Nansh0u 解析

IOB - Indicator of Behavior (36)

タイムライン

言語

en26
ko2
sv2
ru2
es2

国・地域

アクター

アクティビティ

関心

タイムライン

タイプ

ベンダー

製品

PHP2
SourceCodester Canteen Management System2
Metalinks Metacart22
Zoho ManageEngine ServiceDesk Plus2
PhotoPost PHP Pro2

脆弱性

#脆弱性BaseTemp0day本日修復CTIEPSSCVE
1Tiki Wiki CMS Groupware tiki-edit_wiki_section.php クロスサイトスクリプティング5.25.2$0-$5k$0-$5kNot DefinedNot Defined0.090.00110CVE-2010-4240
2Responsive Menus Configuration Setting responsive_menus.module responsive_menus_admin_form_submit クロスサイトスクリプティング3.23.2$0-$5k$0-$5kNot DefinedOfficial Fix0.100.00073CVE-2018-25085
3Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash 情報の漏洩5.35.2$5k-$25k$0-$5kHighWorkaround0.020.02016CVE-2007-1192
4SPIP spip.php クロスサイトスクリプティング3.53.4$0-$5k$0-$5kNot DefinedOfficial Fix0.550.00132CVE-2022-28959
5ZKTeco ZKBio ECO ADMS クロスサイトスクリプティング3.53.5$0-$5k$0-$5kNot DefinedNot Defined0.020.00056CVE-2022-44213
6SourceCodester Canteen Management System categories.php builtin_echo クロスサイトスクリプティング4.44.3$0-$5k$0-$5kProof-of-ConceptNot Defined0.070.00059CVE-2022-4252
7Tiki Admin Password tiki-login.php 弱い認証8.07.7$0-$5k$0-$5kNot DefinedOfficial Fix2.970.00936CVE-2020-15906
8SourceCodester Employee and Visitor Gate Pass Logging System GET Parameter view_designation.php SQLインジェクション7.16.9$0-$5k$0-$5kProof-of-ConceptNot Defined0.090.00135CVE-2023-2090
9Thomson TWC305/TWC315/TCW690 HTTP Server メモリ破損5.35.0$0-$5k$0-$5kProof-of-ConceptNot Defined0.080.06133CVE-2003-1085
10Void Contact Form 7 Widget for Elementor Page Builder Plugin void_cf7_opt_in_user_data_track 未知の脆弱性4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000.00062CVE-2022-47166
11CropImage component admin.cropcanvas.php 特権昇格7.36.4$0-$5k計算中Proof-of-ConceptUnavailable0.050.08563CVE-2006-4363
12Andreas Robertz PHPNews 特権昇格7.36.4$0-$5k$0-$5kProof-of-ConceptUnavailable0.030.07128CVE-2007-4232
13Metalinks Metacart2 productsbycategory.asp SQLインジェクション7.37.3$0-$5k$0-$5kNot DefinedNot Defined0.040.00142CVE-2005-1363
14MGB OpenSource Guestbook email.php SQLインジェクション7.37.3$0-$5k$0-$5kHighUnavailable0.360.01302CVE-2007-0354
15PhotoPost PHP Pro zipndownload.php 特権昇格7.36.4$0-$5k計算中UnprovenOfficial Fix0.020.05109CVE-2006-4828
16Joomla CMS com_easyblog SQLインジェクション6.36.1$5k-$25k$5k-$25kNot DefinedNot Defined0.310.00000
17InHand InRouter 302/InRouter 615 MQTT 弱い暗号化9.59.3$0-$5k$0-$5kNot DefinedOfficial Fix0.000.00135CVE-2023-22601
18Oracle Communications Cloud Native Core Security Edge Protection Proxy SEPP 特権昇格10.09.7$100k 以上$5k-$25kNot DefinedOfficial Fix0.000.97481CVE-2022-22947
19CentOS-WebPanel.com CentOS Web Panel Domain 特権昇格4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000.00086CVE-2019-14730
20Apple Mac OS X Server Wiki Server SQLインジェクション5.34.6$5k-$25k$0-$5kUnprovenOfficial Fix1.430.00339CVE-2015-5911

IOC - Indicator of Compromise (8)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

TTP - Tactics, Techniques, Procedures (9)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechnique脆弱性アクセスベクタータイプ信頼度
1T1059CWE-94Argument Injectionpredictive
2T1059.007CWE-79Cross Site Scriptingpredictive
3TXXXXCWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
4TXXXX.XXXCWE-XXXXxxx-xxxxx Xxxxxxxxxxxpredictive
5TXXXXCWE-XXX7xx Xxxxxxxx Xxxxxxxxpredictive
6TXXXXCWE-XXXxx Xxxxxxxxxpredictive
7TXXXXCWE-XXXXxxxxxxxx Xxxxxx Xxxxpredictive
8TXXXXCWE-XXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxxpredictive
9TXXXX.XXXCWE-XXXXxx Xxxxxxxxxx Xxxxxpredictive

IOA - Indicator of Attack (28)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

IDクラスIndicatorタイプ信頼度
1File/admin/maintenance/view_designation.phppredictive
2File/spip.phppredictive
3Fileadmin.cropcanvas.phppredictive
4Filecategories.phppredictive
5Filexxxx/xxxxxxx.xxxpredictive
6Filexxxxxxxxxx.xxxpredictive
7Filexxxx/xxxxxxxxxxxxxxx.xxxpredictive
8Filexxxxx.xxxpredictive
9Filexxxxxxxxxxxxxxxxxx.xxxpredictive
10Filexxxxxxxxxx_xxxxx.xxxxxxpredictive
11Filexxxxxxxx.xx?xxxxxxxxxxxx=xxxxxxxx&xxxx=x-xxxx&xxxxxxxx=xxxxxxxxxx&xxpredictive
12Filexxxx/xxxx/xxxx.xxxpredictive
13Filexxxx-xxxx_xxxx_xxxxxxx.xxxpredictive
14Filexxxx-xxxxx.xxxpredictive
15Filexxxxxxxxxx.xxpredictive
16Filexxxxxxxxxxxx.xxxpredictive
17Libraryxxx.xxxpredictive
18Argumentxxxxxxxxxxxxpredictive
19Argumentxxxxxx_xxxxxpredictive
20Argumentxxxxpredictive
21Argumentxxpredictive
22Argumentxxxxxxxxxpredictive
23Argumentxxxxxxpredictive
24Argumentxxxxxx/xxxxxxx/xxxx_xxxx/xxxxxxx/xxxxpredictive
25Argumentxxxxxxxxpredictive
26Argumentxx_xxxxpredictive
27Argumentxxxxpredictive
28Input Valuexxxxxxxxpredictive

参考 (2)

The following list contains external sources which discuss the actor and the associated activities:

Do you need the next level of professionalism?

Upgrade your account now!