{"vulnerability": "CVE-2025-31161", "sightings": [{"uuid": "506ac863-421f-4759-9f33-2af8fb809438", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/royans.bsky.social/post/3lmnaluilkv2r", "content": "", "creation_timestamp": "2025-04-12T19:15:18.269926Z"}, {"uuid": "a2e249f1-4442-4cc2-8c80-91ec4e527977", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmpwhpns5gn2", "content": "", "creation_timestamp": "2025-04-13T20:54:33.784050Z"}, {"uuid": "fa1af891-3ae5-4e04-b379-730fbb691b4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-31161", "type": "seen", "source": "https://mastodon.social/users/verbrecher/statuses/114355420908421834", "content": "", "creation_timestamp": "2025-04-17T21:27:26.922762Z"}, {"uuid": "ad682b36-641b-4973-8cd2-c2a212f10fbc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/zerodaily.me/post/3ln6anwp3mc24", "content": "", "creation_timestamp": "2025-04-19T13:31:45.896005Z"}, {"uuid": "69848124-6bf3-4713-8b01-be65c2f8d754", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lpkht6d6en2n", "content": "", "creation_timestamp": "2025-05-19T21:02:16.326255Z"}, {"uuid": "e2a8503e-8b2b-4f26-9b65-6bf690dbfcdc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/cybersecurity.page/post/3lnga35jn5o24", "content": "", "creation_timestamp": "2025-04-22T17:42:30.527774Z"}, {"uuid": "e9247a24-bec5-4b11-a6b4-f8f34acb26a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-31161", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3lngc6hrjv62z", "content": "", "creation_timestamp": "2025-04-22T18:20:09.419744Z"}, {"uuid": "37eeaed1-04c6-479e-a5f1-e1d59954b9fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lnglalzokc2y", "content": "", "creation_timestamp": "2025-04-22T21:02:27.700902Z"}, {"uuid": "d314b4a9-6dbd-4798-b908-7ad4cc3d3c7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lphechp2ow2t", "content": "", "creation_timestamp": "2025-05-18T15:21:14.760624Z"}, {"uuid": "cbc7e011-d74f-4338-b710-9fb06e959a16", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/ytroncal.bsky.social/post/3luhdobwv322w", "content": "", "creation_timestamp": "2025-07-21T06:16:01.956215Z"}, {"uuid": "fc9cda27-4918-4e08-9822-76f97dc6cb8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-09-29T03:12:17.000000Z"}, {"uuid": "e7e19975-f3e6-4270-92e8-6ef34a4c494a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-31161", "type": "seen", "source": "https://bsky.app/profile/Ubuntu.activitypub.awakari.com.ap.brid.gy/post/3mbq7hhitvz72", "content": "", "creation_timestamp": "2026-01-06T05:24:16.278567Z"}, {"uuid": "2f3e12c7-19bc-4027-a2cd-c3b60f95ff83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "MISP/f3b16ca9-f749-4169-9a68-b159e6aaf5ed", "content": "", "creation_timestamp": "2026-04-18T13:07:25.000000Z"}, {"uuid": "98f8544c-0f29-4f6b-8357-25067f8f216c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "Telegram/0HYLGhUKfOaz0jB50dGhU2fq-G_e7X2GSHNTYyogkSMsgQo", "content": "", "creation_timestamp": "2025-06-06T21:00:09.000000Z"}, {"uuid": "d692979b-77be-4ac2-bfe9-8a6907c6d933", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/6vCw4BBCgbQIszZ5l1aUPwVBYMSqjK-8FdmXXkxoJEcTgG8", "content": "", "creation_timestamp": "2025-09-15T09:00:05.000000Z"}, {"uuid": "5402879c-8044-4f52-9916-5d8ff61d0c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/33487", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCrushFTP CVE-2025-31161 Exploit Tool \ud83d\udd13\nURL\uff1ahttps://github.com/TX-One/CVE-2025-31161\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-22T00:01:37.000000Z"}, {"uuid": "aaf5126f-a12b-41e7-bcf0-1e5562896a0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/Fq5rQfcVa8DX2CfhcHSfmkE6tp17bvNWwxsqcDE1ZL0mUco", "content": "", "creation_timestamp": "2026-01-11T21:00:05.000000Z"}, {"uuid": "e2e687ea-c957-40a1-8c4c-2df50ccdcf71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/DarkWebInformer_CVEAlerts/10329", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31161\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: CrushFTP 10 before 10.8.4 and 11 before 11.3.1 allows authentication bypass and takeover of the crushadmin account (unless a DMZ proxy instance is used), as exploited in the wild in March and April 2025, aka \"Unauthenticated HTTP(S) port access.\" A race condition exists in the AWS4-HMAC (compatible with S3) authorization method of the HTTP component of the FTP server. The server first verifies the existence of the user by performing a call to login_user_pass() with no password requirement. This will authenticate the session through the HMAC verification process and up until the server checks for user verification once more. The vulnerability can be further stabilized, eliminating the need for successfully triggering a race condition, by sending a mangled AWS4-HMAC header. By providing only the username and a following slash (/), the server will successfully find a username, which triggers the successful anypass authentication process, but the server will fail to find the expected SignedHeaders entry, resulting in an index-out-of-bounds error that stops the code from reaching the session cleanup. Together, these issues make it trivial to authenticate as any known or guessable user (e.g., crushadmin), and can lead to a full compromise of the system by obtaining an administrative account.\n\ud83d\udccf Published: 2025-04-03T00:00:00.000Z\n\ud83d\udccf Modified: 2025-04-03T19:24:11.146Z\n\ud83d\udd17 References:\n1. https://outpost24.com/blog/crushftp-auth-bypass-vulnerability/\n2. https://crushftp.com/crush11wiki/Wiki.jsp?page=Update#section-Update-VulnerabilityInfo", "creation_timestamp": "2025-04-03T19:35:40.000000Z"}, {"uuid": "376153ca-7e8b-4df2-b26c-dbb2c02c157f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/_6gIQNhEdswOzMzvPm3IEV7XQ1TbB50UOuWiI2PaotUmzjw", "content": "", "creation_timestamp": "2026-04-20T21:00:04.000000Z"}, {"uuid": "53b1b835-eccd-40a0-b665-1c8430aa6c7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/53216", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aScans target to see if its vulnerable to CVE-2025-31161\nURL\uff1ahttps://github.com/Teexo/CVE-2025-31161\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-26T21:56:22.000000Z"}, {"uuid": "261b77ed-5fdd-420e-bb13-0d82e83a0229", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/cvedetector/22018", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31161 - CrushFTP Unauthenticated HTTP(S) Port Access and Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-31161 \nPublished : April 3, 2025, 8:15 p.m. | 1\u00a0hour ago \nDescription : CrushFTP 10 before 10.8.4 and 11 before 11.3.1 allows authentication bypass and takeover of the crushadmin account (unless a DMZ proxy instance is used), as exploited in the wild in March and April 2025, aka \"Unauthenticated HTTP(S) port access.\" A race condition exists in the AWS4-HMAC (compatible with S3) authorization method of the HTTP component of the FTP server. The server first verifies the existence of the user by performing a call to login_user_pass() with no password requirement. This will authenticate the session through the HMAC verification process and up until the server checks for user verification once more. The vulnerability can be further stabilized, eliminating the need for successfully triggering a race condition, by sending a mangled AWS4-HMAC header. By providing only the username and a following slash (/), the server will successfully find a username, which triggers the successful anypass authentication process, but the server will fail to find the expected SignedHeaders entry, resulting in an index-out-of-bounds error that stops the code from reaching the session cleanup. Together, these issues make it trivial to authenticate as any known or guessable user (e.g., crushadmin), and can lead to a full compromise of the system by obtaining an administrative account. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T23:36:15.000000Z"}, {"uuid": "dde5fb90-8c79-4245-a57a-aa2dc91439b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/67tsegYcQIUV7lyfyUyokIQvG0vHB8OXAelx-BGM_6cMQP8", "content": "", "creation_timestamp": "2025-04-22T05:00:08.000000Z"}, {"uuid": "40fc0766-9b45-4731-808c-6817034a27c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://t.me/proxy_bar/2601", "content": "CrushFTP\n\n* CVE-2025-2825 \u0438 CVE-2025-31161\n* Dual exploiter\n*", "creation_timestamp": "2025-04-20T09:41:34.000000Z"}, {"uuid": "76aaf3f7-6987-45e6-8484-1d5c03bdd7df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://t.me/zero_day_uz/478", "content": "CrushFTP\n\n* CVE-2025-2825 \u0438 CVE-2025-31161\n* Dual exploiter\n*", "creation_timestamp": "2025-04-21T16:13:30.000000Z"}, {"uuid": "86081a9b-92d8-4bd6-a629-b8dd85525ba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/true_secator/6928", "content": "Kill Security \u0432\u0437\u044f\u043b\u0430 \u043d\u0430 \u0441\u0435\u0431\u044f \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0441\u0442\u044c \u0437\u0430 \u0430\u0442\u0430\u043a\u0438, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0435 \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439 \u043d\u0435\u0434\u0430\u0432\u043d\u0435\u0439 0-day CrushFTP.\n\n\u0425\u0430\u043a\u0435\u0440\u0441\u043a\u0430\u044f \u0433\u0440\u0443\u043f\u043f\u0430 \u0443\u0442\u0432\u0435\u0440\u0436\u0434\u0430\u0435\u0442, \u0447\u0442\u043e \u0441\u043c\u043e\u0433\u043b\u0430 \u0432\u044b\u043a\u0440\u0430\u0441\u0442\u044c \u00ab\u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u043e\u0431\u044a\u0435\u043c\u044b\u00bb \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0442\u0435\u043f\u0435\u0440\u044c \u0443\u0433\u0440\u043e\u0436\u0430\u0435\u0442 \u0436\u0435\u0440\u0442\u0432\u0430\u043c \u0441\u043b\u0438\u0442\u044c \u0438\u0445 \u0432 \u0431\u043b\u0438\u0436\u0430\u0439\u0448\u0438\u0435 \u0434\u043d\u0438, \u0432\u044b\u043c\u043e\u0433\u0430\u044f \u0432\u044b\u043a\u0443\u043f.\n\n\u0422\u0435\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0435\u043c, \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u0443\u043a\u0430\u0437\u044b\u0432\u0430\u044e\u0442 \u043d\u0430 \u043e\u043f\u0430\u0441\u043d\u044b\u0439 \u043f\u0440\u0435\u0446\u0435\u0434\u0435\u043d\u0442.\n\nCrushFTP \u043f\u044b\u0442\u0430\u043b\u0430\u0441\u044c \u0430\u043d\u043d\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0435\u0440\u0432\u043e\u043d\u0430\u0447\u0430\u043b\u044c\u043d\u044b\u0439 CVE, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0439 \u0434\u043b\u044f \u043e\u0448\u0438\u0431\u043a\u0438 (CVE-2024-2825), \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u0432 \u043d\u043e\u0432\u044b\u0439 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2025-31161 \u0438 \u0432\u043d\u0435\u0441\u044f \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u043d\u044b\u0439 \u0445\u0430\u043e\u0441 \u0432 \u0440\u0430\u0431\u043e\u0442\u0443 \u0440\u0435\u0448\u0435\u043d\u0438\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438, \u043f\u0440\u0435\u0434\u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u043d\u044b\u0445 \u0434\u043b\u044f \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0430 \u043f\u0440\u0435\u0434\u043c\u0435\u0442 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438.\n\n\u041f\u043e\u0441\u0442\u0430\u0432\u0449\u0438\u043a \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u044e, \u043d\u043e \u043d\u0430\u043c\u0435\u0440\u0435\u043d\u043d\u043e \u043f\u043e\u043f\u0440\u043e\u0441\u0438\u043b\u0430, \u0447\u0442\u043e\u0431\u044b CVE \u043d\u0435 \u043d\u0430\u0437\u043d\u0430\u0447\u0430\u043b\u0430\u0441\u044c \u0432 \u0442\u0435\u0447\u0435\u043d\u0438\u0435 90 \u0434\u043d\u0435\u0439, \u0444\u0430\u043a\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u044b\u0442\u0430\u044f\u0441\u044c \u0441\u043a\u0440\u044b\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043e\u0442 \u0441\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u0430 \u0418\u0411.\n\n\u0425\u0443\u0436\u0435 \u0442\u043e\u0433\u043e, MITRE, \u043f\u043e \u0432\u0441\u0435\u0439 \u0432\u0438\u0434\u0438\u043c\u043e\u0441\u0442\u0438, \u0442\u0430\u043a\u0436\u0435 \u043e\u0441\u043e\u0431\u043e \u043d\u0435 \u043f\u0440\u0435\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043b\u0430 \u0446\u0435\u043b\u044c \u0441\u0432\u043e\u0435\u0432\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0433\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u043e\u0432\u0430\u043b\u0430\u0441\u044c \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435.", "creation_timestamp": "2025-04-09T17:23:16.000000Z"}, {"uuid": "5617eb28-8d88-4773-ba0e-a44fe57e41cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/information_security_channel/53322", "content": "CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability\nhttps://www.securityweek.com/hackers-attempting-to-exploit-crushftp-vulnerability/\n\nShadowserver has started seeing exploitation attempts aimed at a CrushFTP vulnerability tracked as CVE-2025-2825 and CVE-2025-31161.\nThe post CrushFTP Blames Security Firms for Fast Exploitation of Vulnerability (https://www.securityweek.com/hackers-attempting-to-exploit-crushftp-vulnerability/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2025-04-01T13:41:11.000000Z"}, {"uuid": "7cc9be5c-22ac-45cf-96f2-bb31db509fc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "cve-2025-31161", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mm3ts6dwlg2s", "content": "", "creation_timestamp": "2026-05-18T02:37:30.638901Z"}, {"uuid": "50710377-2cce-4186-a157-352b511822bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/theitnerd.bsky.social/post/3lltzaeredv2p", "content": "", "creation_timestamp": "2025-04-02T18:27:07.482681Z"}, {"uuid": "cf42fc7a-5eec-4815-8852-7c45c4be1bf3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/youranonriots.bsky.social/post/3llweoyeqfk2v", "content": "", "creation_timestamp": "2025-04-03T16:57:17.037899Z"}, {"uuid": "280c5ffd-6b01-4b0a-bdc4-a4774140cfaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llwsmfw6ny2i", "content": "", "creation_timestamp": "2025-04-03T21:06:37.778323Z"}, {"uuid": "36fb98bf-918c-40c9-a1df-1a98061c245d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114276232265121680", "content": "", "creation_timestamp": "2025-04-03T21:48:43.677538Z"}, {"uuid": "28d116ee-6b96-452f-8bc8-9f829a4f6fb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114276232265121680", "content": "", "creation_timestamp": "2025-04-03T21:48:43.673152Z"}, {"uuid": "6c917cb7-08f4-459d-a425-07f5f1e116c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3llzfu7lkzs27", "content": "", "creation_timestamp": "2025-04-04T21:56:14.773195Z"}, {"uuid": "ab11bf34-8ac9-4a9c-8aa4-ae9352e8d3b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/re.wtf/post/3llzfw3uvcs23", "content": "", "creation_timestamp": "2025-04-04T21:57:15.318629Z"}, {"uuid": "7f9497fc-df0c-446d-b0c0-be0105f87f27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3llzu4lk5jl2n", "content": "", "creation_timestamp": "2025-04-05T02:11:26.053209Z"}, {"uuid": "b9534cf9-54fd-4676-bfaa-21a8aba85dc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3lmaknc77522s", "content": "", "creation_timestamp": "2025-04-07T18:10:28.944469Z"}, {"uuid": "fb0c6989-8066-47d4-ad9d-0438e89f607c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3lmaknc7hwc2s", "content": "", "creation_timestamp": "2025-04-07T18:10:29.918720Z"}, {"uuid": "1c61b7ae-f5b4-44cf-ac18-6348a15f6de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3lmakndb6zk2s", "content": "", "creation_timestamp": "2025-04-07T18:10:30.976968Z"}, {"uuid": "fbdb5c34-94be-4931-8327-8bef87808d8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3lmakndb7ys2s", "content": "", "creation_timestamp": "2025-04-07T18:10:31.978671Z"}, {"uuid": "dddc2760-85a2-4254-acdd-4dcad4880870", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lmakvsyfbw2o", "content": "", "creation_timestamp": "2025-04-07T18:15:13.153039Z"}, {"uuid": "13bcae81-f0ba-4db6-be9f-c154bca09ebf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lmawpimg2e2w", "content": "", "creation_timestamp": "2025-04-07T21:46:26.196191Z"}, {"uuid": "094602c5-626d-4c07-999e-8712bec65d3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/3746544", "content": "", "creation_timestamp": "2025-04-07T22:24:06.244326Z"}, {"uuid": "adc5a2a7-f703-4d96-8266-91d9402a0ea1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmdjplmjav52", "content": "", "creation_timestamp": "2025-04-08T22:31:57.425396Z"}, {"uuid": "d7324c32-bb92-4537-a305-e4e46e543d5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://threatintel.cc/2025/04/09/threat-actors-setting-up-persistent.html", "content": "", "creation_timestamp": "2025-04-09T09:46:48.000000Z"}, {"uuid": "adfd1bfa-8cf8-4bf8-9fb5-a3926cb97b1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/ransomnews.online/post/3lmh73lubzc25", "content": "", "creation_timestamp": "2025-04-10T09:32:23.176222Z"}, {"uuid": "8764c899-a16e-49a1-996e-1877a4d8e38f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/ransomnews.online/post/3lmh73nxeis25", "content": "", "creation_timestamp": "2025-04-10T09:32:24.191916Z"}, {"uuid": "ff5a3ed3-2efd-4f96-b5bf-11be3cd8bed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/ransomnews.online/post/3lmh73nxghc25", "content": "", "creation_timestamp": "2025-04-10T09:32:25.232042Z"}, {"uuid": "de00d525-023c-4e27-a6e5-4b36356ba671", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/ransomnews.online/post/3lmh73nxhgk25", "content": "", "creation_timestamp": "2025-04-10T09:32:26.242136Z"}, {"uuid": "654b1538-1fdf-4dc4-851f-fefd00e50c63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lvjlbvjo542g", "content": "", "creation_timestamp": "2025-08-03T21:02:43.505760Z"}, {"uuid": "8a4a56d1-10db-4979-b8a4-fdd519eab76f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://gist.github.com/Darkcrai86/47e5ae27136f0b73c3fb706a2684b761", "content": "", "creation_timestamp": "2025-09-18T07:45:07.000000Z"}, {"uuid": "6a84f89b-00de-4ccf-a318-9162f4e261b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/82a04c4f-40e2-41ac-9a14-0fd8d5ae16d5", "content": "", "creation_timestamp": "2026-02-02T12:26:04.218569Z"}, {"uuid": "bde72043-06ee-4c2d-b69a-19c1815ee1cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/82a04c4f-40e2-41ac-9a14-0fd8d5ae16d5", "content": "", "creation_timestamp": "2026-02-02T12:26:04.218569Z"}, {"uuid": "cdada876-7299-45cb-9227-7fc32fae3590", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/TB3NLbe90J8QUxkWKTQOkDSFbwNPZ-_U22O-dUZH71QZlq8", "content": "", "creation_timestamp": "2025-06-15T15:00:07.000000Z"}, {"uuid": "0a738b26-56ba-4725-bf13-70022fdafb93", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/39461", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-31161\nURL\uff1ahttps://github.com/B1ack4sh/Blackash-CVE-2025-31161\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-06-06T09:18:17.000000Z"}, {"uuid": "b3790f31-f22f-4ec8-8798-94de46b83fe7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34014", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aOfficial Nuclei template for CVE-2025-31161 (formerly CVE-2025-2825)\nURL\uff1ahttps://github.com/SUPRAAA-1337/Nuclei_CVE-2025-31161_CVE-2025-2825\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-24T10:29:46.000000Z"}, {"uuid": "fdee4970-e364-479c-90cd-c9d8afb70676", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/37886", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a\ud83d\udee1\ufe0f CVE-2025-31161 - CrushFTP User Creation Authentication Bypass Exploit\nURL\uff1ahttps://github.com/0xgh057r3c0n/CVE-2025-31161\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-05-23T21:13:49.000000Z"}, {"uuid": "fa90229c-b34f-4f77-be4a-08d65b7dcd8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/7FcFWuNWPidnSTqDbK2SI7frFY8bVIrg6sQ2oUz4aEJxH6Y", "content": "", "creation_timestamp": "2025-09-27T03:01:09.000000Z"}, {"uuid": "1c549fa6-9af0-44b3-8ebf-9fec6ed3a64d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://t.me/CyberBulletin/2892", "content": "\u26a1CVE-2025-31161: Exploitation of Critical Authentication Bypass Vulnerability in CrushFTP.\n\n#CyberBulletin", "creation_timestamp": "2025-04-03T15:18:55.000000Z"}, {"uuid": "55a3d3e9-6369-415b-ac40-166bee34f2a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "Telegram/4SQgF3qpXjm2dx562rN7Mp-xPxNzaw7AVj2cPm4IzWI8ENs", "content": "", "creation_timestamp": "2025-04-08T15:33:25.000000Z"}, {"uuid": "40681111-6108-4748-817a-a54951cf7a26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "Telegram/i7uExx9DQogyisfdQ1dK04qRS8FwKxvmorD76ceevLb9qn0", "content": "", "creation_timestamp": "2025-04-03T17:26:09.000000Z"}, {"uuid": "308e8490-d917-4c75-8b96-c0a0d633d48a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/haj3imad/1814", "content": "https://github.com/SUPRAAA-1337/CVE-2025-31161_exploit\n\nCVE-2025-31161 exploit\n#github #exploit", "creation_timestamp": "2025-04-26T15:47:23.000000Z"}, {"uuid": "d49bfbeb-5364-464d-8ef6-8f9aeea31712", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mlta5ys33x2b", "content": "", "creation_timestamp": "2026-05-14T16:24:31.781034Z"}, {"uuid": "e5865376-83ba-498d-af92-298ba0e27791", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llv5jnf5pq24", "content": "", "creation_timestamp": "2025-04-03T05:16:28.634514Z"}, {"uuid": "18c4bd69-0bc7-48cb-80a6-680a365ed033", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3llwr5hr3qj2g", "content": "", "creation_timestamp": "2025-04-03T20:40:14.647616Z"}, {"uuid": "a20c37b9-c7a1-495c-9114-7ec483897efb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3llwselqrwv2p", "content": "", "creation_timestamp": "2025-04-03T21:02:08.500868Z"}, {"uuid": "778a5857-1af2-4c70-b9b2-4e2df47b40ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/opsmatters.bsky.social/post/3llxl2eix6424", "content": "", "creation_timestamp": "2025-04-04T04:23:47.973945Z"}, {"uuid": "363b66ab-63a5-4c8a-b1c0-76c10557dc46", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3llzfu5vbq227", "content": "", "creation_timestamp": "2025-04-04T21:56:13.830859Z"}, {"uuid": "fae98d28-690f-4d4c-909b-64c347fbd154", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/Telegram.activitypub.awakari.com.ap.brid.gy/post/3lmbzuht53md2", "content": "", "creation_timestamp": "2025-04-08T08:16:05.338577Z"}, {"uuid": "d8856c36-f945-491f-a399-aa50acff585c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmc4aiggq3f2", "content": "", "creation_timestamp": "2025-04-08T08:59:37.066696Z"}, {"uuid": "3f9ab344-add0-434f-82fb-ba1c45421e7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lmc6gfod2q2e", "content": "", "creation_timestamp": "2025-04-08T09:37:10.651037Z"}, {"uuid": "77a64828-1b73-409a-b056-d767e4af1487", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3lmcisliqes2b", "content": "", "creation_timestamp": "2025-04-08T12:43:02.857095Z"}, {"uuid": "6d2ed8c1-8f7f-4378-b781-04c6887f213d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3lmcisnzzws2b", "content": "", "creation_timestamp": "2025-04-08T12:43:03.834790Z"}, {"uuid": "a1fa021c-7a06-4132-98df-ac8d4a11af05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3lmciso22w22b", "content": "", "creation_timestamp": "2025-04-08T12:43:04.757630Z"}, {"uuid": "9523bd0f-fa3b-4d58-a599-d08d86137320", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lmdw3tpxyf2g", "content": "", "creation_timestamp": "2025-04-09T02:13:25.843901Z"}, {"uuid": "d08df783-699a-4c0f-a6ff-4b09971d42a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmefawyqbkx2", "content": "", "creation_timestamp": "2025-04-09T06:44:54.812666Z"}, {"uuid": "5a0114b9-2ca3-43dd-ad12-40a8d9e54469", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/buzzleaktv.bsky.social/post/3lmijxrgtef2c", "content": "", "creation_timestamp": "2025-04-10T22:19:43.095255Z"}, {"uuid": "187b0f4e-7222-46fa-849e-0c6917e1f56c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmjh7gxnixo2", "content": "", "creation_timestamp": "2025-04-11T07:03:39.652623Z"}, {"uuid": "c1d8f147-be64-4e98-bebe-7f3d05eaab5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmjzbkbvgq62", "content": "", "creation_timestamp": "2025-04-11T12:26:26.689459Z"}, {"uuid": "90838b9a-c46e-4b95-b20d-6f4a7e592ed3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/leakix.bsky.social/post/3lmk3n53dah2u", "content": "", "creation_timestamp": "2025-04-11T13:08:33.887474Z"}, {"uuid": "78cbb7e2-d00a-4c7b-bf46-93992cbdca3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://mastodon.social/users/leakix/statuses/114319485908888510", "content": "", "creation_timestamp": "2025-04-11T13:08:43.626339Z"}, {"uuid": "99e6d904-aeef-4adf-94c6-85f861285420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-09-28T08:23:31.000000Z"}, {"uuid": "11b318d9-c8da-478b-9159-0976f54d889b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "MISP/f3b16ca9-f749-4169-9a68-b159e6aaf5ed", "content": "", "creation_timestamp": "2026-04-08T07:25:52.000000Z"}, {"uuid": "3cb53116-14a4-4b4d-9a36-92aeb738f5b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34096", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-31161 python exploit\nURL\uff1ahttps://github.com/SUPRAAA-1337/CVE-2025-31161_exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-24T22:13:48.000000Z"}, {"uuid": "3e21d268-7b1b-440f-833c-bfd6a7532f5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/31083", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aShattered is a tool and POC for the new CrushedFTP vulns, CVE Exploit Script: CVE-2025-2825 vs CVE-2025-31161\nURL\uff1ahttps://github.com/ghostsec420/ShatteredFTP\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-11T10:55:33.000000Z"}, {"uuid": "8c68e23e-745e-4c64-a392-9b01865167b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50935", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC CVE-2025-31161 - Authentication Bypass CrushFTP\nURL\uff1ahttps://github.com/onurcangnc/CVE-2025-57520-Stored-XSS-in-Decap-CMS-3.8.3-\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-10T00:58:16.000000Z"}, {"uuid": "6edcdc4a-adcb-4ec7-bfc0-17768a58c4ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50933", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC CVE-2025-31161 - Authentication Bypass CrushFTP\nURL\uff1ahttps://github.com/f4dee-backup/CVE-2025-31161\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-10T00:40:57.000000Z"}, {"uuid": "9cf6d439-a256-4037-bd26-c13ee833e8fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50930", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC CVE-2025-31161 - Authentication Bypass CrushFTP\nURL\uff1ahttps://github.com/f4dee-backup/CVE-2025-31161\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-10T00:20:39.000000Z"}, {"uuid": "3e6a13dc-e8f1-4cb8-bb1f-d2e184379f67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/oDqefZ4Jmsm2YOdKMeBcwIlx2g5msGRxGRgEFQ7gxa5Orh4", "content": "", "creation_timestamp": "2025-09-10T09:00:04.000000Z"}, {"uuid": "99cde40b-5f96-4f7c-a7e2-a366528533a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/n1xxTDW4DKAqfoFBBrei6KNyXkL9LVReMZ-BWNrHaTz0OZY", "content": "", "creation_timestamp": "2025-07-22T15:00:06.000000Z"}, {"uuid": "e4eda576-95f0-4fb6-bfab-28fafec24d60", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/itsec_news/5754", "content": "\u200b\u26a1\ufe0f\u0411\u0435\u0437 \u043b\u043e\u0433\u0438\u043d\u0430 \u0438 \u043f\u0430\u0440\u043e\u043b\u044f: \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0437\u0430\u0445\u0432\u0430\u0442\u044b\u0432\u0430\u044e\u0442 \u0441\u0435\u0440\u0432\u0435\u0440\u044b CrushFTP\n\n\ud83d\udcac \u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u0435 CrushFTP, \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u043c\u0430\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438, \u0442\u0435\u043f\u0435\u0440\u044c \u0432\u043d\u0435\u0441\u0435\u043d\u0430 \u0410\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u043e\u043c \u043f\u043e \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u043d\u043e\u0439 \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0421\u0428\u0410 (CISA) \u0432 \u0440\u0435\u0435\u0441\u0442\u0440 KEV. \u0420\u0435\u0447\u044c \u0438\u0434\u0451\u0442 \u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0435 \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0435\u0439 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u043e\u043b\u043d\u044b\u0439 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044c \u043d\u0430\u0434 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u043c\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u0430\u043c\u0438 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0435\u0437 \u0432\u0432\u043e\u0434\u0430 \u043b\u043e\u0433\u0438\u043d\u0430 \u0438 \u043f\u0430\u0440\u043e\u043b\u044f.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u043b\u0443\u0447\u0438\u043b\u0430 \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440 CVE-2025-31161 \u0441 \u043c\u0430\u043a\u0441\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0439 \u043e\u0446\u0435\u043d\u043a\u043e\u0439 \u043f\u043e \u0448\u043a\u0430\u043b\u0435 CVSS \u2014 9.8. \u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c HTTP-\u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438 \u0438 \u0434\u0430\u0451\u0442 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u043c\u0443 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u043f\u043e\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u044c \u0438\u043c\u044f \u043b\u044e\u0431\u043e\u0433\u043e \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u0433\u043e \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440 \u00abcrushadmin\u00bb, \u0438 \u0432\u043e\u0439\u0442\u0438 \u0432 \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043a\u0430\u043a \u044d\u0442\u043e\u0442 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044c. \u0418\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432\u044b\u0448\u043b\u0438 \u0432 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 10.8.4 \u0438 11.3.1 .\n\n\u041e\u0434\u043d\u0430\u043a\u043e \u0441\u0438\u0442\u0443\u0430\u0446\u0438\u044f \u0437\u0430\u043c\u0435\u0442\u043d\u043e \u043e\u0441\u043b\u043e\u0436\u043d\u0438\u043b\u0430\u0441\u044c: \u043d\u0435 \u0442\u043e\u043b\u044c\u043a\u043e \u0441 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0441\u0442\u043e\u0440\u043e\u043d\u044b, \u043d\u043e \u0438 \u0432 \u0441\u0432\u044f\u0437\u0438 \u0441 \u0437\u0430\u043f\u0443\u0442\u0430\u043d\u043d\u043e\u0439 \u0438\u0441\u0442\u043e\u0440\u0438\u0435\u0439 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \u0418\u0437-\u0437\u0430 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e VulnCheck \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u043f\u043e\u043b\u043d\u043e\u043c\u043e\u0447\u043d\u044b\u043c \u043e\u0440\u0433\u0430\u043d\u043e\u043c \u043f\u043e \u043f\u0440\u0438\u0441\u0432\u043e\u0435\u043d\u0438\u044e CVE-\u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u043e\u0432, \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u0437\u0430\u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0430 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u0430\u043a CVE-2025-2825 , \u0432 \u0442\u043e \u0432\u0440\u0435\u043c\u044f \u043a\u0430\u043a \u043e\u043a\u043e\u043d\u0447\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 MITRE \u043f\u043e\u044f\u0432\u0438\u043b\u043e\u0441\u044c \u043f\u043e\u0437\u0434\u043d\u0435\u0435, 27 \u043c\u0430\u0440\u0442\u0430, \u0441 \u043d\u043e\u0432\u044b\u043c \u043d\u043e\u043c\u0435\u0440\u043e\u043c \u2014 CVE-2025-31161 . \u0412 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u0431\u043e\u043b\u0435\u0435 \u0440\u0430\u043d\u043d\u0438\u0439 CVE \u0431\u044b\u043b \u043f\u0440\u0438\u0437\u043d\u0430\u043d \u043d\u0435\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u043c, \u0447\u0442\u043e \u0432\u044b\u0437\u0432\u0430\u043b\u043e \u043a\u043e\u043d\u0444\u043b\u0438\u043a\u0442 \u043c\u0435\u0436\u0434\u0443 VulnCheck, MITRE \u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u043e\u043c CrushFTP.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 Outpost24, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u0435\u0440\u0432\u043e\u0439 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u043e \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0435, \u0437\u0430\u043f\u0440\u043e\u0441 \u043d\u0430 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0435 CVE \u0431\u044b\u043b \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u0435\u043d \u0432 MITRE \u0435\u0449\u0451 13 \u043c\u0430\u0440\u0442\u0430. \u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a \u043d\u0430\u0447\u0430\u043b \u0433\u043e\u0442\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u0441\u0442\u0430\u043d\u0434\u0430\u0440\u0442\u043d\u043e\u0433\u043e 90-\u0434\u043d\u0435\u0432\u043d\u043e\u0433\u043e \u043f\u0435\u0440\u0438\u043e\u0434\u0430 \u043e\u0442\u0432\u0435\u0442\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0433\u043e \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f. \u0422\u0435\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0435\u043c VulnCheck, \u043d\u0435 \u0434\u043e\u0436\u0434\u0430\u0432\u0448\u0438\u0441\u044c \u043e\u043a\u043e\u043d\u0447\u0430\u043d\u0438\u044f \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430, \u0441\u0430\u043c\u043e\u0441\u0442\u043e\u044f\u0442\u0435\u043b\u044c\u043d\u043e \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043b\u0430 \u0434\u0430\u043d\u043d\u044b\u0435, \u043d\u0435 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u0432 \u043d\u0438 CrushFTP, \u043d\u0438 Outpost24.\n\n\u041f\u043e\u0437\u0434\u043d\u0435\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u0438\u0442\u0435\u043b\u0438 VulnCheck \u043e\u0431\u0432\u0438\u043d\u0438\u043b\u0438 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u043e\u0432 \u0432 \u043f\u043e\u043f\u044b\u0442\u043a\u0435 \u0441\u043a\u0440\u044b\u0442\u044c \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044e \u043e\u0431 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0441\u043e\u0441\u043b\u0430\u0432\u0448\u0438\u0441\u044c \u043d\u0430 \u0438\u0445 \u043f\u0440\u043e\u0441\u044c\u0431\u0443 \u043d\u0435 \u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u0442\u044c CVE \u0432 \u0442\u0435\u0447\u0435\u043d\u0438\u0435 90 \u0434\u043d\u0435\u0439. \u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c MITRE \u043e\u0431\u0432\u0438\u043d\u0438\u043b\u0438 \u0432 \u0437\u0430\u0442\u044f\u0433\u0438\u0432\u0430\u043d\u0438\u0438 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f, \u043d\u0435\u0441\u043c\u043e\u0442\u0440\u044f \u043d\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0440\u0435\u0434\u0435.\n\n\u0422\u0435\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0435\u043c \u0432 \u0441\u0435\u0442\u0438 \u0443\u0436\u0435 \u043f\u043e\u044f\u0432\u0438\u043b\u0438\u0441\u044c \u0438\u043d\u0441\u0442\u0440\u0443\u043a\u0446\u0438\u0438 \u043f\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \u041e\u043d\u0438 \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0433\u0435\u043d\u0435\u0440\u0430\u0446\u0438\u044e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0441\u0441\u0438\u0438 \u0438 \u043f\u043e\u0434\u043c\u0435\u043d\u0443 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u043e\u0432, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u043e\u0439\u0442\u0438 \u043f\u043e\u0434 \u043b\u044e\u0431\u044b\u043c \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c, \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443. \u0425\u043e\u0442\u044f \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u0434\u0435\u0442\u0430\u043b\u0438 \u0430\u0442\u0430\u043a\u0438 \u043d\u0435 \u0440\u0430\u0441\u043a\u0440\u044b\u0432\u0430\u044e\u0442\u0441\u044f \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e, \u043f\u0440\u0438\u043d\u0446\u0438\u043f\u044b \u0440\u0430\u0431\u043e\u0442\u044b \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430 \u0443\u0436\u0435 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u044b \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c\u0438.\n\n\u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f Huntress, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u0443\u0441\u043f\u0435\u0448\u043d\u043e \u0432\u043e\u0441\u043f\u0440\u043e\u0438\u0437\u0432\u0435\u043b\u0430 Proof-of-Concept, \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 \u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0441 3 \u0430\u043f\u0440\u0435\u043b\u044f. \u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0435\u0441\u0442\u044c \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u043e\u043b\u0430\u0433\u0430\u0442\u044c, \u0447\u0442\u043e \u043f\u0435\u0440\u0432\u044b\u0435 \u0430\u0442\u0430\u043a\u0438 \u043c\u043e\u0433\u043b\u0438 \u043d\u0430\u0447\u0430\u0442\u044c\u0441\u044f \u0435\u0449\u0451 30 \u043c\u0430\u0440\u0442\u0430. \u0412 \u043d\u0430\u0441\u0442\u043e\u044f\u0449\u0438\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e \u043e \u043a\u0430\u043a \u043c\u0438\u043d\u0438\u043c\u0443\u043c \u0447\u0435\u0442\u044b\u0440\u0451\u0445 \u0432\u0437\u043b\u043e\u043c\u0430\u043d\u043d\u044b\u0445 \u0445\u043e\u0441\u0442\u0430\u0445, \u043f\u0440\u0438\u043d\u0430\u0434\u043b\u0435\u0436\u0430\u0449\u0438\u0445 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u044f\u043c \u0438\u0437 \u0441\u0444\u0435\u0440 \u043c\u0430\u0440\u043a\u0435\u0442\u0438\u043d\u0433\u0430, \u0440\u043e\u0437\u043d\u0438\u0447\u043d\u043e\u0439 \u0442\u043e\u0440\u0433\u043e\u0432\u043b\u0438 \u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0441\u0442\u0432\u0430 \u043f\u043e\u043b\u0443\u043f\u0440\u043e\u0432\u043e\u0434\u043d\u0438\u043a\u043e\u0432. \u0422\u0440\u0438 \u0438\u0437 \u044d\u0442\u0438\u0445 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0439 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u044e\u0442\u0441\u044f \u043e\u0434\u043d\u0438\u043c \u0438 \u0442\u0435\u043c \u0436\u0435 \u043f\u0440\u043e\u0432\u0430\u0439\u0434\u0435\u0440\u043e\u043c \u0443\u043f\u0440\u0430\u0432\u043b\u044f\u0435\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432 (MSP).\n\n\u041f\u043e\u0441\u043b\u0435 \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u044e\u0442 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f, \u0432\u043a\u043b\u044e\u0447\u0430\u044f AnyDesk \u0438 MeshAgent, \u0430 \u0442\u0430\u043a\u0436\u0435 \u043f\u0440\u0435\u0434\u043f\u0440\u0438\u043d\u0438\u043c\u0430\u044e\u0442 \u043f\u043e\u043f\u044b\u0442\u043a\u0438 \u043a\u0440\u0430\u0436\u0438 \u0443\u0447\u0451\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u041a\u0440\u043e\u043c\u0435 \u0442\u043e\u0433\u043e, \u0432 \u043e\u0434\u043d\u043e\u043c \u0441\u043b\u0443\u0447\u0430\u0435 \u0431\u044b\u043b\u0430 \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0430 \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0430 \u00abd3d11.dll\u00bb \u2014 \u043c\u043e\u0434\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f \u043f\u0440\u043e\u0435\u043a\u0442\u0430 TgBot. \u041f\u0440\u0435\u0434\u043f\u043e\u043b\u0430\u0433\u0430\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u0430\u0442\u0430\u043a\u0430 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 Telegram-\u0431\u043e\u0442\u0430 \u0434\u043b\u044f \u0441\u0431\u043e\u0440\u0430 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0441 \u0437\u0430\u0440\u0430\u0436\u0451\u043d\u043d\u044b\u0445 \u043c\u0430\u0448\u0438\u043d.\n\n\u041f\u043e \u0441\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u044e \u043d\u0430 6 \u0430\u043f\u0440\u0435\u043b\u044f \u0432 \u043c\u0438\u0440\u0435 \u043d\u0430\u0441\u0447\u0438\u0442\u044b\u0432\u0430\u0435\u0442\u0441\u044f 815 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 CrushFTP, \u043d\u0435 \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0438\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f. \u0418\u0437 \u043d\u0438\u0445 487 \u0440\u0430\u0441\u043f\u043e\u043b\u043e\u0436\u0435\u043d\u044b \u0432 \u0421\u0435\u0432\u0435\u0440\u043d\u043e\u0439 \u0410\u043c\u0435\u0440\u0438\u043a\u0435, \u0430 250 \u2014 \u0432 \u0415\u0432\u0440\u043e\u043f\u0435. \u0412 \u0441\u0432\u044f\u0437\u0438 \u0441 \u0443\u0433\u0440\u043e\u0437\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 CISA \u043e\u0431\u044f\u0437\u0430\u043b\u0430 \u0432\u0441\u0435 \u0444\u0435\u0434\u0435\u0440\u0430\u043b\u044c\u043d\u044b\u0435 \u0433\u0440\u0430\u0436\u0434\u0430\u043d\u0441\u043a\u0438\u0435 \u0430\u0433\u0435\u043d\u0442\u0441\u0442\u0432\u0430 \u0421\u0428\u0410 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e 28 \u0430\u043f\u0440\u0435\u043b\u044f.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2025-04-09T10:17:23.000000Z"}, {"uuid": "77bb4586-f74b-4296-8fe0-0616c68af070", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/ton618cyber/8746", "content": "CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation\n\nCrushFTP flaw CVE-2025-31161 exploited since March 30; 815 systems unpatched as agencies race to secure.\n\nThe Hacker News | thehackernews.com \u2022 Apr 8, 2025", "creation_timestamp": "2025-04-08T15:50:58.000000Z"}, {"uuid": "63322473-d2cd-4aa2-b747-813333cedcca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/ton618cyber/3452", "content": "CISA Adds CrushFTP Vulnerability to KEV Catalog Following Confirmed Active Exploitation\n\nCrushFTP flaw CVE-2025-31161 exploited since March 30; 815 systems unpatched as agencies race to secure.\n\nThe Hacker News | thehackernews.com \u2022 Apr 8, 2025", "creation_timestamp": "2025-04-08T15:50:58.000000Z"}, {"uuid": "fbe5e101-9e82-4e9e-a95f-268047972ad7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/16795", "content": "\ud83d\udea8CVE-2025-31161: Authentication Bypass Vulnerability in CrushFTP\n\nCredit: youtube.com/@gotr00t0day\nExploit: https://github.com/gotr00t0day/3xplo1tz/", "creation_timestamp": "2025-05-04T18:52:11.000000Z"}, {"uuid": "4ceda445-cbe4-4353-af03-09315cbb95b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/9k_C5JXeLGhpcgGl3TlsIBGRr_8CSnsQH8RurvDjcthq00c", "content": "", "creation_timestamp": "2025-04-11T17:00:09.000000Z"}, {"uuid": "7fdb9597-157d-4f67-b08b-ade345e4a9f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "published-proof-of-concept", "source": "Telegram/pp3zaZuHAWmnA0kR0Tja0bjF9QWDV_Ck_mWcnSJpgSdDq38", "content": "", "creation_timestamp": "2025-04-08T23:00:05.000000Z"}, {"uuid": "03e93690-c27c-4b3a-beec-0795c815f29c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "exploited", "source": "https://t.me/thehackernews/6626", "content": "CrushFTP flaw (CVE-2025-31161, CVSS 9.8) is being actively exploited.\n\nFull system takeover via authentication bypass (no login needed)\n\n\u2014First attacks seen March 30\n\u2014815 vulnerable servers\n\u2014 Targets: marketing, retail, semiconductor sectors\n\u2014 Malware used: MeshAgent, Telegram bots\n\nFCEB agencies must patch by April 28. Exploit guide is public. Attackers are moving fast.\n\n\ud83d\udd17 See details: https://thehackernews.com/2025/04/cisa-adds-crushftp-vulnerability-to-kev.html", "creation_timestamp": "2025-04-08T10:18:08.000000Z"}, {"uuid": "feebe797-c277-43f7-8dac-af66b382499c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/dinosn.bsky.social/post/3lluyuvsq2c2n", "content": "", "creation_timestamp": "2025-04-03T03:53:25.958222Z"}, {"uuid": "16410c4e-9371-4f86-96b5-33a65fdc94c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/huntress.com/post/3llzfu7lk2k27", "content": "", "creation_timestamp": "2025-04-04T21:56:14.320168Z"}, {"uuid": "008707c7-bed9-4786-85f6-5005ea5c1f7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lm4pmcizes2s", "content": "", "creation_timestamp": "2025-04-06T05:28:44.670898Z"}, {"uuid": "b2f56daf-ee45-4020-8485-74229c3935fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmceomlxzly2", "content": "", "creation_timestamp": "2025-04-08T11:30:01.257799Z"}, {"uuid": "1a30f473-51a7-48f2-b008-8d55d4ee7ad3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/nimblenerd.social/post/3lmcf5fwybv2u", "content": "", "creation_timestamp": "2025-04-08T11:37:30.744775Z"}, {"uuid": "1d1d8722-0829-4783-8d79-d5e63f02ead9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3lmcvsr3t4s22", "content": "", "creation_timestamp": "2025-04-08T16:35:41.064745Z"}, {"uuid": "09c18b9d-0b30-4412-8909-b5f7ccd7222c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3lmd4gzxgfy2l", "content": "", "creation_timestamp": "2025-04-08T18:34:24.239995Z"}, {"uuid": "4070df9c-abb4-48fa-ac58-71cea89aecce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/jgreig.bsky.social/post/3lmd4qu37xc2i", "content": "", "creation_timestamp": "2025-04-08T18:39:54.170783Z"}, {"uuid": "f7a5265f-34e4-4ef5-a370-3a167bc1d556", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmddgoropk2a", "content": "", "creation_timestamp": "2025-04-08T20:39:29.751246Z"}, {"uuid": "87b4a2af-c49c-42c3-b547-3682db2647aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lmddis5kyk2a", "content": "", "creation_timestamp": "2025-04-08T20:40:39.856723Z"}, {"uuid": "53b1ce19-2fd3-49b0-82d1-4172cc3b0b90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/gleeda.bsky.social/post/3lmdevfl5mc2y", "content": "", "creation_timestamp": "2025-04-08T21:05:36.390205Z"}, {"uuid": "78f42cf0-8d40-4edc-b8e6-6b2221eb96f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmehevxgvpb2", "content": "", "creation_timestamp": "2025-04-09T07:22:49.968982Z"}, {"uuid": "1bc6b230-d8b0-4f6e-9ef2-c12e2ec87f37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31161", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lmfwo2unadn2", "content": "", "creation_timestamp": "2025-04-09T21:43:23.183378Z"}]}