[go: up one dir, main page]
More Web Proxy on the site http://driver.im/

セクター Hostingprovider情報

Timeframe: -14 days

Default Categories (69): Access Management Software, Accounting Software, Anti-Malware Software, Anti-Spam Software, Application Server Software, Atlassian Confluence Plugin, Atlassian Jira App Software, Backup Software, Billing Software, Bug Tracking Software, Calendar Software, Chat Software, Cloud Software, Communications System, Connectivity Software, Content Management System, Continuous Integration Software, Customer Relationship Management System, Database Administration Software, Database Software, Directory Service Software, Document Reader Software, Domain Name Software, E-Commerce Management Software, File Compression Software, File Transfer Software, Firewall Software, Firmware Software, Groupware Software, Hardware Driver Software, Information Management Software, JavaScript Library, Joomla Component, Log Management Software, Mail Client Software, Mail Server Software, Mailing List Software, Network Attached Storage Software, Network Authentication Software, Network Encryption Software, Network Management Software, Network Routing Software, Network Utility Software, Office Suite Software, Operating System, Operating System Utility Software, Packet Analyzer Software, Printing Software, Product Lifecycle Management Software, Programming Language Software, Programming Tool Software, Project Management Software, Remote Access Software, Router Operating System, Server Management Software, Service Management Software, Software Library, Software Management Software, Spreadsheet Software, SSH Server Software, Testing Software, Ticket Tracking Software, Versioning Software, Virtualization Software, Web Browser, Web Server, Windowing System Software, Word Processing Software, WordPress Plugin

タイムライン

ベンダー

Not Defined302
Microsoft150
Linux82
Oracle48
Fortinet24

製品

Microsoft Windows118
Linux Kernel82
Oracle MySQL Server32
Fortinet FortiOS18
Selesta Visual Access Manager18

修復

Official Fix452
Temporary Fix0
Workaround0
Unavailable0
Not Defined810

悪用可能性

High6
Functional2
Proof-of-Concept36
Unproven142
Not Defined1076

アクセスベクター

Not Defined0
Physical26
Local58
Adjacent104
Network1074

認証

Not Defined0
High96
Low592
None574

ユーザー操作

Not Defined0
Required644
None618

C3BM Index

CVSSv3 Base

≤10
≤22
≤316
≤452
≤5378
≤6422
≤7158
≤8148
≤976
≤1010

CVSSv3 Temp

≤10
≤22
≤322
≤452
≤5378
≤6462
≤7168
≤8116
≤956
≤106

VulDB

≤10
≤22
≤354
≤4238
≤5494
≤6126
≤7154
≤8118
≤966
≤1010

NVD

≤11244
≤20
≤30
≤40
≤52
≤60
≤76
≤86
≤92
≤102

CNA

≤1288
≤22
≤36
≤414
≤5108
≤6124
≤7248
≤8356
≤982
≤1034

ベンダー

≤11112
≤20
≤32
≤40
≤54
≤610
≤732
≤850
≤948
≤104

0dayエクスプロイト

<1k576
<2k138
<5k244
<10k56
<25k166
<50k12
<100k30
≥100k40

本日のエクスプロイト

<1k732
<2k208
<5k176
<10k64
<25k42
<50k40
<100k0
≥100k0

闇ツールの市場規模

IOB - Indicator of Behavior (1000)

タイムライン

言語

en800
de74
fr72
ja28
pt12

国・地域

US: USA412
CN: China158
CZ: Czech Republic66
FR: France46
DE: Germany40

アクター

Cobalt Strike3
United States of America3
Gafgyt_tor1
Meterpreter1
EvilProxy1

アクティビティ

関心

タイムライン

タイプ

WordPress Plugin114
Operating System42
Content Management System16
Customer Relationship Management System10
Bug Tracking Software10

ベンダー

Microsoft40
Not Defined38
Fanli201212
Oracle10
Wow-Company8

製品

Microsoft Windows36
Fanli2012 native-php-cms12
Linux Kernel6
Google Chrome6
IBM Cloud Pak System6

脆弱性

#脆弱性BaseTemp0day本日悪用可修復EPSSCTICVE
1Microsoft Edge 特権昇格4.84.7$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000003.53-CVE-2025-21262
2CampCodes School Management Software Notice Board Page notice-list クロスサイトスクリプティング3.53.2$0-$5k$0-$5kProof-of-ConceptNot Defined0.000001.93CVE-2025-0710
3qchantelnotice SEO Friendly Accordion FAQ with AI Assisted Content Generation Plugin Shortcode noticefaq クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000001.82CVE-2024-13458
4Google Chrome V8 メモリ破損7.37.0$25k-$100k$5k-$25kNot DefinedOfficial Fix0.000431.05CVE-2025-0611
5jcollings Import WP Plugin uploads 情報の漏洩6.46.3$0-$5k$0-$5kNot DefinedNot Defined0.000000.99CVE-2024-13562
6linearoy Linear Plugin クロスサイトリクエストフォージェリ4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000000.88-CVE-2024-13709
7Go-CMS SQLインジェクション6.36.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.88-CVE-2024-57095
8thimpress LearnPress Plugin クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.77CVE-2024-13599
9paulrosen ABC Notation Plugin Shortcode abcjs クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.83CVE-2024-13551
10dotrex Power Ups for Elementor Plugin Shortcode magic-button クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.83CVE-2024-13548
11jackdewey Bilingual Linker Plugin クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.83CVE-2024-13441
12plethoraplugins Plethora Plugins Tabs and Accordions Plugin Privilege Escalation6.36.2$0-$5k$0-$5kNot DefinedNot Defined0.000000.83CVE-2024-13721
13FluentSMTP & WPManageNinja FluentSMTP Plugin クロスサイトリクエストフォージェリ4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000000.83-CVE-2025-24739
14hk1993 WP Contact Form7 Email Spam Blocker Plugin クロスサイトスクリプティング5.25.1$0-$5k$0-$5kNot DefinedNot Defined0.000000.77CVE-2024-13467
15skyverge Custom Product Tabs Lite for WooCommerce Plugin 特権昇格5.95.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.72CVE-2024-12600
16Flexmls IDX Plugin クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.72CVE-2024-10552
17badhonrocks Carousel Maker for Divi Plugin クロスサイトスクリプティング4.94.9$0-$5k$0-$5kNot DefinedNot Defined0.000000.66CVE-2025-0350
18Wow-Company Sticky Buttons Plugin クロスサイトリクエストフォージェリ4.84.8$0-$5k$0-$5kNot DefinedNot Defined0.000000.66-CVE-2025-24720
19NowButtons Call Now Button Plugin クロスサイトリクエストフォージェリ4.34.2$0-$5k$0-$5kNot DefinedNot Defined0.000000.66-CVE-2025-24738
20SonicWALL SMA1000 Appliance Management Console 特権昇格9.89.6$25k-$100k$5k-$25kHighOfficial Fix0.000430.67CVE-2025-23006

IOC - Indicator of Compromise (24)

These indicators of compromise highlight associated network ranges which are known to be part of research and attack activities.

IDIP rangeアクタータイプ信頼度
15.255.108.0/24Cobalt Strikepredictive
238.54.1.0/24Miraipredictive
338.206.0.0/24United States of Americapredictive
4XX.XXX.XXX.X/XXXxxxxpredictive
5XX.XXX.XXX.X/XXXxxxxx Xxxxxxpredictive
6XX.XXX.XXX.X/XXXxxxxxxpredictive
7XX.XXX.XXX.X/XXXxxxxxpredictive
8XX.XX.XXX.X/XXXxxxxxxxpredictive
9XX.XXX.XXX.X/XXXxxxxxpredictive
10XX.XXX.XX.X/XXXxxxxx Xxxxxx Xx Xxxxxxxpredictive
11XXX.XXX.XX.X/XXXxxxxx_xxxpredictive
12XXX.XXX.XXX.X/XXXxxxxxxxxpredictive
13XXX.XXX.X.X/XXXxxxxx Xxxxxx Xx Xxxxxxxpredictive
14XXX.XX.XXX.X/XXXxxxxx Xxxxxxpredictive
15XXX.XX.XXX.X/XXXxxxxpredictive
16XXX.XX.XX.X/XXXxxxxpredictive
17XXX.XX.XXX.X/XXXxxxxx Xxxxxx Xx Xxxxxxxpredictive
18XXX.XXX.XXX.X/XXXxxxxx Xxxxxx Xx Xxxxxxxpredictive
19XXX.XXX.XXX.X/XXXxxxxpredictive
20XXX.XX.XXX.X/XXXxxxxxxxxpredictive
21XXX.XXX.X.X/XXXxxxxx Xxxxxx Xx Xxxxxxxpredictive
22XXX.XX.XX.X/XXXxxxxpredictive
23XXX.XXX.XX.X/XXXxxxxx Xxxxxxpredictive
24XXX.XXX.XXX.X/XXXxxxxx Xxxxxx Xx Xxxxxxxpredictive

TTP - Tactics, Techniques, Procedures (21)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

IDTechniqueクラス脆弱性アクセスベクタータイプ信頼度
1T1006CAPEC-126CWE-22, CWE-35, CWE-41Path Traversalpredictive
2T1040CAPEC-102CWE-319Authentication Bypass by Capture-replaypredictive
3T1055CAPEC-10CWE-74Improper Neutralization of Data within XPath Expressionspredictive
4T1059CAPEC-242CWE-94Argument Injectionpredictive
5T1059.007CAPEC-209CWE-79, CWE-80, CWE-85Basic Cross Site Scriptingpredictive
6TXXXXCAPEC-XXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxx Xxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
7TXXXXCAPEC-XXCWE-XXXXxxx Xxx Xxxxxxxxx Xxxxxxxxxxx Xxxxxxxxpredictive
8TXXXXCAPEC-XXXCWE-XX, CWE-XXXxxxxxx Xxxxx Xx Xxxxxxxxxx Xxxxxxxxxx Xxxxxxxxxpredictive
9TXXXX.XXXCAPEC-XXXCWE-XXXXxxx Xxxxxxxxpredictive
10TXXXXCWE-XXXXxxxxxxxxx Xxxxxxpredictive
11TXXXXCAPEC-XXXCWE-XX, CWE-XXXxx Xxxxxxxxxpredictive
12TXXXX.XXXCAPEC-XCWE-XXXXxxxxxxx Xxxxxxxxxxxxxpredictive
13TXXXXCAPEC-XXXCWE-XXX, CWE-XXX, CWE-XXXXxxxxxxxxxx Xxxxxxxxxxpredictive
14TXXXX.XXXCWE-XXXXxxxxxx Xxxxx Xxx Xxxxxxxxxxx Xxxxxxxxxx Xxxxx Xxxxxxx Xxxxxpredictive
15TXXXX.XXXCAPEC-XXXCWE-XXXXxxxxxxxxxxxpredictive
16TXXXXCAPEC-XXCWE-XXX, CWE-XXXXxxxxxxxx Xxxxxx Xxxxpredictive
17TXXXX.XXXCAPEC-XXXCWE-XXXXxxxxxxx Xxxxxxxxxxx Xxxxxxxxxxpredictive
18TXXXXCAPEC-XXXCWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXX, CWE-XXXXXxxxxxxxxx Xx Xxxxxxx Xxxxx Xxxxxxx Xxxxxxxxx Xxxxxxxxxxxpredictive
19TXXXXCAPEC-XXXCWE-XXXXxxxxxxxxxxxx Xxxxxxpredictive
20TXXXX.XXXCAPEC-XXXCWE-XXXXxx Xxxxxxxxxx Xxxxxpredictive
21TXXXX.XXXCAPEC-XCWE-XXXXxxxxxxxxx Xxxxxxxxxxxxxx Xx Xxxxxxxx Xxxx Xxxxxxxxxpredictive
概要

This view requires CTI permissions

Just purchase a CTI license today!