00045CVE-2023-1677
14DriverGenius IOCTL mydrivers64.sys 0x9C40A0E0 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.610.00045CVE-2023-1678
15DriverGenius IOCTL mydrivers64.sys 0x9C40A108 buffer overflow5.34.8$0-$5k$0-$5kProof-of-ConceptNot Defined1.530.00045CVE-2023-1679
16AnyMailing Plugin Template cross site scripting5.75.6$0-$5k$0-$5kNot DefinedOfficial Fix1.110.00000CVE-2023-28733
17Xunrui CMS main.html rivelazione di un 'informazione4.33.9$0-$5k$0-$5kProof-of-ConceptNot Defined1.420.00000CVE-2023-1680
18IObit Malware Fighter IOCTL ObCallbackProcess.sys 0x222040 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.110.00045CVE-2023-1642
19Watchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 escalazione di privilegi4.44.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.160.00042CVE-2023-1453
20IObit Malware Fighter IOCTL IMFCameraProtect.sys 0x8018E010 denial of service5.55.0$0-$5k$0-$5kProof-of-ConceptNot Defined1.140.00045CVE-2023-1644

IOC - Indicator of Compromise (5)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeAttoreGenereFiducia
151.83.254.0/24BumblebeepredictiveAlto
2XX.XXX.XXX.X/XXXxxxxxxpredictiveAlto
3XX.XX.XXX.X/XXXxxxxxxxpredictiveAlto
4XX.XXX.XXX.X/XXXxxxxxpredictiveAlto
5XXX.XXX.XX.X/XXXxxxxxpredictiveAlto

TTP - Tactics, Techniques, Procedures (21)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueVulnerabilitàAccesso al vettoreGenereFiducia
1T1006CWE-22, CWE-23, CWE-425Pathname TraversalpredictiveAlto
2T1040CWE-319Authentication Bypass by Capture-replaypredictiveAlto
3T1055CWE-74InjectionpredictiveAlto
4T1059CWE-88, CWE-94, CWE-1321Cross Site ScriptingpredictiveAlto
5T1059.007CWE-79, CWE-80Cross Site ScriptingpredictiveAlto
6TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
7TXXXX.XXXCWE-XXX, CWE-XXXXxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx XxxxxxxxpredictiveAlto
8TXXXXCWE-XX, CWE-XXXxxxxxx XxxxxxxxxpredictiveAlto
9TXXXX.XXXCWE-XXXXxxx XxxxxxxxpredictiveAlto
10TXXXXCWE-XXX, CWE-XXXXxxxxxxxxx XxxxxxpredictiveAlto
11TXXXX.XXXCWE-XXXXXxxxxxxxxxx Xxxxxxx Xxxxxxxxxx XxxxxxxxxxpredictiveAlto
12TXXXXCWE-XXXxx XxxxxxxxxpredictiveAlto
13TXXXXCWE-XXXXxx.xxx Xxxxxxxxxxxxxxxx: Xxxxxxxx Xx Xxxxxxxxxxxxx XxxxpredictiveAlto
14TXXXXCWE-XXXXxxxxxxx Xxxxxxxxx Xx X Xxxxxxxxxxx'x Xxxxx Xx XxxxxpredictiveAlto
15TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx XxxxpredictiveAlto
16TXXXX.XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx XxxxxxxxxxpredictiveAlto
17TXXXX.XXXCWE-XXXXxxxxxxxpredictiveAlto
18TXXXXCWE-XXXXxxxxxxxxxxxxpredictiveAlto
19TXXXXCWE-XXXX2xx Xxxxxxxxxxxxxxxx: Xxxx Xxxxxxxxxxxx Xxxxxxx XxxxxxxxxxpredictiveAlto
20TXXXX.XXXCWE-XXXXxxxxxxxxxxx XxxxxxpredictiveAlto
21TXXXXCWE-XXXXxxxxxxxxxx XxxxxxpredictiveAlto

IOA - Indicator of Attack (179)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDClasseIndicatorGenereFiducia
1File/adminpredictiveBasso
2File/admin/delete_user.phppredictiveAlto
3File/ajax/update_certificatepredictiveAlto
4File/alphaware/details.phppredictiveAlto
5File/api/admin/store/product/listpredictiveAlto
6File/api/admin/store/product/savepredictiveAlto
7File/api/admin/system/store/order/listpredictiveAlto
8File/api/admin/user/listpredictiveAlto
9File/api/uploadpredictiveMedia
10File/batm/app/admin/standalone/deploymentspredictiveAlto
11File/bookstore/bookPerPub.phppredictiveAlto
12File/config/myfield/test.phppredictiveAlto
13File/dayrui/Fcms/View/system_log.htmlpredictiveAlto
14File/dayrui/My/Config/Install.txtpredictiveAlto
15File/dayrui/My/View/main.htmlpredictiveAlto
16File/dede/group_store.phppredictiveAlto
17File/dev/infiniband/rdma_cmpredictiveAlto
18File/ecommerce/admin/category/controller.phppredictiveAlto
19File/ecommerce/admin/settings/setDiscount.phppredictiveAlto
20File/ecommerce/admin/user/controller.php?action=editpredictiveAlto
21File/Sys/index.htmlpredictiveAlto
22File/wp-content/plugins/wordpress-simple-paypal-shopping-cart/includes/admin/predictiveAlto
23Filexxxxxxx.xxxpredictiveMedia
24Filex-xxxxx.xxxpredictiveMedia
25Filexx-xxxxxxxx-xxxxxxxx.xxxpredictiveAlto
26Filexxxxx/xxxxx_xxxxx.xxxpredictiveAlto
27Filexxxxx/xxxxx-xxx-xxxxx-xxxxx.xxxpredictiveAlto
28Filexxxxx/xxxx/xxxxxxxxxx.xxx?xxxxxx=xxxxpredictiveAlto
29Filexxxxxx.xxxpredictiveMedia
30Filexxxx/xxx/xxx/xxx.xpredictiveAlto
31Filexxx/xxxx.xpredictiveMedia
32Filexxxx.xpredictiveBasso
33Filex:\xxxxxxxxxx\xxxx\xxxxxxxxxx_xxxxx.xxxpredictiveAlto
34Filexxxxxx.xxxpredictiveMedia
35Filexx-xxxxx-xxx-xxxxxxx-xxxx.xxx.xxxpredictiveAlto
36Filexxxx.xxxpredictiveMedia
37Filexxxxxx/xxxx/xxxx_xxx.xpredictiveAlto
38Filexxxxxxxxx_xxxxxxx.xxxpredictiveAlto
39Filexxxxxxxx.xxxpredictiveMedia
40Filexxxxxx_xxxx/xxxxxx/xxxx-xxxxxxxxx/xx/xxxxxxxxxx.xxpredictiveAlto
41Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
42Filexxxxxxx/xxx/xxx-xxxx.xpredictiveAlto
43Filexxxxxxx/xxx/xxx.xpredictiveAlto
44Filexxxxxxx/xxx/xxxxxxxx/xxxxxxxx/xxxxxxxxx/xxxxxxxx/xxxxxxxx.xpredictiveAlto
45Filexxxxxxx/xxxxxxx/xxxxxxx/xxxxxxx_xxx.xpredictiveAlto
46Filexxxxxxxxxxx-xxxx.xxxxxxxpredictiveAlto
47Filexx/xxxx/xxxxxxx.xpredictiveAlto
48Filexx/xxxx/xxxxxxxx.xpredictiveAlto
49Filexx/xxxxx/xxxxx.xpredictiveAlto
50Filexx/xxxxx/xxxxxx.xpredictiveAlto
51Filexx/xxxxxxxxx/xxxx_xx.xpredictiveAlto
52Filexxxxxxxx/xxxx_xxxxxxxx.xxxpredictiveAlto
53Filexxxx/xxxxpredictiveMedia
54Filexxxxxxx.xxxpredictiveMedia
55Filexx/xxx/xxxxx.xpredictiveAlto
56Filexxxxxxxx/xxxxx-xxxxxxxxxx-xxxx.xxxpredictiveAlto
57Filexxxxxxxx/xxxxxxxxxx-xxxxxx.xxxpredictiveAlto
58Filexx_xxxxx/xxxxxxxxx.xpredictiveAlto
59Filexxxxxx/xxxxx/xx.xpredictiveAlto
60Filexxx.xxxpredictiveBasso
61Filexxx/xxx.xxxpredictiveMedia
62Filexxxxx.xxxpredictiveMedia
63Filexxxxx_xxxx.xxxxxpredictiveAlto
64Filexxxxx_xxxxx_xxxxxxx.xxxxxpredictiveAlto
65Filexxxxx_xxxxxx.xxxxxpredictiveAlto
66Filexxxxxxxxxxxx.xxxpredictiveAlto
67Filexxxxxxx_xxx.xxxpredictiveAlto
68Filexxx/xxxxxxxxx/xxx_xxxx.xpredictiveAlto
69Filexxx/xxx/xxxxxxx.xpredictiveAlto
70Filexxx/xxxx/xxxx.xpredictiveAlto
71Filexxx/xxxx/xxxxxx.xpredictiveAlto
72Filexxx/xxx/xxx_xxxx.xpredictiveAlto
73Filexxx/xxx/xxx_xx.xpredictiveAlto
74Filexxxxx.xxxxpredictiveMedia
75Filexxxxxx/xxxxxxx.xpredictiveAlto
76Filex/xxxx/xxxx.xpredictiveAlto
77Filexxxx/xxxxpredictiveMedia
78Filexxxxxx/xxxxx-xxxxx-xxx-xxxxxxx.xxxpredictiveAlto
79Filexxxxxxx-xxxxxx.xxxpredictiveAlto
80Filexxxx.xxxpredictiveMedia
81Filexxxxxx/xxxxxx.xxxpredictiveAlto
82Filexxxx.xxxpredictiveMedia
83Filexxxxxx.xxxpredictiveMedia
84Filexxxx_xxxxxxxx.xxxpredictiveAlto
85Filexxx/xxxxx.xxpredictiveMedia
86Filexxxxxxxxx-xx-xxxxxxxx.xxxpredictiveAlto
87Filexxx_xxxxx.xpredictiveMedia
88Filexxxxx.xxxxxx.xxxxxxx.xxxpredictiveAlto
89Filexxxxxx.xxxpredictiveMedia
90Filexxx/xxxxx/xxx.xpredictiveAlto
91File\xxxxx\x\xxxxxxxxxxxxxxxx.xxxpredictiveAlto
92File\xxxxxx\xxxxxx\xxxxx_xxx.xxxxpredictiveAlto
93Libraryxxxxxx.xxxpredictiveMedia
94Libraryxxxxxxxxxxxxxxxx.xxxpredictiveAlto
95Libraryxxxxxxxxxxxxxx.xxxpredictiveAlto
96Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
97Libraryxxxxxx.xxxpredictiveMedia
98Libraryxxx/xxxxxx.xpredictiveMedia
99Libraryxxx/xxx_xxx.xpredictiveAlto
100Libraryxxxxxxxxxxx.xxxpredictiveAlto
101Libraryxxxxxxxxx.xxxpredictiveAlto
102Libraryxxxxxxxxxxxxxx.xxxpredictiveAlto
103Libraryxxxxxxxxxxx.xxxpredictiveAlto
104Libraryxxxxxx.xxpredictiveMedia
105Libraryxxxxxxxxxxxxxxxxx.xxxpredictiveAlto
106Libraryxxxxxxxx.xxxpredictiveMedia
107Libraryxxxx-xxxxxx.xxxpredictiveAlto
108Argument$_xxxxxx['xxxxxxx_xxx']predictiveAlto
109Argumentxxxxx xxxxpredictiveMedia
110Argumentxxx_xxxxx[]/xxx_xxxxx[]predictiveAlto
111ArgumentxxxxpredictiveBasso
112ArgumentxxxxxxxxxxxxxxxxxxxxpredictiveAlto
113ArgumentxxxxpredictiveBasso
114Argumentxxx_xx_xxxpredictiveMedia
115Argumentxxxxxx_xxpredictiveMedia
116Argumentxxxxxx_xxpredictiveMedia
117ArgumentxxxxxxxxpredictiveMedia
118Argumentxxxxxxxx_xxxx/xxxxxxxxxxx/xxxxxxxxxxx_xpredictiveAlto
119ArgumentxxxxxxpredictiveBasso
120ArgumentxxxxxxxpredictiveBasso
121Argumentxxxxxxxx_xxxxpredictiveAlto
122Argumentxx/xxxxx/xxxxxx/xxxxpredictiveAlto
123Argumentxxxxx/xxxxxxxxpredictiveAlto
124ArgumentxxxxxxpredictiveBasso
125ArgumentxxxxxxxxpredictiveMedia
126ArgumentxxxxpredictiveBasso
127Argumentxxxxxxxxx/xx/xxxxxxxxpredictiveAlto
128Argumentxxxx xxxxpredictiveMedia
129ArgumentxxxpredictiveBasso
130ArgumentxxpredictiveBasso
131ArgumentxxxxxxxxpredictiveMedia
132ArgumentxxxxxxxxpredictiveMedia
133ArgumentxxxpredictiveBasso
134ArgumentxxxxxxxxxxxxxxpredictiveAlto
135Argumentxxx_xx_xxxxxx/xxx_xxx_xxxxxxxxxxxpredictiveAlto
136ArgumentxxpredictiveBasso
137Argumentxxx_xxx_xxxpredictiveMedia
138ArgumentxxxxpredictiveBasso
139Argumentxxxx-xxx-xxxxxxxxxpredictiveAlto
140ArgumentxxxxxxxxpredictiveMedia
141ArgumentxxxxpredictiveBasso
142Argumentxxxx/xxxpredictiveMedia
143Argumentxxx_xxxx[xxxx][xx]predictiveAlto
144Argumentxxx_xxxxxx[xxxx]predictiveAlto
145Argumentxxxx_xxxxpredictiveMedia
146Argumentxxxxxxxxxxx/xxxxx_xxxxxxx/xxxxxxxxpredictiveAlto
147Argumentxxxx_xxxxxpredictiveMedia
148Argumentxxxx_*predictiveBasso
149Argumentxxxxxx_xxxxpredictiveMedia
150Argumentxxxxxxxxxxx_xxxxxxxx_x.x.x.xpredictiveAlto
151ArgumentxxxxxxxxxxpredictiveMedia
152ArgumentxxxxxxxxxxpredictiveMedia
153Argumentxxxxxx_xxxxpredictiveMedia
154Argumentxxxxxx_xxxx/xxxxx_xx/xxxxx_xxxpredictiveAlto
155ArgumentxxxxxxpredictiveBasso
156ArgumentxxxxxpredictiveBasso
157ArgumentxxxxxxxxxxxxpredictiveMedia
158Argumentxxx_xxxxpredictiveMedia
159ArgumentxxxpredictiveBasso
160ArgumentxxxxxxxxpredictiveMedia
161ArgumentxxxxpredictiveBasso
162ArgumentxxxxxpredictiveBasso
163Argumentxxxxxxxxxxxxxxx_xxxxxx_xxxx_xxpredictiveAlto
164Argumentxxx_xxxxxxpredictiveMedia
165ArgumentxxxpredictiveBasso
166ArgumentxxxxxxxxxxpredictiveMedia
167ArgumentxxxpredictiveBasso
168ArgumentxxxxxxpredictiveBasso
169Argumentxxxx xxxxpredictiveMedia
170Argumentxxxxxxxx/xxxxxxxxpredictiveAlto
171Argumentx_xxxxpredictiveBasso
172Argumentx_xxxxxxxxpredictiveMedia
173ArgumentxxxxxpredictiveBasso
174Argumentxx_xxxxxxxx/xx_xxxx_xxxxx/xx_xxxx_xxxxpredictiveAlto
175Input Valuexxxxxx xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)predictiveAlto
176Input Value<xxxxxx>xxxxx('x')</xxxxxx>predictiveAlto
177Input Valuex' xxxxx xxxxx(x) xxx 'xxxx'='xxxxpredictiveAlto
178Input Valuexxxxx' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx)-- xxxxpredictiveAlto
179Input Valuexxxxx%xxxxxx.xxx ' xxx (xxxxxx xxxx xxxx (xxxxxx(xxxxx(x)))xxxx) xxx 'xxxx'='xxxxpredictiveAlto
PrecedenteVisione d'insiemeIl prossimo

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!