{"uuid": "60421f12-1a22-47de-86d3-28f63ee2d83e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-14774", "type": "seen", "source": "https://t.me/DstatLogs/14551", "content": " \ud83d\udc51 CF-Business-1 \ud83d\udc51\n\n\ud83e\udd84 Total Count:\n\n All Request\n \u27a5 1,327,940\n\n Request Successful\n \u27a5 1  (0.00%)\n\n Request Blocked\n \u27a5 1,327,939  (100.00%)\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\udd2b Allowed Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 HTTP Protocol: HTTP/2\n \u27a5 HTTP ResponseStatus: 404\n \u27a5 Count: 1\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 1\n \u27a5 Percentage: 0.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\ude81 Bypassed Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 0\n \u27a5 Percentage: 0.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\udee1 Blocked Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 423,281\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests trying to impersonate browsers (pattern #6).\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 278,915\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: Drupal - Anomaly:Header:X-Forwarded-For - CVE:CVE-2018-14774\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 598,627\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: Requests coming from known bad sources.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 27,116\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: b910aec795a44492b783da68301de41f\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n \u27a5 Count: 1,327,939\n \u27a5 Percentage: 100.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\n\n\ud83d\ude97 Data from user:  Du\u1ea9n \u0110inh \u2812\u032b\u20dd\ud83e\udeb2 \ud83d\ude97", "creation_timestamp": "2025-09-16T18:09:16.000000Z"}