{"uuid": "28920ec0-e11d-4caa-a842-76babc6f4d2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-14774", "type": "seen", "source": "https://t.me/DstatLogs/7333", "content": " \ud83d\udc51 Cloudflare-Business-1 \ud83d\udc51\n\n\ud83e\udd84 Total Count:\n\n All Request\n \u27a5 1,613,992\n\n Request Successful\n \u27a5 0  (0.00%)\n\n Request Blocked\n \u27a5 1,613,992  (100.00%)\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\udd2b Allowed Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 0\n \u27a5 Percentage: 0.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\ude81 Bypassed Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 0\n \u27a5 Percentage: 0.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\udee1 Blocked Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 926,102\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests trying to impersonate browsers.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 44\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: ae20608d93b94e97988db1bbc12cf9c8\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 386\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: Anomaly:Header:User-Agent - Fake Google Bot\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 37,053\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: Drupal - Anomaly:Header:X-Forwarded-For - CVE:CVE-2018-14774\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 14,553\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: Requests coming from known bad sources.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 3,536\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests with unusual HTTP headers or URI path (signature #38). Only for zones on PRO plan and above.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 632,271\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests with unusual HTTP headers or URI path (signature #56).\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 47\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/1.1\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: Manage Definite Bots\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n \u27a5 Count: 1,613,992\n \u27a5 Percentage: 100.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\n\n\ud83d\ude97 Data from user:  shinonome 541 \ud83d\ude97", "creation_timestamp": "2025-07-30T08:43:43.000000Z"}