{"ip":"34.18.64.181","total_events":423,"verdict":{"verdict":"scanning","label":"Scanning for known vulnerabilities","detail":"21 exploit-path probe(s)","confidence":"medium","network_type":null,"why":["21 request(s) matched a known exploit path.","Only GET/HEAD seen, no request body: scanning for the vulnerability, not delivering a payload.","Not in any known-scanner range."]},"first_seen":"2026-06-30T03:54:21","last_seen":"2026-06-30T03:54:32","events_24h":0,"events_7d":0,"geo":{"country_code":"QA","country_name":"Qatar","region":"Baladiyat ad Dawhah","city":"Doha","lat":25.2925,"lon":51.5321,"asn":396982,"org":"Google LLC"},"source_domain":"181.64.18.34.bc.googleusercontent.com","known_scanners":[],"scanner_tag":{"key":"gcp","label":"Google Cloud","category":"hosting_provider","url":"https://cloud.google.com/"},"cve_matches":[{"cve_id":"CVE-2022-29775","title":"iSpy 7.2.2.0 - Authentication Bypass","severity":"critical","actively_exploited":false,"match_field":"url_path","matched_pattern":"/logfile"},{"cve_id":"CVE-2020-9425","title":"rConfig <3.9.4 - Sensitive Information Disclosure","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/settings.php"},{"cve_id":"CVE-2024-4836","title":"Edito CMS - Sensitive Data Leak","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/config.php"},{"cve_id":"CVE-2024-50340","title":"Symfony Profiler - Remote Access via Injected Arguments","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/_profiler/phpinfo"},{"cve_id":"CVE-2026-55592","title":"Dashy <= 4.3.6 - Reflected XSS via Workspace","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/workspace"}],"malware":[],"top_ports":[{"port":443,"proto":"tcp","label":"HTTPS","count":423}],"fingerprints":{"ssh_hassh":[],"tls_ja4":["t13i190800_9dc949149365_97f8aa674fd9"],"tls_ja3":["19e29534fd49dd27d09234e639c4057e"],"ja4h":["ge11nn0500_9af7e0472034"]},"fingerprint_peers":{"t13i190800_9dc949149365_97f8aa674fd9":7050,"ge11nn0500_9af7e0472034":5763},"user_agents":["Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3542.0 Safari/537.36","Mozilla/5.0 (Linux; U; Android 8.1.0; en-us; Redmi 5 Plus Build/OPM1.171019.019) AppleWebKit/537.36 (KHTML, like Gecko) Version/4.0 Chrome/71.0.3578.141 Mobile Safari/537.36 XiaoMi/MiuiBrowser/10.9.7-g","Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Safari/537.36","ELinks/0.12~pre5-4","Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.6) Gecko/20040614 Firefox/0.8","Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_2) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.0.2 Safari/605.1.15","Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.80 Safari/537.36","Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/72.0.3626.81 Safari/537.36"],"timeline":[{"date":"2026-06-30","count":423}],"recent_events":[{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3068.0 Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/mailrc","summary":"","payload_hex":"474554202f6d61696c726320485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e30202857696e646f7773204e5420362e323b20574f57363429204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f35392e302e333036382e30205361666172692f3533372e33360d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3068.0 Safari/537.36","community_id":"1:wIKAt97YUxr4uxYLmYIqq/kwMbM=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"86df310e-38c8-44be-afe8-83345868f4e0","seq":1,"duration_ms":100,"bytes_in":230,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Linux; Android 9; SM-M305F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/app/config/database.php","summary":"","payload_hex":"474554202f6170702f636f6e6669672f64617461626173652e70687020485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e3020284c696e75783b20416e64726f696420393b20534d2d4d3330354629204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f37362e302e333830392e313131204d6f62696c65205361666172692f3533372e33360d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Linux; Android 9; SM-M305F) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36","community_id":"1:94GJx5clhcoc6aD7CFIc/Q408tU=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"72fec2c8-6576-44a5-800b-19dd3556d47c","seq":1,"duration_ms":100,"bytes_in":261,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Windows; U; Windows NT 6.0; en-GB; rv:1.9.0.11) Gecko/2009060215 Firefox/3.0.11 (.NET CLR 3.5.30729)\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/database.yml.bak","summary":"","payload_hex":"474554202f64617461626173652e796d6c2e62616b20485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e30202857696e646f77733b20553b2057696e646f7773204e5420362e303b20656e2d47423b2072763a312e392e302e313129204765636b6f2f323030393036303231352046697265666f782f332e302e313120282e4e455420434c5220332e352e3330373239290d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Windows; U; Windows NT 6.0; en-GB; rv:1.9.0.11) Gecko/2009060215 Firefox/3.0.11 (.NET CLR 3.5.30729)","community_id":"1:VEd6nYoEALXYvG57aDujy5W6hfk=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"085255e9-65ef-42e1-bdba-8928652fe8d5","seq":1,"duration_ms":100,"bytes_in":246,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36 OPR/63.0.3368.35\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/sendgrid.yaml","summary":"","payload_hex":"474554202f73656e64677269642e79616d6c20485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e30202857696e646f7773204e542031302e303b20574f57363429204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f37362e302e333830392e313030205361666172692f3533372e3336204f50522f36332e302e333336382e33350d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.100 Safari/537.36 OPR/63.0.3368.35","community_id":"1:CO8ImheBplrnYbhTa037nTiAAsQ=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"b1075a94-f24e-4b2c-b62a-96bed05a554c","seq":1,"duration_ms":193,"bytes_in":257,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Linux; Android 6.0.1; Lenovo P1a42) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/config/sendgrid.yml","summary":"","payload_hex":"474554202f636f6e6669672f73656e64677269642e796d6c20485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e3020284c696e75783b20416e64726f696420362e302e313b204c656e6f766f20503161343229204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f37362e302e333830392e313131204d6f62696c65205361666172692f3533372e33360d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Linux; Android 6.0.1; Lenovo P1a42) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36","community_id":"1:9o3LRz2X5gWsLwbOT/iYoX4VnZk=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"755ee8be-c5d6-45ba-8e7d-d8e20cbc9888","seq":1,"duration_ms":193,"bytes_in":265,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7 MG(Novarra-Vision/6.9)\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/sendgrid.php","summary":"","payload_hex":"474554202f73656e64677269642e70687020485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e3020285831313b20553b204c696e757820693638363b20656e2d55533b2072763a312e382e302e3729204765636b6f2f32303036303930392046697265666f782f312e352e302e37204d47284e6f76617272612d566973696f6e2f362e39290d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.0.7) Gecko/20060909 Firefox/1.5.0.7 MG(Novarra-Vision/6.9)","community_id":"1:JNyF3XdzvPjJPHJ2e9yEIqcyh4s=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"00de4c32-facd-4beb-b3f8-0bf16421e380","seq":1,"duration_ms":193,"bytes_in":234,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Linux; Android 9; Redmi Note 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/mailer/sendgrid.php","summary":"","payload_hex":"474554202f6d61696c65722f73656e64677269642e70687020485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e3020284c696e75783b20416e64726f696420393b205265646d69204e6f7465203729204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f37362e302e333830392e3839204d6f62696c65205361666172692f3533372e33360d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Linux; Android 9; Redmi Note 7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.89 Mobile Safari/537.36","community_id":"1:0Nk1CAooqRfrMPqFN3nXF2P8P9w=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"44ec1aac-1dd1-45f2-a7ca-358da46891da","seq":1,"duration_ms":193,"bytes_in":260,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Linux; Android 7.0; SM-J327T1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.99 Mobile Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/mail/sendgrid.py","summary":"","payload_hex":"474554202f6d61696c2f73656e64677269642e707920485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e3020284c696e75783b20416e64726f696420372e303b20534d2d4a333237543129204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f37312e302e333537382e3939204d6f62696c65205361666172692f3533372e33360d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Linux; Android 7.0; SM-J327T1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/71.0.3578.99 Mobile Safari/537.36","community_id":"1:b36R78OjDxVurpVFWTwc80VAqu4=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"b1e5db12-a359-4aca-beb8-6c7b31810cbc","seq":1,"duration_ms":193,"bytes_in":256,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.27 (KHTML, like Gecko) Chrome/12.0.712.0 Safari/534.27\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/.jenkins/config.xml","summary":"","payload_hex":"474554202f2e6a656e6b696e732f636f6e6669672e786d6c20485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e30202857696e646f7773204e5420362e313b20574f57363429204170706c655765624b69742f3533342e323720284b48544d4c2c206c696b65204765636b6f29204368726f6d652f31322e302e3731322e30205361666172692f3533342e32370d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/534.27 (KHTML, like Gecko) Chrome/12.0.712.0 Safari/534.27","community_id":"1:rwtfi7ySPNNsh9dbZnWIjlGJpl4=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"134ae79f-9ea4-480a-b6b0-f644587477e2","seq":1,"duration_ms":100,"bytes_in":242,"bytes_out":77},{"timestamp":"2026-06-30T03:54:32","port":443,"proto":"tcp","app_proto":"tls","app_protocol":"http","host":"<HONEYPOT>","headers":"{\"accept-charset\":\"utf-8\",\"accept-encoding\":\"gzip\",\"connection\":\"close\",\"host\":\"<HONEYPOT>\",\"user-agent\":\"Mozilla/5.0 (Linux; Android 7.1.2; Redmi 4A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36\"}","body":"","sni":"","tls_cipher":"TLS_AES_128_GCM_SHA256","tls_version":"TLSv1.3","alpn":[],"url_path":"/config/jenkins.xml","summary":"","payload_hex":"474554202f636f6e6669672f6a656e6b696e732e786d6c20485454502f312e310d0a486f73743a20<HONEYPOT>0d0a557365722d4167656e743a204d6f7a696c6c612f352e3020284c696e75783b20416e64726f696420372e312e323b205265646d6920344129204170706c655765624b69742f3533372e333620284b48544d4c2c206c696b65204765636b6f29204368726f6d652f37362e302e333830392e313131204d6f62696c65205361666172692f3533372e33360d0a4163636570742d436861727365743a207574662d380d0a4163636570742d456e636f64696e673a20677a69700d0a436f6e6e656374696f6e3a20636c6f73650d0a0d0a","method":"GET","user_agent":"Mozilla/5.0 (Linux; Android 7.1.2; Redmi 4A) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.111 Mobile Safari/537.36","community_id":"1:7SEyA54k3R37YL2CLq7HEe++qX4=","ja3":"19e29534fd49dd27d09234e639c4057e","session":"7500aba5-d8d1-4b7e-b876-a845331a38bd","seq":1,"duration_ms":100,"bytes_in":260,"bytes_out":77}],"http_methods":[{"method":"GET","count":423}],"distinct_ports_total":1,"top_paths":[{"path":"/api/credentials.json","count":2,"ports":1},{"path":"/Dockerfile","count":2,"ports":1},{"path":"/docker-compose.yaml","count":2,"ports":1},{"path":"/pg_dump.sql","count":2,"ports":1},{"path":"/database.yml","count":2,"ports":1},{"path":"/helm/values.yaml","count":2,"ports":1},{"path":"/private/credentials.json","count":2,"ports":1},{"path":"/docker-compose.production.yml","count":2,"ports":1},{"path":"/app/docker-compose.prod.yml","count":2,"ports":1},{"path":"/docker-compose.dev.yml","count":1,"ports":1},{"path":"/backend/aws.json","count":1,"ports":1},{"path":"/gcp-credentials.json","count":1,"ports":1},{"path":"/kubernetes/secrets.yml","count":1,"ports":1},{"path":"/terraform.tfvars","count":1,"ports":1},{"path":"/api/secrets.json","count":1,"ports":1}],"distinct_paths_total":200,"top_snis":[],"top_hosts":[],"top_alpns":[],"banners":[],"credentials":[],"header_profile":{"signature":["Accept-Charset","Accept-Encoding","Connection","Host","User-Agent"],"representative":[{"name":"Accept-Charset","value":"utf-8","notable":false},{"name":"Accept-Encoding","value":"gzip","notable":false},{"name":"Connection","value":"close","notable":false},{"name":"Host","value":"<HONEYPOT>","notable":false},{"name":"User-Agent","value":"Mozilla/5.0 (Windows NT 6.2; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3068.0 Safari/537.36","notable":false}],"distinct_sets":1,"events_with_headers":10},"tags":[{"tag_id":"CVE-2022-29775","tag_type":"cve","title":"iSpy 7.2.2.0 - Authentication Bypass","severity":"critical","actively_exploited":false,"match_field":"url_path","matched_pattern":"/logfile","reference_urls":["https://gist.github.com/securylight/79f673aa3a453c80c0e78f356a8f650b","https://github.com/securylight/CVES_write_ups/blob/main/iSpy_connect.pdf","https://cve.mitre.org/cgi-bin/cvename.cgi?name=2022-29775","https://nvd.nist.gov/vuln/detail/CVE-2022-29775","https://github.com/securylight/CVES_write_ups"]},{"tag_id":"CVE-2020-9425","tag_type":"cve","title":"rConfig <3.9.4 - Sensitive Information Disclosure","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/settings.php","reference_urls":["https://blog.hivint.com/rconfig-3-9-3-unauthenticated-sensitive-information-disclosure-ead4ed88f153","https://github.com/rconfig/rconfig/commit/20f4e3d87e84663d922b937842fddd9af1b68dd9","https://nvd.nist.gov/vuln/detail/CVE-2020-9425","https://github.com/ARPSyndicate/cvemon","https://github.com/ARPSyndicate/kenzer-templates"]},{"tag_id":"CVE-2024-4836","tag_type":"cve","title":"Edito CMS - Sensitive Data Leak","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/config.php","reference_urls":["https://cert.pl/en/posts/2024/07/CVE-2024-4836/","https://github.com/sleep46/CVE-2024-4836_Check","https://nvd.nist.gov/vuln/detail/CVE-2024-4836"]},{"tag_id":"CVE-2024-50340","tag_type":"cve","title":"Symfony Profiler - Remote Access via Injected Arguments","severity":"high","actively_exploited":false,"match_field":"url_path","matched_pattern":"/_profiler/phpinfo","reference_urls":["https://github.com/symfony/symfony/commit/a77b308c3f179ed7c8a8bc295f82b2d6ee3493fa","https://github.com/symfony/symfony/security/advisories/GHSA-x8vp-gf4q-mw5j","https://blog.nollium.com/cve-2024-50340-remote-access-to-symfony-profiler-via-injected-arguments-d2f14b4f6ad7","https://github.com/nollium/CVE-2024-50340-eos-exploit","https://nvd.nist.gov/vuln/detail/CVE-2024-50340"]},{"tag_id":"CVE-2026-55592","tag_type":"cve","title":"Dashy <= 4.3.6 - Reflected XSS via Workspace","severity":"medium","actively_exploited":false,"match_field":"url_path","matched_pattern":"/workspace","reference_urls":["https://github.com/Lissy93/dashy/security/advisories/GHSA-58mp-4qr3-vmrc","https://nvd.nist.gov/vuln/detail/CVE-2026-55592"]}],"data_as_of":"2026-07-07T10:26:28.602981+00:00"}