{"id": "SECURITYVULNS:VULN:8640", "bulletinFamily": "software", "title": "Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)", "description": "PHP inclusions, SQL injections, directory traversals, crossite scripting, information leaks, etc.", "published": "2008-02-06T00:00:00", "modified": "2008-02-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:8640", "reporter": " ", "references": ["https://vulners.com/securityvulns/securityvulns:doc:19020", "https://vulners.com/securityvulns/securityvulns:doc:19024", "https://vulners.com/securityvulns/securityvulns:doc:19018", "https://vulners.com/securityvulns/securityvulns:doc:19019"], "cvelist": [], "type": "securityvulns", "lastseen": "2018-08-31T11:09:28", "edition": 1, "viewCount": 1, "enchantments": {"score": {"value": 4.9, "vector": "NONE", "modified": "2018-08-31T11:09:28", "rev": 2}, "dependencies": {"references": [{"type": "mskb", "idList": ["KB4011200"]}, {"type": "apple", "idList": ["APPLE:HT210119"]}, {"type": "talos", "idList": ["TALOS-2019-0762"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310141380", "OPENVAS:1361412562310811277", "OPENVAS:1361412562310811564", "OPENVAS:1361412562310811283", "OPENVAS:1361412562310811606"]}, {"type": "github", "idList": ["GHSA-HG4C-RGVM-964G"]}, {"type": "cve", "idList": ["CVE-2017-8638", "CVE-2017-8639", "CVE-2016-8640", "CVE-2017-8646"]}, {"type": "msupdate", "idList": ["MS:BF1D654E-2850-4FB0-8E94-1E6FD7583B9B"]}, {"type": "nessus", "idList": ["SMB_NT_MS17_AUG_4034668.NASL"]}, {"type": "exploitdb", "idList": ["EDB-ID:42476"]}, {"type": "seebug", "idList": ["SSV:96360"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:143798"]}, {"type": "zdt", "idList": ["1337DAY-ID-28291"]}, {"type": "trendmicroblog", "idList": ["TRENDMICROBLOG:69CE152C75321BE9991EA1AD9027F827"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:19020", "SECURITYVULNS:DOC:19018", "SECURITYVULNS:DOC:19019", "SECURITYVULNS:DOC:19024"]}], "modified": "2018-08-31T11:09:28", "rev": 2}, "vulnersScore": 4.9}, "affectedSoftware": [{"name": "Documentum Administrator", "operator": "eq", "version": "5.3"}, {"name": "Documentum Webtop", "operator": "eq", "version": "5.3"}, {"name": "Webmin", "operator": "eq", "version": "1.390"}, {"name": "Azucar CMS", "operator": "eq", "version": "1.3"}]}

{"rst": [{"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **51[.]68.215.13** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2020-11-11T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **generic**.\nASN 16276: (First IP 51.68.0.0, Last IP 51.68.255.255).\nASN Name \"OVH\" and Organisation \"\".\nThis IP is a part of \"**ovh**\" address pools.\nASN hosts 8825628 domains.\nGEO IP information: City \"\", Country \"France\".\nIOC could be a **False Positive** (Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-11-11T00:00:00", "id": "RST:24332F2B-8E80-346C-8640-0DFBA25C4705", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: 51.68.215.13", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **54[.]36.162.187** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2020-01-02T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **malware**.\nASN 16276: (First IP 54.36.0.0, Last IP 54.39.255.255).\nASN Name \"OVH\" and Organisation \"\".\nThis IP is a part of \"**ovh**\" address pools.\nASN hosts 8825628 domains.\nGEO IP information: City \"\", Country \"France\".\nIOC could be a **False Positive** (Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-01-02T00:00:00", "id": "RST:A6D4EAE1-0E71-3ACF-8640-2A51826233B9", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: 54.36.162.187", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **36[.]89.65.5** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **2**.\n First seen: 2020-01-31T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **generic**.\nASN 7713: (First IP 36.89.48.0, Last IP 36.89.67.255).\nASN Name \"TELKOMNETASAP\" and Organisation \"PT Telekomunikasi Indonesia\".\nASN hosts 14649 domains.\nGEO IP information: City \"Depok\", Country \"Indonesia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-01-31T00:00:00", "id": "RST:5055A92F-E16E-3E5F-8640-70FFAF092330", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: 36.89.65.5", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-07T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **http://219[.]157.224.200:50533/mozi.m** in [RST Threat Feed](https://rstcloud.net/profeed) with score **66**.\n First seen: 2021-03-07T03:00:00, Last seen: 2021-03-07T03:00:00.\n IOC tags: **malware**.\nIt was found that the IOC is used by: **mozi**.\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2021-03-07T00:00:00", "id": "RST:78801382-8093-368F-8640-A695F0081327", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: http://219.157.224.200:50533/mozi.m", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **drugtorefitnesspharmacy[.]eu** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2019-12-15T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **spam**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2019-12-15T00:00:00", "id": "RST:70A342E4-2A17-31CF-8640-66F3295CE844", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: drugtorefitnesspharmacy.eu", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **packets[.]tk** in [RST Threat Feed](https://rstcloud.net/profeed) with score **10**.\n First seen: 2019-12-12T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **ddos**.\nIOC could be a **False Positive** (Domain not resolved. Whois records not found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2019-12-12T00:00:00", "id": "RST:2917325B-E16A-379C-8640-F1E926E0D602", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: packets.tk", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-05T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **paddingtonwealth[.]com** in [RST Threat Feed](https://rstcloud.net/profeed) with score **20**.\n First seen: 2020-12-29T03:00:00, Last seen: 2021-03-05T03:00:00.\n IOC tags: **malware**.\nWhois:\n Created: 2020-01-14 13:05:38, \n Registrar: Internet Domain Service BS Corp, \n Registrant: unknown.\nIOC could be a **False Positive** (Domain not resolved, but Whois records found).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-29T00:00:00", "id": "RST:E1C80A3C-4493-3411-8640-B44DF3170F7E", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: paddingtonwealth.com", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **39[.]106.143.95** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **10**.\n First seen: 2020-07-04T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **generic**.\nASN 37963: (First IP 39.97.208.0, Last IP 39.108.255.255).\nASN Name \"CNNICALIBABACNNETAP\" and Organisation \"Hangzhou Alibaba Advertising CoLtd\".\nASN hosts 2783733 domains.\nGEO IP information: City \"\", Country \"China\".\nIOC could be a **False Positive** (Cloud provider IP).\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-07-04T00:00:00", "id": "RST:3D1B1FBA-D1AB-38A5-8640-BE2C22E218D2", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: 39.106.143.95", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **youla[.]merchantv.com** in [RST Threat Feed](https://rstcloud.net/profeed) with score **20**.\n First seen: 2020-12-15T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **phishing**.\nDomain has DNS A records: 185[.]178.208.136\nWhois:\n Created: 2020-12-14 21:58:15, \n Registrar: CNOBIN INFORMATION TECHNOLOGY LIMITED, \n Registrant: unknown.\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2020-12-15T00:00:00", "id": "RST:BF8D9DBC-34E5-3056-8640-811FC98CB660", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: youla.merchantv.com", "type": "rst", "cvss": {}}, {"lastseen": "2021-03-06T00:00:00", "bulletinFamily": "ioc", "cvelist": [], "description": "Found **62[.]213.82.18** in [RST Threat Feed](https://www.rstcloud.net/profeed) with score **1**.\n First seen: 2019-10-07T03:00:00, Last seen: 2021-03-06T03:00:00.\n IOC tags: **generic**.\nASN 25227: (First IP 62.213.82.0, Last IP 62.213.85.255).\nASN Name \"ASNAVANTELMSK\" and Organisation \"Located in Moscow Russia\".\nASN hosts 1544 domains.\nGEO IP information: City \"\", Country \"Russia\".\n[https://rstcloud.net/](https://rstcloud.net/)", "edition": 1, "modified": "2019-10-07T00:00:00", "id": "RST:4E843A10-6B05-3936-8640-C3B0DE672D03", "href": "", "published": "2021-03-07T00:00:00", "title": "RST Threat feed. IOC: 62.213.82.18", "type": "rst", "cvss": {}}]}