{"vulnerability": "CVE-2020-1736", "sightings": [{"uuid": "098c86d6-6a57-4b1e-92a4-a8de67cf43c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-17363", "type": "seen", "source": "https://t.me/cibsecurity/21435", "content": "\u203c CVE-2020-17363 \u203c\n\nUSVN (aka User-friendly SVN) before 1.0.9 allows remote code execution via shell metacharacters in the number_start or number_end parameter to LastHundredRequest (aka lasthundredrequestAction) in the Timeline module. NOTE: this may overlap CVE-2020-25069.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-31T07:31:06.000000Z"}, {"uuid": "444c1189-dac5-4792-887f-62b1da261d31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-17365", "type": "seen", "source": "https://t.me/canyoupwnme/6653", "content": "CVE-2020-17365 \u2013 Hotspot Shield VPN New Privilege Escalation Vulnerability\nhttps://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10/", "creation_timestamp": "2020-10-21T18:29:30.000000Z"}, {"uuid": "5069d28c-c5fb-478b-85fc-b1cb798b2d7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-17365", "type": "seen", "source": "https://t.me/thebugbountyhunter/4818", "content": "CVE-2020-17365 \u2013 Hotspot Shield VPN New Privilege Escalation Vulnerability https://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10/", "creation_timestamp": "2020-10-21T12:04:45.000000Z"}, {"uuid": "1c156e5a-0114-4cc5-a6a1-97e2590138d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-17363", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1627", "content": "#exploit\nCVE-2020-17363, CVE-2020-17364:\nUser-Friendly USVN <1.0.8 - RCE/stored XSS\nhttps://sysdream.com/news/lab/2020-08-12-cve-2020-17363-usvn-remote-code-execution\n]-> https://sysdream.com/news/lab/2020-08-12-cve-2020-17364-usvn-stored-xss", "creation_timestamp": "2024-05-08T02:55:24.000000Z"}, {"uuid": "5ae3716d-2232-4a39-b2bf-73d61cbc0aea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-17365", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/1967", "content": "VPN Vulnerabilities:\n1. CVE-2020-17365 - Hotspot Shield VPN New Privilege Escalation Vulnerability (PoC)\nhttps://cymptom.com/cve-2020-17365-hotspot-shield-vpn-new-privilege-escalation-vulnerability/2020/10/\n2. Gateway2Hell - Multiple Privilege Escalation Vulnerabilities (CVE-2020-8257, CVE-2020-8258)\nin Citrix Gateway Plug-In (PoC)\nhttps://cymptom.com/gateway2hell-multiple-privilege-escalation-vulnerabilities-in-citrix-gateway-plug-in/2020/10/", "creation_timestamp": "2020-11-08T07:38:00.000000Z"}]}