{"vulnerability": "CVE-2020-1375", "sightings": [{"uuid": "1048084f-59fe-4a44-8eac-a1e74eb6414c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13756", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:13:15.000000Z"}, {"uuid": "09f2e057-d11a-4f21-8cdf-9a03ee5aed72", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13756", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1902", "content": "#Analytics\nTop-10 exploited vulnerabilities in January-July 2020:\n1. MVPower DVR Remote Code Execution*\n2. Dasan GPON Router Authentication Bypass (CVE-2018-10561)*\n3. OpenSSL TLS DTLS Heartbeat Information Disclosure (CVE-2014-0160; CVE-2014-0346)\u00a0\n4. HTTP Headers Remote Code Execution (CVE-2020-13756)*\n5. Arbitrary code execution vulnerability in Citrix VPN (CVE-2019-19781)*\n6. Draytek Vigor Command Injection (CVE-2020-8515)*\n7. Command Injection Over HTTP Payload\n8. SQL Injection (several techniques)\n9. RCE on MS Exchange Server (CVE-2020-0688)*\n10. Web Server Exposed Git Repository Information Disclosure\n\n* - Description/PoC available on Cybersecurity Technologies channel ...", "creation_timestamp": "2020-12-18T17:23:40.000000Z"}, {"uuid": "0f4a74fc-0dcf-41b6-8556-f41db1519499", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13756", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:01:33.000000Z"}, {"uuid": "2a910ea9-ecf7-489b-949b-0afe7395b0af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13756", "type": "published-proof-of-concept", "source": "Telegram/uvU3gBnf9Z1WMovVGRRTdFZDjWMl1qRCMdPMKGqSGuqnW3I", "content": "", "creation_timestamp": "2025-12-06T15:00:08.000000Z"}, {"uuid": "15586632-2c15-4c0a-9053-c6e9da30c2fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13756", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61900", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aVulnerable test environment for CVE-2020-13756 (Sabberworm PHP CSS Parser RCE)\nURL\uff1ahttps://github.com/KrE80r/CVE-2020-13756-env\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-06T09:40:35.000000Z"}, {"uuid": "0eb2db7d-7778-4485-b64c-31ef18698251", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-13756", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1893", "content": "#exploit\nCVE-2020-13756:\nSabberworm PHP CSS parser < 8.3.1 suffers from a code injection vulnerability\nhttps://packetstormsecurity.com/files/157923/Sabberworm-PHP-CSS-Code-Injection.html", "creation_timestamp": "2024-07-19T20:03:38.000000Z"}]}