{"vulnerability": "CVE-2022-26265", "sightings": [{"uuid": "28fe9181-f6de-49bc-8aab-d76e9c999dc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/34550", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aThe first proof of concept of the Contao CMS RCE\nURL\uff1ahttps://github.com/SystemVll/CVE-2022-26265\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-04-28T17:49:10.000000Z"}, {"uuid": "d67d9d65-dc19-4b9c-b489-2afb6c6e7aa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/1638", "content": "#exploit\n1. CVE-2022-26265:\nContao CMS v.1.5.0 - RCE\nhttps://github.com/Inplex-sys/CVE-2022-26265\n\n2. CVE-2022-25765:\npdfkit URL Command Injection\nhttps://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795\n]-> A Shell exploit: https://github.com/Atsukoro1/PDFKitExploit", "creation_timestamp": "2022-12-06T04:04:20.000000Z"}, {"uuid": "96c8717d-4d7f-4768-a286-b9b239e1814d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/simosaper/748", "content": "#exploit\n1. CVE-2022-26265:\nContao CMS v.1.5.0 - RCE\nhttps://github.com/Inplex-sys/CVE-2022-26265\n\n2. CVE-2022-25765:\npdfkit URL Command Injection\nhttps://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795\n]-> A Shell exploit: https://github.com/Atsukoro1/PDFKitExploit", "creation_timestamp": "2022-12-06T06:38:55.000000Z"}, {"uuid": "0bc4271c-7987-4d79-8386-49ba605f1d17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "seen", "source": "https://t.me/cibsecurity/39283", "content": "\u203c CVE-2022-26265 \u203c\n\nContao Managed Edition v1.5.0 was discovered to contain a remote command execution (RCE) vulnerability via the component php_cli parameter.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-03-19T01:23:14.000000Z"}, {"uuid": "2dc95671-e214-4a99-9497-089b644118fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-26265", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7308", "content": "#exploit\n1. CVE-2022-26265:\nContao CMS v.1.5.0 - RCE\nhttps://github.com/Inplex-sys/CVE-2022-26265\n\n2. CVE-2022-25765:\npdfkit URL Command Injection\nhttps://security.snyk.io/vuln/SNYK-RUBY-PDFKIT-2869795\n]-> A Shell exploit: https://github.com/Atsukoro1/PDFKitExploit", "creation_timestamp": "2022-12-06T11:01:01.000000Z"}]}