{"vulnerability": "CVE-2021-22205", "sightings": [{"uuid": "6d7b93bc-0070-4ded-98af-1f37a669b701", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/f5030aca-7d5a-43a4-ae03-8f4ac8e85422", "content": "", "creation_timestamp": "2021-11-08T08:58:17.000000Z"}, {"uuid": "bcff1ac7-787c-4d78-a3bd-aa58fa4180db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2021-11-20T09:53:52.000000Z"}, {"uuid": "3e59f821-d6e4-4db5-80a0-c3edc9b52848", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/d3fd7e8e-c7ec-41ca-87fe-462bb29963a6", "content": "", "creation_timestamp": "2024-05-31T09:39:04.000000Z"}, {"uuid": "c2bfeaf9-d7e0-43ac-b9b9-d9cd864ca3cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "confirmed", "source": "https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2021/CVE-2021-22205.yaml", "content": "", "creation_timestamp": "2023-04-27T09:58:59.000000Z"}, {"uuid": "069b16fd-8573-48d9-9cab-78b871933056", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/2971092", "content": "", "creation_timestamp": "2024-12-24T20:24:08.149753Z"}, {"uuid": "b523ec9b-ee2b-45a4-90bc-1469e43e037c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:45.000000Z"}, {"uuid": "eb0d25c6-28d2-4a4d-a0c8-b6b1fea2bc25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-02-23T02:09:52.000000Z"}, {"uuid": "0434f595-59ef-4ebc-9b5a-6f75142aedfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:34.000000Z"}, {"uuid": "4780422f-f4cc-4cf8-bc30-9670f3eb3a76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://bsky.app/profile/kooteksec.bsky.social/post/3lqhsbnof2c22", "content": "", "creation_timestamp": "2025-05-31T12:56:38.469185Z"}, {"uuid": "09ef0b05-5b38-46f8-bb85-fb533273360f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/gitlab_exif_rce.rb", "content": "", "creation_timestamp": "2021-11-03T21:17:46.000000Z"}, {"uuid": "970f4356-797e-49dd-9eaf-2ade7188ac08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57", "content": "", "creation_timestamp": "2025-08-31T03:12:44.000000Z"}, {"uuid": "6127728e-e853-4ff4-9d81-c582cd471a52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://bsky.app/profile/allsafeus.bsky.social/post/3me3yusbert2d", "content": "", "creation_timestamp": "2026-02-05T08:46:31.783657Z"}, {"uuid": "d6fead70-b239-4b8f-9e07-566f54139f86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "MISP/ab0b745f-bbd5-338e-8b92-97dd0c757e9d", "content": "", "creation_timestamp": "2025-08-31T03:00:59.000000Z"}, {"uuid": "2d3fdb5c-0018-4b0a-bf83-8f71104d1fc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/8e7dd4c0-9908-429a-a781-e195ccbba047", "content": "", "creation_timestamp": "2026-02-02T12:28:43.264221Z"}, {"uuid": "202e8ac3-3e86-40a0-b959-70e4d98a3e94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=687", "content": "", "creation_timestamp": "2021-11-04T04:00:00.000000Z"}, {"uuid": "65edbc31-a4af-4d2b-808d-75ef6f7de75d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/767", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205& GitLab CE/EE RCE\nURL\uff1ahttps://github.com/Al1ex/CVE-2021-22205", "creation_timestamp": "2021-10-29T04:35:21.000000Z"}, {"uuid": "8074fd7f-dd8f-45b3-9145-f335fb6c3c76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/774", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 \u79fb\u9664\u4e86\u5bf9djvumake & djvulibre\u7684\u4f9d\u8d56\uff0c\u53ef\u5728win\u5e73\u53f0\u4f7f\u7528\nURL\uff1ahttps://github.com/whwlsfb/CVE-2021-22205", "creation_timestamp": "2021-10-30T03:05:15.000000Z"}, {"uuid": "ae360089-5d81-46c2-bb4b-fe139bd4c1fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/780", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205\u6f0f\u6d1e\u68c0\u6d4b\nURL\uff1ahttps://github.com/Seals6/CVE-2021-22205", "creation_timestamp": "2021-10-31T04:19:23.000000Z"}, {"uuid": "7542528d-6a4d-4494-85e7-0524b4e7640d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/880", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 on Docker\nURL\uff1ahttps://github.com/ahmad4fifz/CVE-2021-22205", "creation_timestamp": "2021-11-25T09:59:28.000000Z"}, {"uuid": "2404a779-f223-434b-bba4-136a7bcc54bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/763", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 Exploit\nURL\uff1ahttps://github.com/r0eXpeR/CVE-2021-22205", "creation_timestamp": "2021-10-28T14:05:09.000000Z"}, {"uuid": "6d11fe0c-1690-434e-86f4-c953541a78f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/759", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aPocsuite3 For CVE-2021-22205\nURL\uff1ahttps://github.com/RedTeamWing/CVE-2021-22205", "creation_timestamp": "2021-10-28T06:33:48.000000Z"}, {"uuid": "276f35ba-a8e3-4647-82e2-85ba00d3f0f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/783", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 RCE \nURL\uff1ahttps://github.com/c0okB/CVE-2021-22205", "creation_timestamp": "2021-10-31T14:38:47.000000Z"}, {"uuid": "ea460cce-e3cd-4378-9efd-763480fdc201", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/785", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205-getshell\nURL\uff1ahttps://github.com/shang159/CVE-2021-22205-getshell", "creation_timestamp": "2021-11-01T06:09:29.000000Z"}, {"uuid": "bcd0066c-377e-4ba0-a0c0-6366de557316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/811", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aExploit for GitLab CVE-2021-22205 Unauthenticated Remote Code Execution\nURL\uff1ahttps://github.com/runsel/GitLab-CVE-2021-22205-", "creation_timestamp": "2021-11-05T17:00:31.000000Z"}, {"uuid": "1d867889-9a90-4597-8450-7161bed84d3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/cKure/7805", "content": "\u25a0\u25a0\u25a0\u25a0\u25a1 GitLab CE CVE-2021-22205 in the wild.\n\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/", "creation_timestamp": "2021-10-28T05:18:25.000000Z"}, {"uuid": "a2d9a438-12fe-42ce-b3ab-f0f76264e0db", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/810", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aAutomated Gitlab RCE via CVE-2021-22205\nURL\uff1ahttps://github.com/X1pe0/Automated-Gitlab-RCE", "creation_timestamp": "2021-11-05T16:51:47.000000Z"}, {"uuid": "9d310998-8790-42b3-b11b-afb88da9bfc5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/803", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205& GitLab CE/EE RCE\nURL\uff1ahttps://github.com/devdanqtuan/CVE-2021-22205", "creation_timestamp": "2021-11-04T09:06:20.000000Z"}, {"uuid": "e7f98974-3bbf-460a-a22f-c68a756a175a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/1207", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 \u7684\u6279\u91cf\u68c0\u6d4b\u811a\u672c\nURL\uff1ahttps://github.com/gardenWhy/Gitlab-CVE-2021-22205", "creation_timestamp": "2021-12-22T04:33:05.000000Z"}, {"uuid": "79c3c777-7ada-41a4-81b3-b226f3d2c238", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/cKure/7906", "content": "\u25a0\u25a1\u25a1\u25a1\u25a1 Attackers are actively exploiting an \u201cold\u201d vulnerability (CVE-2021-22205) to take over on-premise GitLab servers, Rapid7 researcher Jacob Baines warns. The additional bad news is that at least half of the 60,000 internet-facing GitLab installations the company detects are not patched against this issue.\u00a0", "creation_timestamp": "2021-11-04T18:24:21.000000Z"}, {"uuid": "120540f2-e2f2-4120-893d-09e5155f8b26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/44931", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aGitLabRCECVE-2021-22205Tool\nURL\uff1ahttps://github.com/whiex/GitLabRCECVE-2021-22205Tool\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-07-22T07:48:08.000000Z"}, {"uuid": "9ce05adf-4dc1-4c73-9c64-0754f41aae55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/gitlab_cve_2021_22205", "content": "", "creation_timestamp": "2021-11-05T16:34:58.000000Z"}, {"uuid": "7ad73bea-0f3d-4aed-9757-a877754874b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "Telegram/PHoJQGmgGzsQrC8Gnxfc8pLZD55xgKQzGqHQgQ7hPSbJXl0", "content": "", "creation_timestamp": "2025-11-19T15:00:09.000000Z"}, {"uuid": "2495a4aa-0acd-4548-aaa2-0e362701db88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/2747", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1agetshell\n\u63cf\u8ff0\uff1aCVE-2021-22205 \u68c0\u6d4b\u811a\u672c,\u652f\u6301getshell\u548c\u547d\u4ee4\u6267\u884c\nURL\uff1ahttps://github.com/keven1z/CVE-2021-22205\n\n\u6807\u7b7e\uff1a#getshell", "creation_timestamp": "2022-07-20T17:50:06.000000Z"}, {"uuid": "9590dffb-f57a-4824-9474-fe0b797ced8d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/itsec_news/3119", "content": "\u200b\u26a1\ufe0f\u041b\u0430\u0431\u043e\u0440\u0430\u0442\u043e\u0440\u043d\u044b\u0435 \u043a\u0440\u044b\u0441\u044b \u0430\u0442\u0430\u043a\u0443\u044e\u0442 GitLab: \u0445\u0430\u043a\u0435\u0440\u044b \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u044f\u044e\u0442 \u043a\u0440\u0438\u043f\u0442\u043e- \u0438 \u043f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u043e\u043c \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438 LABRAT.\n\n\ud83d\udcac \u041a\u0430\u043a \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0430 Sysdig \u0432 \u0441\u0432\u043e\u0451\u043c \u0432\u0447\u0435\u0440\u0430\u0448\u043d\u0435\u043c \u043e\u0442\u0447\u0451\u0442\u0435 , \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u0438\u0441\u0442\u0430\u043c\u0438 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u0431\u044b\u043b\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u043d\u043e\u0432\u0430\u044f \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e \u043c\u043e\u0442\u0438\u0432\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u0430\u044f \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u044f \u043f\u043e\u0434 \u043d\u0430\u0437\u0432\u0430\u043d\u0438\u0435\u043c LABRAT, \u0432 \u0440\u0430\u043c\u043a\u0430\u0445 \u043a\u043e\u0442\u043e\u0440\u043e\u0439 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c GitLab \u0434\u0432\u0443\u0445\u043b\u0435\u0442\u043d\u0435\u0439 \u0434\u0430\u0432\u043d\u043e\u0441\u0442\u0438 \u0432 \u0446\u0435\u043b\u044f\u0445 \u043a\u0440\u0438\u043f\u0442\u043e\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430 \u0438 \u043f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430.\n\n\u00ab\u0425\u0430\u043a\u0435\u0440\u044b \u043f\u0440\u0438\u043c\u0435\u043d\u0438\u043b\u0438 \u0438\u043d\u0441\u0442\u0440\u0443\u043c\u0435\u043d\u0442\u044b, \u043e\u0441\u043d\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u043d\u0430 \u0441\u0438\u0433\u043d\u0430\u0442\u0443\u0440\u0430\u0445, \u0441\u043b\u043e\u0436\u043d\u044b\u0435 \u0438 \u0441\u043a\u0440\u044b\u0442\u043d\u044b\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u044b, \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0438 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043e\u0431\u0445\u043e\u0434\u0438\u043b\u0438 \u0431\u0440\u0430\u043d\u0434\u043c\u0430\u0443\u044d\u0440\u044b, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0440\u0443\u0442\u043a\u0438\u0442\u044b \u043d\u0430 \u0431\u0430\u0437\u0435 \u044f\u0434\u0440\u0430 \u0434\u043b\u044f \u0441\u043e\u043a\u0440\u044b\u0442\u0438\u044f \u0441\u0432\u043e\u0435\u0433\u043e \u043f\u0440\u0438\u0441\u0443\u0442\u0441\u0442\u0432\u0438\u044f\u00bb, \u2014 \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438.\n\n\u041f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u0441\u0434\u0430\u0432\u0430\u0442\u044c \u0432 \u0430\u0440\u0435\u043d\u0434\u0443 \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0445\u043e\u0441\u0442 \u0432 \u043f\u0440\u043e\u043a\u0441\u0438-\u0441\u0435\u0442\u044c, \u0447\u0442\u043e\u0431\u044b \u043c\u043e\u043d\u0435\u0442\u0438\u0437\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043d\u0435\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u0443\u044e \u043f\u0440\u043e\u043f\u0443\u0441\u043a\u043d\u0443\u044e \u0441\u043f\u043e\u0441\u043e\u0431\u043d\u043e\u0441\u0442\u044c. \u041a\u0440\u0438\u043f\u0442\u043e\u0434\u0436\u0435\u043a\u0438\u043d\u0433 \u043f\u043e\u0434\u0440\u0430\u0437\u0443\u043c\u0435\u0432\u0430\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0438\u0441\u0442\u0435\u043c\u043d\u044b\u0445 \u0440\u0435\u0441\u0443\u0440\u0441\u043e\u0432 \u0434\u043b\u044f \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u043a\u0440\u0438\u043f\u0442\u043e\u0432\u0430\u043b\u044e\u0442\u044b.\n\n\u041e\u0442\u043b\u0438\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e\u0439 \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e\u0441\u0442\u044c\u044e \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u043a\u043e\u043c\u043f\u0438\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0431\u0438\u043d\u0430\u0440\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0430 Go \u0438 .NET \u0434\u043b\u044f \u043e\u0431\u0445\u043e\u0434\u0430 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f. LABRAT \u0442\u0430\u043a\u0436\u0435 \u0444\u0443\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u0443\u0435\u0442 \u043a\u0430\u043a \u0431\u044d\u043a\u0434\u043e\u0440 \u043d\u0430 \u0438\u043d\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445, \u0447\u0442\u043e \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u043e\u043b\u043e\u0436\u0438\u0442\u044c \u043f\u0443\u0442\u044c \u0434\u043b\u044f \u043f\u043e\u0441\u043b\u0435\u0434\u0443\u044e\u0449\u0438\u0445 \u0430\u0442\u0430\u043a, \u043a\u0440\u0430\u0436\u0438 \u0434\u0430\u043d\u043d\u044b\u0445 \u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0430.\n\n\u0410\u0442\u0430\u043a\u0430 \u043d\u0430\u0447\u0438\u043d\u0430\u0435\u0442\u0441\u044f \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 CVE-2021-22205 \u0441 \u043e\u0446\u0435\u043d\u043a\u043e\u0439 CVSS 10 \u0431\u0430\u043b\u043b\u043e\u0432. \u041a\u0430\u043a \u043c\u043e\u0436\u043d\u043e \u0437\u0430\u043c\u0435\u0442\u0438\u0442\u044c \u043f\u043e \u0438\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u0443, \u043e\u043d\u0430 \u0431\u044b\u043b\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0430 \u0432 2021 \u0433\u043e\u0434\u0443 \u0438 \u0432\u0441\u043a\u043e\u0440\u0435 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0435\u0439 GitLab. \u041e\u0434\u043d\u0430\u043a\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0440\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u043d\u0435 \u043e\u0431\u043d\u043e\u0432\u0438\u043b\u0438 \u0441\u0432\u043e\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u0441\u0442\u0430\u0432 \u043d\u043e\u0432\u044b\u043c\u0438 \u0436\u0435\u0440\u0442\u0432\u0430\u043c\u0438 \u0445\u0430\u043a\u0435\u0440\u043e\u0432.\n\n\u0423\u0441\u043f\u0435\u0448\u043d\u043e\u0435 \u043f\u0440\u043e\u043d\u0438\u043a\u043d\u043e\u0432\u0435\u043d\u0438\u0435 \u0441\u043e\u043f\u0440\u043e\u0432\u043e\u0436\u0434\u0430\u0435\u0442\u0441\u044f \u043f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0435\u043c \u0441\u043a\u0440\u0438\u043f\u0442\u0430-\u0434\u0440\u043e\u043f\u043f\u0435\u0440\u0430 \u043e\u0442 C2-\u0441\u0435\u0440\u0432\u0435\u0440\u0430. \u0414\u0440\u043e\u043f\u043f\u0435\u0440 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u0435\u0442 \u043f\u043e\u0441\u0442\u043e\u044f\u043d\u0441\u0442\u0432\u043e \u0432 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435, \u043f\u0440\u043e\u0432\u043e\u0434\u0438\u0442 \u0431\u043e\u043a\u043e\u0432\u043e\u0435 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0435\u043d\u0438\u0435 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c \u0443\u0447\u0451\u0442\u043d\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 SSH, \u043d\u0430\u0439\u0434\u0435\u043d\u043d\u044b\u0445 \u0442\u0430\u043c \u0436\u0435, \u0438 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0435\u0442 \u0434\u043e\u043f\u043e\u043b\u043d\u0438\u0442\u0435\u043b\u044c\u043d\u044b\u0435 \u0431\u0438\u043d\u0430\u0440\u043d\u0438\u043a\u0438 \u0438\u0437 \u043f\u0440\u0438\u0432\u0430\u0442\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f GitLab.\n\n\u0421\u0435\u0440\u0432\u0438\u0441 TryCloudflare \u0442\u0430\u043a\u0436\u0435 \u044f\u0432\u043b\u044f\u0435\u0442\u0441\u044f \u0432\u0430\u0436\u043d\u044b\u043c \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u043e\u043c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u0438. \u041e\u043d \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0434\u043b\u044f \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u043a\u0440\u044b\u0442\u044b\u0445 \u043a\u0430\u043d\u0430\u043b\u043e\u0432 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0445\u043e\u0441\u0442\u043e\u0432.\n\n\u041d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0438\u0437 \u043f\u043e\u043b\u0435\u0437\u043d\u044b\u0445 \u043d\u0430\u0433\u0440\u0443\u0437\u043e\u043a, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u043c\u044b\u0445 \u0432 \u0434\u0430\u043d\u043d\u043e\u0439 \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u0438, \u0432\u043a\u043b\u044e\u0447\u0430\u044e\u0442 \u0443\u0442\u0438\u043b\u0438\u0442\u0443 \u00abgsocket\u00bb \u0434\u043b\u044f \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0431\u0438\u043d\u0430\u0440\u043d\u0438\u043a\u0438 \u0434\u043b\u044f \u043a\u0440\u0438\u043f\u0442\u043e\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430 \u0438 \u043f\u0440\u043e\u043a\u0441\u0438\u0434\u0436\u0435\u043a\u0438\u043d\u0433\u0430 \u0447\u0435\u0440\u0435\u0437 \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u044b\u0435 \u0441\u0435\u0440\u0432\u0438\u0441\u044b IPRoyal \u0438 ProxyLite. \u041f\u0440\u043e\u0446\u0435\u0441\u0441 \u043c\u0430\u0439\u043d\u0438\u043d\u0433\u0430 \u0441\u043a\u0440\u044b\u0442 \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u0440\u0443\u0442\u043a\u0438\u0442\u0430 \u044f\u0434\u0440\u0430 \u00abhiding-cryptominers-linux-rootkit\u00bb.\n\n\u0422\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u0445\u0430\u043a\u0435\u0440\u044b \u0432\u0435\u0441\u044c\u043c\u0430 \u0438\u0437\u043e\u0449\u0440\u0435\u043d\u043d\u043e \u0432\u043e\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043b\u0438\u0441\u044c \u0441\u0442\u0430\u0440\u043e\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c\u044e GitLab \u0434\u043b\u044f \u043f\u0440\u043e\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0442\u0438\u0432\u043e\u043f\u0440\u0430\u0432\u043d\u044b\u0445 \u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0439 \u0441 \u0446\u0435\u043b\u044c\u044e \u0444\u0438\u043d\u0430\u043d\u0441\u043e\u0432\u043e\u0439 \u043d\u0430\u0436\u0438\u0432\u044b. \u041a\u043e\u043c\u043f\u0430\u043d\u0438\u044f \u043f\u0440\u0438\u0437\u0432\u0430\u043b\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u0439 \u043d\u0435\u0437\u0430\u043c\u0435\u0434\u043b\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b GitLab \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u0432\u0435\u0440\u0441\u0438\u0439, \u0435\u0441\u043b\u0438 \u043e\u043d\u0438 \u043f\u043e \u043a\u0430\u043a\u043e\u0439-\u0442\u043e \u043f\u0440\u0438\u0447\u0438\u043d\u0435 \u0434\u043e \u0441\u0438\u0445 \u043f\u043e\u0440 \u044d\u0442\u043e\u0433\u043e \u043d\u0435 \u0441\u0434\u0435\u043b\u0430\u043b\u0438.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2023-08-18T13:53:12.000000Z"}, {"uuid": "077ff1d8-7c5b-4c76-8502-05ad12f1e66a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/habr_com_news/717", "content": "\u200b\u0425\u0430\u043a\u0435\u0440\u044b \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c GitLab\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043a\u0438\u0431\u0435\u0440\u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u044e\u0442, \u0447\u0442\u043e \u043f\u0440\u043e\u043f\u0430\u0442\u0447\u0435\u043d\u043d\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u043e\u0434\u0430 (RCE) \u0432 \u0432\u0435\u0431-\u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0435 GitLab \u043f\u043e-\u043f\u0440\u0435\u0436\u043d\u0435\u043c\u0443 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438, \u043f\u043e\u0434\u0432\u0435\u0440\u0433\u0430\u044f \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0431\u043e\u043b\u044c\u0448\u043e\u0435 \u0447\u0438\u0441\u043b\u043e \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 \u0441\u0435\u0440\u0432\u0438\u0441\u0430. \u042d\u0442\u0430 \u0434\u044b\u0440\u0430, \u043f\u043e\u043b\u0443\u0447\u0438\u0432\u0448\u0430\u044f \u043a\u043e\u0434 CVE-2021-22205, \u043e\u0442\u043d\u043e\u0441\u0438\u0442\u0441\u044f \u043a \u043d\u0435\u0432\u0435\u0440\u043d\u043e\u0439 \u0432\u0430\u043b\u0438\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u0435\u0434\u043e\u0441\u0442\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0435\u043c \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u0439, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u0441\u043e\u0434\u0435\u0440\u0436\u0430\u0449\u0438\u0439\u0441\u044f \u0432 \u043d\u0438\u0445 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434. \u0423\u0433\u0440\u043e\u0437\u0435 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u043a\u0430\u043a \u0432\u0435\u0440\u0441\u0438\u0438 GitLab Enterprise Edition (EE), \u0442\u0430\u043a \u0438 GitLab Community Edition (CE), \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 11.9. \u0417\u0430\u043f\u043b\u0430\u0442\u043a\u0443 \u0436\u0435 \u0432\u044b\u043f\u0443\u0441\u0442\u0438\u043b\u0438 14 \u0430\u043f\u0440\u0435\u043b\u044f 2021 \u0433\u043e\u0434\u0430 \u0434\u043b\u044f \u0432\u0435\u0440\u0441\u0438\u0439 13.8.8, 13.9.6 \u0438 13.10.3.", "creation_timestamp": "2021-11-03T12:31:19.000000Z"}, {"uuid": "28c27d9b-e047-42d9-82f8-73cad1f5ceef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/882", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aA CVE-2021-22205 Gitlab RCE POC written in Golang\nURL\uff1ahttps://github.com/pizza-power/Golang-CVE-2021-22205-POC", "creation_timestamp": "2021-11-25T12:52:22.000000Z"}, {"uuid": "d2bb7def-b571-4b66-b565-ae01ca21ad05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/881", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aCVE-2021-22205 on Docker\nURL\uff1ahttps://github.com/pierDipi/unicode-control-characters-action", "creation_timestamp": "2021-11-25T12:01:35.000000Z"}, {"uuid": "9a84414c-2682-45d6-8c56-431af0307f4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/tech_b0lt_Genona/2887", "content": "\u0412\u0441\u0451 \u0437\u0430\u0431\u044b\u0432\u0430\u043b \u043d\u0430\u043f\u0438\u0441\u0430\u0442\u044c. \u0422\u0443\u0442 GitLab'\u044b, \u0442\u043e\u0440\u0447\u0430\u0449\u0438\u0435 \u043d\u0430\u0440\u0443\u0436\u0443, \u043f\u043e\u043f\u0430\u043b\u0438 \u043f\u043e\u0434 \u0440\u0430\u0437\u0434\u0430\u0447\u0443. \u042f \u0432 \u0430\u043f\u0440\u0435\u043b\u0435 \u0441\u044e\u0434\u0430 \u043f\u0438\u0441\u0430\u043b \u043e \u0442\u043e\u043c, \u0447\u0442\u043e \u043d\u0430\u0434\u043e \u0431\u044b \u0441\u0440\u043e\u0447\u043d\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u044f\u0442\u044c GitLab \u0438 \u0432\u043e\u0442 \u0442\u0435\u043f\u0435\u0440\u044c \u0443\u0436\u0435 \u043d\u0430\u0434\u043e \u0441\u043e\u0432\u0441\u0435\u043c \u0442\u043e\u0447\u043d\u043e \u0438\u0445 \u043e\u0431\u043d\u043e\u0432\u043b\u044f\u0442\u044c, \u043f\u043e\u0442\u043e\u043c\u0443 \u0447\u0442\u043e \u0432\u0441\u0451 \u043e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u043e \u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u043e.\n\nGitLab CE CVE-2021-22205 in the wild\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild\n\n\u0427\u0435\u043a\u0430\u043b\u043a\u0438 \u0438 PoC'\u0438 (\u0422\u042b\u0421\u042f\u0427\u0418!11!! \u0438\u0445)\nhttps://github.com/Al1ex/CVE-2021-22205\nhttps://github.com/mr-r3bot/Gitlab-CVE-2021-22205\nhttps://github.com/r0eXpeR/CVE-2021-22205\nhttps://github.com/RedTeamWing/CVE-2021-22205\n\n\u0417\u0430 \u043d\u0430\u043f\u043e\u043c\u0438\u043d\u0430\u043d\u0438\u0435 \u0441\u043f\u0430\u0441\u0438\u0431\u043e @codediggers", "creation_timestamp": "2021-11-05T15:45:45.000000Z"}, {"uuid": "521a66df-768c-471e-a0d9-b2ecb1e3b380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/770", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01\n\n\u66f4\u65b0\u4e86\uff1aCVE-2021\n\u63cf\u8ff0\uff1aGitlab CE/EE RCE \u672a\u6388\u6743\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e POC && EXP CVE-2021-22205\nURL\uff1ahttps://github.com/antx-code/CVE-2021-22205", "creation_timestamp": "2021-10-29T09:24:27.000000Z"}, {"uuid": "1b868d31-940e-41ac-b6e1-63b1263a6033", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/bh_cat/23", "content": "\u042f \u043f\u0440\u0438\u043d\u044f\u043b \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u0434\u043e\u0431\u0430\u0432\u0438\u0442\u044c \u043d\u043e\u0432\u044b\u0439 \u0440\u0430\u0437\u0434\u0435\u043b \u043d\u0430 \u0441\u0432\u043e\u0435\u043c \u043a\u0430\u043d\u0430\u043b\u0435. \u0418\u0441\u0445\u043e\u0434\u044f \u0438\u0437 \u043c\u043e\u0435\u0433\u043e \u043e\u043f\u044b\u0442\u0430, \u044f \u0447\u0430\u0441\u0442\u043e \u0441\u0442\u0430\u043b\u043a\u0438\u0432\u0430\u044e\u0441\u044c \u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438 \u0432 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u0438, \u0438 \u0447\u0430\u0441\u0442\u043e \u043f\u0440\u0438\u0445\u043e\u0434\u0438\u0442\u0441\u044f \u0438\u0441\u043a\u0430\u0442\u044c \u0434\u043b\u044f \u043d\u0438\u0445 POC \u0438\u043b\u0438 \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u044f \u043c\u043e\u0434\u0443\u043b\u0435\u0439, \u0447\u0442\u043e\u0431\u044b \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0442\u044c \u043f\u043e\u0434 \u043d\u0438\u0445 \u044d\u043a\u0441\u043f\u043b\u043e\u0438\u0442\u044b.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0434\u043b\u044f \u0434\u0430\u043b\u044c\u043d\u0435\u0439\u0448\u0435\u0439 \u0440\u0430\u0431\u043e\u0442\u044b\n\n\u2694\ufe0f GitLab CE/EE Preauth RCE (CVE-2021-22205)\n\n\u0411\u044b\u043b\u0430 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0430 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0432 GitLab CE/EE, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0430\u044f \u0432\u0441\u0435 \u0432\u0435\u0440\u0441\u0438\u0438, \u043d\u0430\u0447\u0438\u043d\u0430\u044f \u0441 11.9. GitLab \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u043b \u0438\u0437\u043e\u0431\u0440\u0430\u0436\u0435\u043d\u0438\u044f, \u043f\u0435\u0440\u0435\u0434\u0430\u0432\u0430\u0435\u043c\u044b\u0435 \u0432 \u043f\u0430\u0440\u0441\u0435\u0440 \u0444\u0430\u0439\u043b\u043e\u0432, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u043b\u043e \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u0430\u043d\u0434.\n\n\u2757\ufe0fAffect Versions:\n>=11.9, <13.8.8\n>=13.9, <13.9.6\n>=13.10, <13.10.3\n\n\ud83c\udf10 Source:\nhttps://github.com/inspiringz/CVE-2021-22205\n\n#gitlab #poc", "creation_timestamp": "2023-09-14T05:57:06.000000Z"}, {"uuid": "ac86f402-f741-459e-87e5-b33af2bdc002", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "Telegram/93vLFpcg-bqXgHYEZG0ljPhGBREk82AG3wnQag2InyEdVg", "content": "", "creation_timestamp": "2021-10-29T18:52:32.000000Z"}, {"uuid": "86c85b52-b75f-43d0-bbc6-0ec475bec093", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://t.me/arpsyndicate/1465", "content": "#ExploitObserverAlert\n\nCVE-2021-22205\n\nDESCRIPTION: Exploit Observer has 106 entries related to CVE-2021-22205. An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.\n\nFIRST-EPSS: 0.972900000\nNVD-IS: 6.0\nNVD-ES: 3.9", "creation_timestamp": "2023-12-05T11:31:09.000000Z"}, {"uuid": "cf61ce71-1851-4ae6-aecd-114ac8ed3c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/eaglecyberwashere/50", "content": "https://github.com/inspiringz/CVE-2021-22205.git\nCVE-2021-4191: Gitlab Unauthenticated AddUser to Administrator", "creation_timestamp": "2022-12-07T05:53:04.000000Z"}, {"uuid": "293e0c3c-3653-4389-adc7-4b33c9c0c7d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/hacker_trick/375", "content": "#CVE-2021-22205 RCE\n\nhttps://github.com/c0okB/CVE-2021-22205", "creation_timestamp": "2021-11-01T15:05:32.000000Z"}, {"uuid": "b1dc7878-5e8c-4489-83b0-d467c055b0f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/hacker_trick/355", "content": "#CVE-2021-22205 Unauthorized RCE\nhttps://github.com/r0eXpeR/CVE-2021-22205\n\n#CVE-2021-22205& GitLab CE/EE RCE\nhttps://github.com/Al1ex/CVE-2021-22205", "creation_timestamp": "2021-10-29T07:57:34.000000Z"}, {"uuid": "c565c6be-2f0d-47b2-9a3d-dc477f76e6a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/hacker_trick/354", "content": "Pocsuite3 For #CVE-2021-22205\n\nhttps://github.com/RedTeamWing/CVE-2021-22205", "creation_timestamp": "2021-10-28T09:55:15.000000Z"}, {"uuid": "1c969e95-b5e4-445a-94c0-b55fc117e133", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/canyoupwnme/6759", "content": "GitLab CE CVE-2021-22205 in the wild\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild/", "creation_timestamp": "2021-10-29T01:48:01.000000Z"}, {"uuid": "5d170e9f-cb85-429e-904d-d308c83f7a20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "Telegram/oKZsZThJgpyAP79euNwjoNprJoXrtWwpypWHm-rouwqZfQ", "content": "", "creation_timestamp": "2021-11-01T18:07:47.000000Z"}, {"uuid": "d4248482-b5fb-475b-9743-ea378630e75a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "Telegram/xUIvYnIgkC2ndd3njCc7_o2__yPhPQAzlbTehvhGlo-kjw", "content": "", "creation_timestamp": "2021-11-16T02:31:22.000000Z"}, {"uuid": "ae962cd1-88e5-4ed7-9e59-c5efd40b1dbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/thehackernews/1628", "content": "WARNING: A critical unauthenticated remote code execution flaw (CVE-2021-22205) affecting #GitLab CE is being actively exploited in the wild.\n\nDetails: https://thehackernews.com/2021/11/alert-hackers-exploiting-gitlab.html", "creation_timestamp": "2021-11-02T11:06:01.000000Z"}, {"uuid": "d125b93a-f84b-4e88-9c51-f23ae95e3c98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/4701", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (Oct 1-31)\nCVE-2021-41773 - Apache 2.4.49 Path Traversal\nhttps://t.me/cybersecuritytechnologies/4454\nCVE-2021-26084 - Confluence Server Webwork OGNL Inj\nhttps://t.me/cybersecuritytechnologies/4202\nCVE-2021-42013 - Apache 2.4.50 Path Traversal\nhttps://t.me/cybersecuritytechnologies/4475\nCVE-2021-22205 - GitLab CE/EE RCE\nhttps://t.me/cybersecuritytechnologies/4602\nCVE-2021-40449 - UaF in the NtGdiResetDC function of the Win32k driver\nhttps://t.me/cybersecuritytechnologies/4535\nCVE-2021-40438 - SSRF in Apache2 mod_proxy\nhttps://t.me/cybersecuritytechnologies/4529\nCVE-2021-30858 - UaF in WebKit\nhttps://t.me/cybersecuritytechnologies/4545\nCVE-2021-30883 - iOS IOMFB vulnerability\nhttps://t.me/cybersecuritytechnologies/4497\nCVE-2021-30892 - Shrootless Vulnerability in MacOS\nhttps://t.me/cybersecuritytechnologies/4623\nCVE-2022-1337 - \"View Source\"\nhttps://mobile.twitter.com/megab0t_/status/1452848917205458945\nPoC: JavaScript:https://#%0aalert('xss')", "creation_timestamp": "2021-11-08T11:07:01.000000Z"}, {"uuid": "68cffde1-18ed-40e5-8a01-10a918df0d3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "exploited", "source": "https://t.me/CyberSecurityTechnologies/4602", "content": "#Threat_Research\n1. GitLab CE CVE-2021-22205 in the wild\nhttps://security.humanativaspa.it/gitlab-ce-cve-2021-22205-in-the-wild\n]-> PoC: https://github.com/CsEnox/Gitlab-Exiftool-RCE\n2. PHP-FPM (PHP's FastCGI server) Local Root Vulnerability (NGINX, Apache)\nhttps://www.ambionics.io/blog/php-fpm-local-root", "creation_timestamp": "2021-10-30T13:21:01.000000Z"}, {"uuid": "ff583eb5-fe61-4e02-9785-cae2a6f39456", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://t.me/bhhub/611", "content": "#BugBountyTips of the Day\n5 Chrome Extensions for Web Pentesters/ Bug Bounty Hunters \u2705\ud83d\udc47  1\ufe0f\u20e3 Wappalyzer 2\u20e3 Shodan 3\u20e3 Cookie Editor  4\ufe0f\u20e3 HackBar  5\ufe0f\u20e3 Foxy Proxy   #infosec #bugbounty @shifacyclewala\n---\nThanks @redbull and @intigriti  for this fantastic swag. #bugbounty #swag  https://t.co/yeKVJRE7is\n---\nNuclei Template for CVE-2021-22205 - GitLab CE/EE Unauthenticated RCE using ExifTool  Template:  https://t.co/ELvga2mXyI  #bugbounty #pentest #hackwithautomation #gitlab  https://t.co/P18kC8IJJI\n---\nPretty interesting writeup on bypassing ModSecurity WAF for SQLi.  \ud83c\udf1f\"When MySQL sees 1.e(abc), it will ignore the 1.e( portion because the following characters do not form a valid numeric value.\"\ud83c\udf1f   https://t.co/nOa5bBvQNC  #bugbountytips #bugbounty #infosec #cybersecurity  https://t.co/JGUeTsK4o3\n---\nGithub Recon Dorks for beginners(Part-1) -> PT_TOKEN language:bash -> extension:sql mysql dump password -> filename:wp-config.php ->  https://t.co/FJjKBqv6YH password -> filename:.netrc password -> filename:WebServers.xml -> filename:config.php dbpasswd #bugbountytips #githubdork\n---\nI bought a new laptop with my bounties. #bugbounty  https://t.co/481YdgsPm5\n---\npentesters and bug bounty hunters are forever students \ud83d\udcaf  @shifacyclewala #BugBounty #CyberSecurityMonth #infosec\n---\nYou can print them too :)  Collection link :  https://t.co/NRP2hCgLEN Do lemme know which one do you like most, in below Poll \ud83d\udc47\ud83d\udc47  In the spot :  - Burp Suite - Ref - XSS - IDOR - LFI - RFI - SSTI - H2C - HRS  #infosec #bugbounty #hackers #learn365  https://t.co/FRuyaaSEiF\n---\nWhile comparing between Tools that Get all URLs between Speed and No of URLs I found that  [+] gau is slower [+] gauplus is better than gau so use it [+] waybackurls is faster [+] hakrawler between all of them is speed and NO of URLs  #recon #BugBounty #Security  https://t.co/Hyw3ehwVcz", "creation_timestamp": "2021-10-28T13:37:04.000000Z"}, {"uuid": "2244944e-6f2f-43c8-bd37-b74e86b5d7d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "seen", "source": "https://t.me/CyberSecurityTechnologies/4889", "content": "#Analytics\nTop 10 Most Used Vulns of the Month (Nov 1-30)\nCVE-2021-22205 - GitLab CE/EE RCE\nhttps://t.me/cybersecuritytechnologies/4602\nCVE-2021-30883 - iOS IOMFB Vuln\nhttps://t.me/cybersecuritytechnologies/4497\nCVE-2021-3064 - Memory Corruption in PAN-OS GlobalProtect Portal/Gateway Interfaces\nhttps://t.me/cybersecuritytechnologies/4724\nCVE-2021-41379 - Windows Installer LPE\nhttps://t.me/cybersecuritytechnologies/4813\nCVE-2021-42321 - MS Exchange Post-Auth RCE\nhttps://t.me/cybersecuritytechnologies/4809\nCVE-2021-40539 - Zoho ManageEngine Auth. Bypass\nhttps://t.me/cybersecuritytechnologies/4718\nCVE-2021-41277 - MetaBase Arbitrary File Read\nhttps://t.me/cybersecuritytechnologies/4802\nCVE-2021-43267 - Remote Kernel Heap Overflow in TIPC\nhttps://t.me/cybersecuritytechnologies/4678\nCVE-2021-42574 - Unicode Bidirectional override vuln\nhttps://github.com/js-on/CVE-2021-42574\nhttps://github.com/pierDipi/unicode-control-characters-action\nCVE-2021-24084 - Windows MDM LPE\nhttps://t.me/cybersecuritytechnologies/4850", "creation_timestamp": "2021-12-03T11:00:35.000000Z"}, {"uuid": "50f4f5de-303f-4452-8d91-59e610bb4897", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-22205", "type": "published-proof-of-concept", "source": "https://t.me/club31337/719", "content": "https://github.com/Al1ex/CVE-2021-22205", "creation_timestamp": "2024-11-09T02:11:49.000000Z"}]}