{"vulnerability": "CVE-2025-0520", "sightings": [{"uuid": "871d80a5-e3b9-40bd-8af1-89c7c852c364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "https://t.me/true_secator/8112", "content": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0432\u00a0ShowDoc \u0434\u043b\u044f \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0430\u043c\u0438 \u0438 \u0441\u043e\u0432\u043c\u0435\u0441\u0442\u043d\u043e\u0439 \u0440\u0430\u0431\u043e\u0442\u044b, \u0442\u0435\u043f\u0435\u0440\u044c \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435\u043c.\n\n\u0420\u0435\u0447\u044c \u0438\u0434\u0451\u0442 \u043e CVE-2025-0520 (CNVD-2020-26585) \u0441 \u043e\u0446\u0435\u043d\u043a\u043e\u0439 CVSS 9,4 \u0438\u0437 10,0.\n\n\u041f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439 \u0444\u0430\u0439\u043b\u043e\u0432, \u043e\u0431\u0443\u0441\u043b\u043e\u0432\u043b\u0435\u043d\u043d\u043e\u0439 \u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0440\u0430\u0441\u0448\u0438\u0440\u0435\u043d\u0438\u044f \u0444\u0430\u0439\u043b\u0430, \u0447\u0442\u043e \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 PHP-\u0444\u0430\u0439\u043b\u044b \u0438 \u043e\u0441\u0443\u0449\u0435\u0441\u0442\u0432\u043b\u044f\u0442\u044c \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u0434\u0430.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Vulhub, \u0432\u043e \u0432\u0441\u0435\u0445 \u0432\u0435\u0440\u0441\u0438\u044f\u0445 ShowDoc \u0434\u043e 2.8.7 \u0444\u0438\u043a\u0441\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u0430 \u0441 \u043d\u0435\u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u043e\u0439 \u0438 \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u043e\u0439 \u0444\u0430\u0439\u043b\u043e\u0432, \u0432 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u0435 \u0447\u0435\u0433\u043e \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u0438\u0442\u044c \u0432\u0435\u0431-\u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0443 \u0438 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0439 \u043a\u043e\u0434 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435.\n\n\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0431\u044b\u043b\u0430 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430 \u0432 ShowDoc 2.8.7, \u0432\u044b\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0439 \u0432 \u043e\u043a\u0442\u044f\u0431\u0440\u0435 2020 \u0433\u043e\u0434\u0430. \u0422\u0435\u043a\u0443\u0449\u0430\u044f \u0432\u0435\u0440\u0441\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f - 3.8.1.\n\n\u0421\u043e\u0433\u043b\u0430\u0441\u043d\u043e\u00a0\u043d\u043e\u0432\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c VulnCheck, CVE-2025-0520 \u0432\u043f\u0435\u0440\u0432\u044b\u0435 \u0431\u044b\u043b\u0430 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0430 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c\u0438 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a\u0430\u0445 \u0434\u043b\u044f \u0437\u0430\u043f\u0443\u0441\u043a\u0430 \u0432\u0435\u0431-\u043e\u0431\u043e\u043b\u043e\u0447\u043a\u0438. \u0412 \u0441\u0435\u0442\u0438 \u043f\u043e\u0434 \u043f\u0440\u0438\u0446\u0435\u043b\u043e\u043c \u043c\u043e\u0436\u0435\u0442 \u043d\u0430\u0445\u043e\u0434\u0438\u0442\u044c\u0441\u044f \u0431\u043e\u043b\u0435\u0435 2000 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 ShowDoc.\n\n\u0422\u0430\u043a\u0438\u043c \u043e\u0431\u0440\u0430\u0437\u043e\u043c, \u043c\u043e\u0436\u043d\u043e \u0440\u0430\u0441\u0441\u043c\u0430\u0442\u0440\u0438\u0432\u0430\u0442\u044c CVE-2025-0520 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043d\u0430\u0433\u043b\u044f\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u0438\u043c\u0435\u0440\u0430 \u0432\u0441\u0435 \u0431\u043e\u043b\u0435\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0433\u043e \u0437\u0430\u0434\u0435\u0439\u0441\u0442\u0432\u043e\u0432\u0430\u043d\u0438\u044f \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435\u043c N-day \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439.\n\n\u041f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u044f\u043c ShowDoc \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0443 \u0434\u043e \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0439 \u0432\u0435\u0440\u0441\u0438\u0438 \u0434\u043b\u044f \u043e\u043f\u0442\u0438\u043c\u0430\u043b\u044c\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b.", "creation_timestamp": "2026-04-16T18:40:07.000000Z"}, {"uuid": "75c66c5a-0728-42e8-9add-d305bd84a99e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mja7lohv7p2h", "content": "", "creation_timestamp": "2026-04-11T16:03:19.102002Z"}, {"uuid": "ee9c423d-90a0-4b6a-a05b-c8167e9c46de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mjaqdoqwko23", "content": "", "creation_timestamp": "2026-04-11T21:03:05.637360Z"}, {"uuid": "aaa54cef-517d-4362-9108-7d0331bdd162", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/ninjaowl.ai/post/3mjgpmr5in42l", "content": "", "creation_timestamp": "2026-04-14T06:06:13.706008Z"}, {"uuid": "bae5596f-01b6-4eee-beaa-0b8f72bd67b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/infosecbriefly.bsky.social/post/3mjgpynlvy62t", "content": "", "creation_timestamp": "2026-04-14T06:12:53.083376Z"}, {"uuid": "b6e7f1c4-338b-4526-a5d1-0b9d8e845df2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mjgqgzd5c42d", "content": "", "creation_timestamp": "2026-04-14T06:20:54.741180Z"}, {"uuid": "58a053e5-997e-4040-b4aa-a96d2cacff53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mjgqvdy6k62p", "content": "", "creation_timestamp": "2026-04-14T06:28:55.903735Z"}, {"uuid": "4d3c14e1-2889-4dc2-b966-6defb346706d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/hendryadrian.bsky.social/post/3mjgsnlak4d2j", "content": "", "creation_timestamp": "2026-04-14T07:00:23.136186Z"}, {"uuid": "dc55dc3b-ad2e-4fa7-80a9-324a8d97a9fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://thehackernews.com/2026/04/showdoc-rce-flaw-cve-2025-0520-actively.html", "content": "", "creation_timestamp": "2026-04-14T03:50:00.000000Z"}, {"uuid": "871ae5bb-bc5c-445d-9b54-ea623de45257", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/cybersecurity0001.bsky.social/post/3mjgt5kqayw2m", "content": "", "creation_timestamp": "2026-04-14T07:09:19.070396Z"}, {"uuid": "d76af2fd-9514-408f-b1e2-18ac622c62e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mjh5ejlrv42c", "content": "", "creation_timestamp": "2026-04-14T10:12:09.337690Z"}, {"uuid": "6b3502e1-5430-4e8c-8f6a-a28be65fb310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mjhf7llf54e2", "content": "", "creation_timestamp": "2026-04-14T12:32:38.623010Z"}, {"uuid": "819790f0-e430-441d-ba19-630c9b8f11d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3mjhfe5bnee2v", "content": "", "creation_timestamp": "2026-04-14T12:35:07.166471Z"}, {"uuid": "b8f1e630-0d02-4cb5-b9f5-bd8f0a6a5baf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/techsentiments.com/post/3mjhfj2o2r724", "content": "", "creation_timestamp": "2026-04-14T12:37:51.365150Z"}, {"uuid": "ffefb7cb-906a-4a38-8b29-bb013fba4643", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnyhw2jtrf2h", "content": "", "creation_timestamp": "2025-04-29T23:50:45.472377Z"}, {"uuid": "95124e83-3d21-4ea0-8f44-a4a8dae99b82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mjl3mzgqr62s", "content": "", "creation_timestamp": "2026-04-15T23:51:46.719818Z"}, {"uuid": "a6c7c582-2dbd-4e4a-a65a-23e10844d44a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/cwealthsentinel.bsky.social/post/3mjjuaveecf24", "content": "", "creation_timestamp": "2026-04-15T12:07:03.774212Z"}, {"uuid": "feff74da-aa4a-48c9-9fa6-893f1bc534c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mjikxenmbl2b", "content": "", "creation_timestamp": "2026-04-14T23:48:00.355686Z"}, {"uuid": "894f5e06-8d61-49b2-bda0-0a1a2e090d91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/kitafox.bsky.social/post/3mjil2pxnwd2b", "content": "", "creation_timestamp": "2026-04-14T23:49:52.602490Z"}, {"uuid": "5def88ff-ec0a-4093-a2f4-ada79ab84a48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mjiu4mxcjc2q", "content": "", "creation_timestamp": "2026-04-15T02:32:00.599030Z"}, {"uuid": "aad116aa-3711-415a-9cc8-6378ef2d1e8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mjiy7uhy3k2q", "content": "", "creation_timestamp": "2026-04-15T03:45:23.801805Z"}, {"uuid": "9e67a6d8-37a8-483f-9f82-9c6e7b6b58c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-0520", "type": "seen", "source": "https://infosec.exchange/users/patrickcmiller/statuses/116407475944405057", "content": "", "creation_timestamp": "2026-04-15T07:12:01.384621Z"}, {"uuid": "7b03f2be-48e7-4275-9f41-a00c86726954", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/patrickcmiller.bsky.social/post/3mjjfgyybzj2v", "content": "", "creation_timestamp": "2026-04-15T07:42:05.923215Z"}, {"uuid": "6c64d076-0fd7-4bec-bf58-d7e371cca021", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-0520", "type": "seen", "source": "https://infosec.exchange/users/patrickcmiller/statuses/116412784367923222", "content": "", "creation_timestamp": "2026-04-16T05:42:01.562721Z"}, {"uuid": "859d7f99-a723-49fd-8ff8-0bf4cd33ed2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "https://t.me/thehackernews/8793", "content": "\ud83d\udea8 A ShowDoc flaw (CVSS 9.4) is now under active exploitation.\n\nCVE-2025-0520 lets attackers upload web shells via unauthenticated file upload \u2192 full server control. First attacks seen via a U.S. honeypot; ~2,000 instances remain exposed, mostly in China.\n\n\ud83d\udd17 Details \u2192 https://thehackernews.com/2026/04/showdoc-rce-flaw-cve-2025-0520-actively.html", "creation_timestamp": "2026-04-14T06:18:36.000000Z"}, {"uuid": "67c732d3-0730-436a-891e-47691dc9f4c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/patrickcmiller.bsky.social/post/3mjmvr6kp5k2d", "content": "", "creation_timestamp": "2026-04-16T17:12:06.796004Z"}, {"uuid": "8075e340-bf18-4ad1-ad7a-705845e8075b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mjsvtyenpn2x", "content": "", "creation_timestamp": "2026-04-19T02:29:35.564063Z"}, {"uuid": "be684932-f4e5-4700-9c47-7f015fd16999", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "https://t.me/ctinow/248730", "content": "Attackers target unpatched ShowDoc servers via CVE-2025-0520\nhttps://ift.tt/2lSq3NW", "creation_timestamp": "2026-04-14T09:59:36.000000Z"}, {"uuid": "e6fc456a-6e89-4353-b560-5589fefe832b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "Telegram/0Pfw-V_CPPKPcXzRUSXBCsxXTLIiF67eKNofG27Ayc871Gk5", "content": "", "creation_timestamp": "2026-04-14T10:10:05.000000Z"}, {"uuid": "2ec618ff-6674-4a4d-974e-fb91b932ff64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/9694", "content": "ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers \u2013 thehackernews.com\n\nTue, 14 Apr 2026 13:50:00", "creation_timestamp": "2026-04-14T08:03:53.000000Z"}, {"uuid": "f7d494a6-f506-4749-bea5-15c472989e15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/39596", "content": "ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers \u2013 thehackernews.com\n\nTue, 14 Apr 2026 13:50:00", "creation_timestamp": "2026-04-14T08:03:53.000000Z"}, {"uuid": "176209c2-d14f-4697-89c1-fd59ff337237", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3mjuujpkni22d", "content": "", "creation_timestamp": "2026-04-19T21:11:16.789770Z"}, {"uuid": "8ed7cdbf-fe53-4401-b82d-c82be2e91196", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "https://t.me/ctinow/248724", "content": "ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers\nhttps://ift.tt/MIUWctp", "creation_timestamp": "2026-04-14T06:04:36.000000Z"}, {"uuid": "fefc9bd5-82c3-472f-9f06-181860f25cc0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "exploited", "source": "Telegram/7ABa_p0fT08CbnPfOL1dxOupUD_4oilaNZ-m5GgtIRrGfw", "content": "", "creation_timestamp": "2026-04-14T13:06:31.000000Z"}, {"uuid": "2317d295-ca55-40c2-a212-b3803e992d53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13918", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0520\n\ud83d\udd25 CVSS Score: 9.4 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:H/SI:H/SA:L)\n\ud83d\udd39 Description: An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7.\n\ud83d\udccf Published: 2025-04-29T19:35:37.829Z\n\ud83d\udccf Modified: 2025-04-29T19:49:30.316Z\n\ud83d\udd17 References:\n1. https://github.com/vulhub/vulhub/tree/master/showdoc/CNVD-2020-26585\n2. https://github.com/star7th/showdoc/pull/1059\n3. https://www.cnvd.org.cn/flaw/show/CNVD-2020-26585", "creation_timestamp": "2025-04-29T20:12:44.000000Z"}, {"uuid": "6c449e22-f1b9-4c00-b376-ae743a217d8b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0520", "type": "seen", "source": "https://t.me/cvedetector/24050", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-0520 - ShowDoc Unrestricted File Upload RCE\", \n  \"Content\": \"CVE ID : CVE-2025-0520 \nPublished : April 29, 2025, 8:15 p.m. | 48\u00a0minutes ago \nDescription : An unrestricted file upload vulnerability in ShowDoc caused by improper validation of file extension allows execution of arbitrary PHP, leading to remote code execution.This issue affects ShowDoc: before 2.8.7. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"29 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-29T23:31:43.000000Z"}]}