{"vulnerability": "cve-2021-3264", "sightings": [{"uuid": "9fc62444-90ea-4b8b-b56a-32be61cfe1cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lzcbnp3p242g", "content": "", "creation_timestamp": "2025-09-20T21:02:28.405242Z"}, {"uuid": "107e6ad0-4409-4a77-8ca9-c14c28441b12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/CVE-2021-32648.yaml", "content": "", "creation_timestamp": "2025-09-19T11:25:40.000000Z"}, {"uuid": "cfb93d9e-e294-43cf-835f-c26bf7a7742d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32640", "type": "seen", "source": "https://t.me/codeby_sec/9952", "content": "\ud83c\udf10STEWS \u2014 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442 \u0434\u043b\u044f \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0438 \u043f\u0435\u0440\u0435\u0447\u0438\u0441\u043b\u0435\u043d\u0438\u044f WebSockets.\n\n\ud83c\udfaf\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438\n\u23fa\ufe0f\u041d\u0430\u0445\u043e\u0436\u0434\u0435\u043d\u0438\u0435 \u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0442\u043e\u0447\u0435\u043a WebSockets, \u043f\u0443\u0442\u0435\u043c \u0442\u0435\u0441\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043f\u0435\u0440\u0435\u0447\u043d\u044f \u0434\u043e\u043c\u0435\u043d\u043e\u0432. \u0418\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u043c\u043e\u0434\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0443\u044e \u0432\u0435\u0440\u0441\u0438\u044e ZGrab2 \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 URL-\u0430\u0434\u0440\u0435\u0441\u043e\u0432 \u043d\u0430 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0443 WebSocket \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u043f\u0435\u0440\u0432\u043e\u0439 \u0447\u0430\u0441\u0442\u0438 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f WebSocket.\n\n\u23fa\ufe0f\u041e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435, \u043a\u0430\u043a\u043e\u0439 \u0441\u0435\u0440\u0432\u0435\u0440 WebSockets \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u043d\u0430 \u043a\u043e\u043d\u0435\u0447\u043d\u043e\u0439 \u0442\u043e\u0447\u043a\u0435: \n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0440\u0430\u0437\u043b\u0438\u0447\u0438\u044f \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u043f\u043e\u043f\u0443\u043b\u044f\u0440\u043d\u044b\u0445 \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044f\u0445 WebSocket, \u0447\u0442\u043e\u0431\u044b \u043f\u043e\u043f\u044b\u0442\u0430\u0442\u044c\u0441\u044f \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0437\u0430\u043f\u0443\u0449\u0435\u043d\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0435\u0440\u044b WebSocket. STEWS \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 \u0444\u0443\u043d\u043a\u0446\u0438\u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 \u043a\u0430\u043a \u0432 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0435 \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f WebSocket (\u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 HTTP), \u0442\u0430\u043a \u0438 \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 WebSocket (\u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 WebSocket).\n\n\u23fa\ufe0f\u041f\u0440\u043e\u0432\u0435\u0440\u043a\u0430, \u043d\u0435 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d \u043b\u0438 \u0441\u0435\u0440\u0432\u0435\u0440 WebSockets \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c CVE \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u043c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c WebSockets: CSWSH (\u043f\u0435\u0440\u0435\u0445\u0432\u0430\u0442 \u043c\u0435\u0436\u0441\u0430\u0439\u0442\u043e\u0432\u044b\u0445 \u0432\u0435\u0431-\u0441\u043e\u043a\u0435\u0442\u043e\u0432), CVE-2020-27813,CVE-2020-7662 \u0438 CVE-2020-7663, CVE-2021-32640.\n\n\u0427\u0442\u043e \u0442\u0430\u043a\u043e\u0435 WebSockets\u2753\nWebSocket \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e\u0435 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 \u043c\u0435\u0436\u0434\u0443 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u043c \u0438 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u043c. \u0414\u0430\u043d\u043d\u044b\u0435 \u043f\u0435\u0440\u0435\u0434\u0430\u044e\u0442\u0441\u044f \u0432 \u043e\u0431\u0435 \u0441\u0442\u043e\u0440\u043e\u043d\u044b \u0431\u0435\u0437 \u0437\u0430\u0434\u0435\u0440\u0436\u0435\u043a - \u0441\u043e\u043e\u0431\u0449\u0435\u043d\u0438\u044f \u0432 \u0447\u0430\u0442\u0435 \u043f\u0440\u0438\u0445\u043e\u0434\u044f\u0442 \u0441\u0440\u0430\u0437\u0443, \u0430 \u0438\u0433\u0440\u043e\u0432\u044b\u0435 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f \u0441\u0438\u043d\u0445\u0440\u043e\u043d\u0438\u0437\u0438\u0440\u0443\u044e\u0442\u0441\u044f \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0438. \u041f\u043e\u044f\u0432\u043b\u0435\u043d\u0438\u0435 WebSocket \u0441\u0442\u0430\u043b\u043e \u043f\u0440\u043e\u0440\u044b\u0432\u043e\u043c \u0434\u043b\u044f \u0441\u0435\u0440\u0432\u0438\u0441\u043e\u0432, \u0433\u0434\u0435 \u0432\u0430\u0436\u043d\u0430 \u043c\u0433\u043d\u043e\u0432\u0435\u043d\u043d\u0430\u044f \u0440\u0435\u0430\u043a\u0446\u0438\u044f.\n\n\u27a1\ufe0f\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f. \u0421\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 WebSocket \u043d\u0430\u0447\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0441 \u043e\u0431\u044b\u0447\u043d\u043e\u0433\u043e HTTP-\u0437\u0430\u043f\u0440\u043e\u0441\u0430, \u0432 \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0432\u043a\u043b\u044e\u0447\u0430\u0435\u0442\u0441\u044f \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a Upgrade,\u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0449\u0438\u0439 \u043e \u0436\u0435\u043b\u0430\u043d\u0438\u0438 \u043f\u0435\u0440\u0435\u0439\u0442\u0438 \u043d\u0430 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b Websocket. \u042d\u0442\u043e\u0442 \u043f\u0440\u043e\u0446\u0435\u0441\u0441 \u043d\u0430\u0437\u044b\u0432\u0430\u0435\u0442\u0441\u044f Websocket-handshake\n \n\u27a1\ufe0f\u041e\u0431\u043c\u0435\u043d \u0434\u0430\u043d\u043d\u044b\u043c\u0438. \u041f\u043e\u0441\u043b\u0435 \u0443\u0441\u043f\u0435\u0448\u043d\u043e\u0433\u043e \u201c\u0440\u0443\u043a\u043e\u043f\u043e\u0436\u0430\u0442\u0438\u044f\u201d \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u043d\u043e\u0435 \u0441\u043e\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u0435 \u0438 \u0434\u0430\u043d\u043d\u044b\u0435 \u043c\u043e\u0433\u0443\u0442 \u043f\u0435\u0440\u0435\u0434\u0430\u0432\u0430\u0442\u044c\u0441\u044f \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0432 \u043e\u0431\u0435 \u0441\u0442\u043e\u0440\u043e\u043d\u044b \u0431\u0435\u0437 \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e\u0441\u0442\u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u043d\u043e\u0432\u044b\u0439 \u0437\u0430\u043f\u0440\u043e\u0441.\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\n1\ufe0f\u20e3\u041f\u043e\u0438\u0441\u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u0432\u044b\u0431\u043e\u0440 \u0438\u0437 \u0447\u0435\u0442\u044b\u0440\u0435\u0445 \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0445 \u0442\u0435\u0441\u0442\u043e\u0432. \u041d\u0438\u0436\u0435 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u0435\u043d \u0432\u044b\u0431\u043e\u0440 \u0447\u0435\u0442\u0432\u0435\u0440\u0442\u043e\u0433\u043e \u0442\u0435\u0441\u0442\u0430 \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0438 CVE-2020-27813. \npython3 STEWS-vuln-detect.py -4 -n -u 127.0.0.1:8084\n\n2\ufe0f\u20e3\u0417\u0430\u043f\u0443\u0441\u043a \u0432\u0441\u0435\u0445 \u0442\u0435\u0441\u0442\u043e\u0432\u044b\u0445 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0435\u0432 \u0441 \u0444\u043b\u0430\u0433\u043e\u043c -a \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442 \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0442\u043e\u0447\u043d\u043e\u0435 \u0441\u043e\u043f\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u0438\u0435 \u043e\u0442\u043f\u0435\u0447\u0430\u0442\u043a\u043e\u0432, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u0437\u0430\u043d\u044f\u0442\u044c \u043c\u043d\u043e\u0433\u043e \u0432\u0440\u0435\u043c\u0435\u043d\u0438 \u0438 \u043f\u043e\u0442\u0440\u0435\u0431\u043e\u0432\u0430\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0431\u043e\u043b\u044c\u0448\u043e\u0433\u043e \u043e\u0431\u044a\u0435\u043c\u0430 \u0434\u0430\u043d\u043d\u044b\u0445 \u043d\u0430 \u043a\u043e\u043d\u0435\u0447\u043d\u0443\u044e \u0442\u043e\u0447\u043a\u0443, \u0434\u043b\u044f \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0435\u0442\u0441\u044f \u0441\u043d\u044f\u0442\u0438\u0435 \u043e\u0442\u043f\u0435\u0447\u0430\u0442\u043a\u0430.\npython3 STEWS-fingerprint.py -1 -k -u streamer.finance.yahoo.com\n\n3\ufe0f\u20e3\u0414\u043b\u044f \u043d\u0430\u0445\u043e\u0436\u0434\u0435\u043d\u0438\u044f \u043a\u043e\u043d\u0435\u0447\u043d\u044b\u0445 \u0442\u043e\u0447\u0435\u043a WebSockets \u0432 \u0444\u0430\u0439\u043b\u0435 known-endpoints.txt \u043d\u0435\u043e\u0431\u0445\u043e\u0434\u0438\u043c\u043e \u0443\u043a\u0430\u0437\u0430\u0442\u044c \u0446\u0435\u043b\u0435\u0432\u044b\u0435 \u0434\u043e\u043c\u0435\u043d\u044b \u0438 \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0439 \u0441\u0446\u0435\u043d\u0430\u0440\u0438\u0439.\nSTEWS-discovery.sh\n\n#tools #websockets #network\n\n\ud83d\udd17 \u0412\u0441\u0435 \u043d\u0430\u0448\u0438 \u043a\u0430\u043d\u0430\u043b\u044b \ud83d\udd01 \u0412\u0441\u0435 \u043d\u0430\u0448\u0438 \u0447\u0430\u0442\u044b \ud83e\udea7 \u0414\u043b\u044f \u0441\u0432\u044f\u0437\u0438 \u0441 \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440\u043e\u043c", "creation_timestamp": "2026-04-07T15:02:10.000000Z"}, {"uuid": "c9126320-c07e-4985-884d-f5cda8878eb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://t.me/secsocteam/227", "content": "\u064a\u0648\u0645 \u0627\u0644\u062c\u0645\u0639\u0629 \u0627\u0644\u064a \u0641\u0627\u062a\u062a \u0623\u062a\u0639\u0631\u0636\u062a \u0627\u0644\u0645\u0648\u0627\u0642\u0639 \u0627\u0644\u062d\u0643\u0648\u0645\u064a\u0629 \u0627\u0644\u0623\u0643\u0631\u0627\u0646\u064a\u0629 \u0644\u0640 Cyber Attack \u0623\u062a\u0633\u0628\u0628 \u0641\u064a \u0639\u0637\u0644 \u0644\u062d\u0648\u0627\u0644\u064a 70 \u0645\u0648\u0642\u0639 \u0645\u0646\u0647\u0645 \u0645\u0648\u0642\u0639 \u0645\u062c\u0644\u0633 \u0627\u0644\u0648\u0632\u0631\u0627\u0621 \u0627\u0644\u0623\u0648\u0643\u0631\u0627\u0646\u064a \u0648 \u0645\u0648\u0642\u0639 \u0648\u0632\u0627\u0631\u0629 \u0627\u0644\u062e\u0627\u0631\u062c\u064a\u0629 \u0648 \u0642\u0637\u0627\u0639\u0627\u062a \u0644\u0644\u0637\u0627\u0642\u0629 \u0648 \u0627\u0644\u0637\u0648\u0627\u0631\u0626 \u0643\u0645\u0627\u0646 \u26a0\ufe0f\n\n\u0637\u0628 \u0645\u064a\u0646 \u0627\u0644\u0645\u0633\u0624\u0648\u0644 \u0639\u0646 \u0627\u0644\u0644\u064a\u0644\u0629 \u062f\u064a !!\n\n\u0648 \u0627\u0644\u0644\u0647 \u0647\u0645\u0627 \u062a\u0642\u0631\u064a\u0628\u0627\u064b \u0645\u0634 \u0645\u062a\u0623\u0643\u062f\u064a\u0646 \u0628\u0633 \u0627\u0644\u0640 CERT \u0627\u0644\u0623\u0648\u0643\u0631\u0627\u0646\u064a \u0642\u0627\u0644\u0643 \u0628\u0645\u0627 \u0625\u0646\u0647 \u0641\u064a \u0645\u0634\u0627\u0643\u0644 \u0628\u064a\u0646\u0627 \u0648 \u0628\u064a\u0646 \u0631\u0648\u0633\u064a\u0627 \u064a\u0628\u0642\u0649 \u0645\u0641\u064a\u0634 \u063a\u064a\u0631\u0647\u0645 \ud83d\ude02\ud83d\ude02\n\n\u062d\u0633\u0628 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u0625\u0646\u0647 \u0627\u0644\u0640 Attacks \u062f\u064a \u0645\u0646\u062a\u062c\u0634 \u0639\u0646\u0647\u0627 \u062a\u0633\u0631\u064a\u0628 \u0623\u064a \u0628\u064a\u0627\u0646\u0627\u062a \u062d\u0633\u0627\u0633\u0629 \u0623\u0648 \u0634\u062e\u0635\u064a\u0629 \u0648 \u0625\u0646\u0647 \u0627\u0644\u0625\u062e\u062a\u0631\u0627\u0642 \u0643\u0627\u0646 \u0646\u062a\u064a\u062c\u0629 \u0625\u0633\u062a\u062e\u0644\u0627\u0644 \u0644\u062b\u063a\u0631\u0629 CVE-2021-32648 \u0648 \u062f\u064a \u062b\u063a\u0631\u0629 \u0641\u064a Laravel PHP Framework \u0648 \u0627\u0644\u064a \u0628\u062a\u0633\u0645\u062d \u0644\u0644\u0640 Attacker \u0625\u0646\u0647 \u064a\u0639\u0645\u0644 Password Reset \u0639\u0646 \u0637\u0631\u064a\u0642 Crafted Request \ud83d\udc4c\n\n\u0637\u0628\u0639\u0627\u064b \u0645\u0634 \u0623\u0648\u0644 \u0645\u0631\u0629 \u0646\u0634\u0648\u0641 Cyber Attacks \u0628\u064a\u0646 \u0631\u0648\u0633\u064a\u0627 \u0648 \u0623\u0643\u0631\u0627\u0646\u064a\u0627 \u0648 \u062e\u0635\u0648\u0635\u0627\u064b \u0641\u064a \u0648\u0633\u0637 \u0627\u0644\u0642\u0644\u0642 \u062f\u0647 \u0627\u0644\u0645\u0648\u0636\u0648\u0639 \u0647\u064a\u0632\u064a\u062f \u0628\u0647\u062f\u0641 \u062a\u062e\u0631\u064a\u0628 \u0627\u0644\u0628\u0646\u064a\u0629 \u0627\u0644\u062a\u062d\u062a\u064a\u0629 \u0648 \u0632\u0631\u0639 \u0639\u062f\u0645 \u0627\u0644\u062b\u0642\u0629 \u0641\u064a \u0627\u0644\u062d\u0643\u0648\u0645\u0629 \u26d4\ufe0f\n\n\u0627\u0644\u0645\u0635\u0627\u062f\u0631 \u0644\u0644\u062a\u0641\u0627\u0635\u064a\u0644 \u0623\u0643\u062a\u0631 :\n\n[1] Ukrainian CERT :\nhttps://cert.gov.ua/article/17899\n[2] SSU :\nhttps://ssu.gov.ua/en/novyny/shchodo-aktak-na-saity-derzhavnykh-orhaniv\n[3] TheHackerNews :\nhttps://thehackernews.com/2022/01/massive-cyber-attack-knocks-down.html\n\n#Security_Society", "creation_timestamp": "2022-01-16T16:00:02.000000Z"}, {"uuid": "fa5c080f-9392-4265-b3b3-cfad2ce1c00b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/5245", "content": "#Malware_analysis\n1. Technical Analysis of the WhisperGate Malicious Bootloader\nhttps://www.crowdstrike.com/blog/technical-analysis-of-whispergate-malware\n]-&gt; https://unit42.paloaltonetworks.com/ukraine-cyber-conflict-cve-2021-32648-whispergate\n2. MoonBounce: the dark side of UEFI firmware\nhttps://securelist.com/moonbounce-the-dark-side-of-uefi-firmware/105468\n3. AVADDON Ransomware\nhttps://www.mandiant.com/resources/chasing-avaddon-ransomware", "creation_timestamp": "2022-01-21T11:01:01.000000Z"}, {"uuid": "f876457f-d06c-4a46-b99b-563c767a52a7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2023-06-14T21:10:04.000000Z"}, {"uuid": "1ec9f549-c9c2-4bb6-b919-b06329f87db8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "exploited", "source": "https://t.me/arvin_club/5124", "content": "\u0627\u062d\u062a\u0645\u0627\u0644 \u062f\u0627\u062f\u0647 \u0645\u06cc\u0634\u0647 \u0647\u06a9 \u0648\u0628\u0633\u0627\u06cc\u062a \u0647\u0627\u06cc \u062f\u0648\u0644\u062a\u06cc \u0627\u0648\u06a9\u0631\u0627\u06cc\u0646 \u062f\u0631 \u0637\u0648\u0644 \u0686\u0646\u062f \u0631\u0648\u0632 \u06af\u0630\u0634\u062a\u0647 \u0627\u062a\u0641\u0627\u0642 \u0627\u0641\u062a\u0627\u062f \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2021-32648 \u06a9\u0647 \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 cms \u0627\u06cc\u0646 \u0633\u0627\u06cc\u062a \u0647\u0627 \u0647\u0633\u062a \u0627\u062a\u0641\u0627\u0642 \u0627\u0641\u062a\u0627\u062f\u0647 \u0628\u0627\u0634\u0647 \nhttps://github.com/octobercms/october/security/advisories/GHSA-mxr5-mc97-63rc", "creation_timestamp": "2022-01-16T18:19:49.000000Z"}, {"uuid": "6a0a2c9b-dc8f-4582-a76f-9812b140e2bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/5215", "content": "#exploit\n1. CVE-2021-40724:\nRCE in Adobe Acrobat Reader for Android\nhttps://hulkvision.github.io/blog/post1\n\n2. CVE-2021-32648:\nOctoberCMS &lt; 1.0.472 - Auth Bypass\nhttps://github.com/Immersive-Labs-Sec/CVE-2021-32648", "creation_timestamp": "2022-01-21T06:24:19.000000Z"}, {"uuid": "50e34261-0d70-4119-aefd-95e4ad3d9836", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/3891c3ce-a7a3-432d-8cd5-85e8c19ac6a3", "content": "", "creation_timestamp": "2026-02-02T12:28:27.020902Z"}, {"uuid": "0ebcc79d-5624-417f-aed7-0a66dab2bbd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/3891c3ce-a7a3-432d-8cd5-85e8c19ac6a3", "content": "", "creation_timestamp": "2026-02-02T12:28:27.020902Z"}, {"uuid": "520dce7c-dc47-45bb-82c2-6c1f4afbb53b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1368", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aPatch your code for October CMS Auth Bypass CVE-2021-32648\nURL\uff1ahttps://github.com/daftspunk/CVE-2021-32648", "creation_timestamp": "2022-01-20T09:37:20.000000Z"}, {"uuid": "495177d7-9de2-4776-aa84-148c2a19488a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://t.me/arpsyndicate/1103", "content": "#ExploitObserverAlert\n\nCVE-2021-32648\n\nDESCRIPTION: Exploit Observer has 12 entries related to CVE-2021-32648. octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5.\n\nFIRST-EPSS: 0.020640000\nNVD-IS: 5.2\nNVD-ES: 3.9", "creation_timestamp": "2023-12-04T03:29:58.000000Z"}, {"uuid": "fa66e6ba-a743-4406-a661-625a147a2db7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://t.me/arpsyndicate/1582", "content": "#ExploitObserverAlert\n\nCVE-2021-32648\n\nDESCRIPTION: Exploit Observer has 12 entries related to CVE-2021-32648. octobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5.\n\nFIRST-EPSS: 0.020640000\nNVD-IS: 5.2\nNVD-ES: 3.9", "creation_timestamp": "2023-12-10T00:05:02.000000Z"}, {"uuid": "9d5260f7-051e-4b43-a729-abce7ce47d10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32649", "type": "seen", "source": "https://t.me/cibsecurity/35505", "content": "\u203c CVE-2021-32649 \u203c\n\nOctober CMS is a self-hosted content management system (CMS) platform based on the Laravel PHP Framework. Prior to versions 1.0.473 and 1.1.6, an attacker with \"create, modify and delete website pages\" privileges in the backend is able to execute PHP code by running specially crafted Twig code in the template markup. The issue has been patched in Build 473 (v1.0.473) and v1.1.6. Those unable to upgrade may apply the patch to their installation manually as a workaround.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-01-14T18:23:15.000000Z"}, {"uuid": "5eabfe4f-4578-4471-a288-02ba8e830430", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-3264", "type": "seen", "source": "https://t.me/cibsecurity/27961", "content": "\u203c CVE-2021-3264 \u203c\n\nSQL Injection vulnerability in cxuucms 3.1 ivia the pid parameter in public/admin.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-27T22:28:28.000000Z"}, {"uuid": "e73b0494-b90c-498f-b5af-285c225bd6ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://t.me/cibsecurity/27916", "content": "\u203c CVE-2021-32648 \u203c\n\noctobercms in a CMS platform based on the Laravel PHP Framework. In affected versions of the october/system package an attacker can request an account password reset and then gain access to the account using a specially crafted request. The issue has been patched in Build 472 and v1.1.5.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-08-26T22:27:39.000000Z"}, {"uuid": "c0d715a5-9d27-4432-8eb2-e4adf0bcccf4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "exploited", "source": "https://t.me/Russian_OSINT/1142", "content": "\u200b\u041d\u0430 \u0423\u043a\u0440\u0430\u0438\u043d\u0435 \u0432 \u043d\u043e\u0447\u044c \u043d\u0430 14 \u044f\u043d\u0432\u0430\u0440\u044f \u043f\u0440\u043e\u0438\u0437\u043e\u0448\u043b\u0430 \u0433\u043b\u043e\u0431\u0430\u043b\u044c\u043d\u0430\u044f \u0445\u0430\u043a\u0435\u0440\u0441\u043a\u0430\u044f \u0430\u0442\u0430\u043a\u0430 \u043d\u0430 \u0441\u0430\u0439\u0442\u044b \u043f\u0440\u0430\u0432\u0438\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430, \u043e\u0431 \u044d\u0442\u043e\u043c \u043f\u0438\u0448\u0435\u0442 \u0418\u043d\u0442\u0435\u0440\u0444\u0430\u043a\u0441. \u0425\u0430\u043a\u0435\u0440\u044b \u0432\u0437\u043b\u043e\u043c\u0430\u043b\u0438 \u0441\u0430\u0439\u0442\u044b \u041c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432\u0430 \u0438\u043d\u043e\u0441\u0442\u0440\u0430\u043d\u043d\u044b\u0445 \u0434\u0435\u043b, \u0413\u043e\u0441\u0443\u0434\u0430\u0440\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0439 \u0441\u043b\u0443\u0436\u0431\u044b \u043f\u043e \u0447\u0440\u0435\u0437\u0432\u044b\u0447\u0430\u0439\u043d\u044b\u043c \u0441\u0438\u0442\u0443\u0430\u0446\u0438\u044f\u043c, \u041a\u0430\u0431\u0438\u043d\u0435\u0442\u0430 \u041c\u0438\u043d\u0438\u0441\u0442\u0440\u043e\u0432, \u041c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432\u0430 \u044d\u043d\u0435\u0440\u0433\u0435\u0442\u0438\u043a\u0438.\n\n\u041d\u0430 \u0441\u0442\u0430\u0440\u0442\u043e\u0432\u043e\u0439 \u0441\u0442\u0440\u0430\u043d\u0438\u0446\u0435 \u041c\u0418\u0414 \u0431\u044b\u043b\u043e \u0440\u0430\u0437\u043c\u0435\u0449\u0435\u043d\u043e \u043e\u0431\u044a\u044f\u0432\u043b\u0435\u043d\u0438\u0435 (\u0434\u0435\u0444\u0435\u0439\u0441), \u043d\u0430\u043f\u0438\u0441\u0430\u043d\u043d\u043e\u0435 \u043d\u0430 \u0442\u0440\u0435\u0445 \u044f\u0437\u044b\u043a\u0430\u0445: \u0443\u043a\u0440\u0430\u0438\u043d\u0441\u043a\u043e\u043c, \u0440\u0443\u0441\u0441\u043a\u043e\u043c \u0438 \u043f\u043e\u043b\u044c\u0441\u043a\u043e\u043c (\u0441\u043c.\u0441\u043a\u0440\u0438\u043d\u0448\u043e\u0442). \u041a\u0442\u043e \u0441\u0442\u043e\u0438\u0442 \u0437\u0430 \u0430\u0442\u0430\u043a\u043e\u0439 \u043d\u0435\u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e. \n\n\u0416\u0443\u0440\u043d\u0430\u043b\u0438\u0441\u0442-\u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u041a\u0438\u043c \u0417\u0435\u0442\u0442\u0435\u0440, \u0430\u0432\u0442\u043e\u0440 \u043a\u043d\u0438\u0433\u0438 Countdown to Zero day (\u043f\u0440\u043e \u0447\u0435\u0440\u0432\u044f Stuxnet), \u043d\u0430\u043f\u0438\u0441\u0430\u043b\u0430 \u0443 \u0441\u0435\u0431\u044f \u0432 Twitter, \u0447\u0442\u043e \u043f\u043e \u0435\u0451 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u043e\u043a\u043e\u043b\u043e \ud83c\uddfa\ud83c\udde615 \u0433\u043e\u0441. \u0441\u0430\u0439\u0442\u043e\u0432 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 October CMS \u0438 \u0445\u0430\u043a\u0435\u0440\u044b \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c CVE-2021-32648, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u043e\u0444\u0438\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0437\u0430\u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d \u0435\u0449\u0435 \u0432 \u0430\u0432\u0433\u0443\u0441\u0442\u0435 2021. \n\n\u0421vedetails \u043e\u0447\u0435\u043d\u044c \u0442\u043e\u0447\u043d\u043e \u0445\u0430\u0440\u0430\u043a\u0442\u0435\u0440\u0438\u0437\u0443\u0435\u0442 CVE-2021-32648:\n\n\"Very little knowledge or skill is required to exploit\". \n\n\u041a\u0430\u043a \u0430\u0434\u043c\u0438\u043d\u044b \u043c\u043e\u0433\u043b\u0438 \u0434\u043e\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u0442\u0430\u043a\u043e\u0439 \u043d\u0435\u043f\u0440\u043e\u0441\u0442\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0439 \u043b\u044f\u043f \u043e\u0441\u0442\u0430\u0435\u0442\u0441\u044f \u0437\u0430\u0433\u0430\u0434\u043a\u043e\u0439. \u0414\u0430\u0436\u0435 \u0423\u043a\u0440\u0430\u0438\u043d\u0441\u043a\u0438\u0439 \u041a\u0438\u0431\u0435\u0440\u0430\u043b\u044c\u044f\u043d\u0441 \u0440\u0435\u0437\u043e\u043d\u043d\u043e \ud83d\udc68\u200d\ud83d\ude92\ud83e\uddef\u0431\u043e\u043c\u0431\u0430\u043d\u0443\u043b \u043f\u043e \u044d\u0442\u043e\u043c\u0443 \u043f\u043e\u0432\u043e\u0434\u0443:\n\n\"\u0422\u043e \u0435\u0441\u0442\u044c \u0434\u0432\u0430\u0434\u0446\u0430\u0442\u044c \u0440\u0430\u0437\u043d\u044b\u0445 \u043c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432 \u0438 \u0432\u0435\u0434\u043e\u043c\u0441\u0442\u0432 \u043d\u0435 \u0441\u043c\u043e\u0433\u043b\u0438 \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0439 \u0437\u0430\u0432\u0435\u0434\u043e\u043c\u043e \u0434\u044b\u0440\u044f\u0432\u044b\u0439 OctoberCMS \u0441 \u043c\u0430\u044f \u043c\u0435\u0441\u044f\u0446\u0430. \u0418 \u043d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u0435\u0433\u043e \u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u0442\u043e\u0436\u0435 \u043d\u0435 \u0441\u043c\u043e\u0433\u043b\u0438. \u042d\u0442\u043e \u0432\u0441\u0435, \u0447\u0442\u043e \u0432\u0430\u043c \u043d\u0443\u0436\u043d\u043e \u0437\u043d\u0430\u0442\u044c \u043f\u0440\u043e \u043f\u043e\u0442\u0443\u0436\u043d\u0443\u044e \u0441\u0438\u0441\u0442\u0435\u043c\u0443 \u043a\u0438\u0431\u0435\u0440-\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043f\u0440\u043e\u0447\u0438\u0435 \u043a\u0438\u0431\u0435\u0440\u0432\u043e\u0439\u0441\u043a\u0430. \u0418 \u044d\u0442\u043e \u043d\u0435 \u0440\u0430\u0439\u0440\u0430\u0434\u044b \u0438 \u043d\u0435 \u043f\u043e\u043b\u0438\u043a\u043b\u0438\u043d\u0438\u043a\u043a\u0438, \u0430 \u0446\u0435\u043d\u0442\u0440\u0430\u043b\u044c\u043d\u044b\u0435 \u043e\u0440\u0433\u0430\u043d\u044b \u0432\u043b\u0430\u0441\u0442\u0438. \u0412\u0430\u043c \u043d\u0435 \u043a\u0430\u0436\u0435\u0442\u0441\u044f, \u0447\u0442\u043e \u043c\u044b \u0437\u0440\u044f \u0441\u043e\u0434\u0435\u0440\u0436\u0438\u043c \u043f\u044f\u0442\u044c \u043a\u0438\u0431\u0435\u0440\u0446\u0435\u043d\u0442\u0440\u043e\u0432? \u041c\u043e\u0436\u0435\u0442 \u0441\u043a\u0438\u043d\u0435\u043c\u0441\u044f \u0438 \u043d\u0430\u0439\u043c\u0435\u043c \u0430\u0434\u043c\u0438\u043d\u0430-\u0444\u0440\u0438\u043b\u0430\u043d\u0441\u0435\u0440\u0430 \u0438\u043c \u043d\u0430 \u0437\u0430\u043c\u0435\u043d\u0443? \u0413\u043e\u0441\u043f\u043e\u0434\u0438, \u043a\u0430\u043a\u043e\u0439 \u0441\u0442\u044b\u0434\"\n\n\ud83c\uddea\ud83c\uddfa\u0411\u0440\u044e\u0441\u0441\u0435\u043b\u044c \u0443\u0436\u0435 \u043f\u043e\u043e\u0431\u0435\u0449\u0430\u043b \u044d\u043a\u0441\u0442\u0440\u0435\u043d\u043d\u0443\u044e \u043f\u043e\u043c\u043e\u0449\u044c \u0438\u0437-\u0437\u0430 \u043a\u0438\u0431\u0435\u0440\u0430\u0442\u0430\u043a \u043d\u0430 \u0441\u0430\u0439\u0442\u044b \u043c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432. \u0411\u043e\u0440\u0440\u0435\u043b\u044c \u0441\u043a\u0430\u0437\u0430\u043b, \u0447\u0442\u043e \u0443 \u0411\u0440\u044e\u0441\u0441\u0435\u043b\u044f \u043f\u043e\u043a\u0430 \u043d\u0435\u0442 \u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 \u043e \u0442\u043e\u043c, \u043a\u0442\u043e \u043c\u043e\u0433 \u0441\u0442\u043e\u044f\u0442\u044c \u0437\u0430 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 \u043d\u0430 \u0441\u0430\u0439\u0442 \u043c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432 \u0423\u043a\u0440\u0430\u0438\u043d\u044b.\n\n\u041f\u043e\u0443\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u0430\u044f \u0438\u0441\u0442\u043e\u0440\u0438\u044f \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u0434\u0430\u0436\u0435 \u0433\u043e\u0441. \u0441\u0430\u0439\u0442\u044b \u0431\u043e\u043b\u044c\u0448\u0438\u0445 \u043c\u0438\u043d\u0438\u0441\u0442\u0435\u0440\u0441\u0442\u0432 \u043d\u0435 \u0432\u0441\u0435\u0433\u0434\u0430 \u0437\u0430\u0449\u0438\u0449\u0435\u043d\u044b \u0434\u043e\u043b\u0436\u043d\u044b\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c. \u041a\u0430\u043a \u043c\u044b \u0432\u0438\u0434\u0438\u043c \u043d\u0430 \u043f\u0440\u0438\u043c\u0435\u0440\u0435, \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u043d\u0435 \u043d\u0443\u0436\u043d\u043e \u043e\u0431\u043b\u0430\u0434\u0430\u0442\u044c \u0445\u043e\u0442\u044c \u043a\u0430\u043a\u0438\u043c-\u0442\u043e \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u043c \u043d\u0430\u0432\u044b\u043a\u043e\u043c \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u0430\u0442\u0430\u043a\u0438, \u043e \u0447\u0435\u043c \u0442\u0430\u043a\u0436\u0435 \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u0435\u0442 \u0432\u043d\u0438\u043c\u0430\u0442\u0435\u043b\u044c\u043d\u043e\u0435 \u0438\u0437\u0443\u0447\u0435\u043d\u0438\u0435 \u0421vedetails.", "creation_timestamp": "2022-01-14T12:46:35.000000Z"}, {"uuid": "5ea06078-e55a-4135-977f-ac3f78bd3771", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32644", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4072", "content": "#exploit\nCVE-2021-32644:\nAmpache XSS\nhttps://github.com/dnr6419/CVE-2021-32644", "creation_timestamp": "2021-08-15T13:17:01.000000Z"}, {"uuid": "d6c6017d-aaef-489c-830a-dd69094d75eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971223", "content": "", "creation_timestamp": "2024-12-24T20:26:07.097697Z"}, {"uuid": "4f0c5ae0-4521-4819-81e9-beb3e007559f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-32648", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:10:30.000000Z"}]}