<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://vulnerability.circl.lu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sat, 18 Jul 2026 10:00:46 +0000</lastBuildDate>
    <item>
      <title>eea73139-ecc5-49f4-bf4d-7d4843bd4db4</title>
      <link>https://vulnerability.circl.lu/sighting/eea73139-ecc5-49f4-bf4d-7d4843bd4db4/export</link>
      <description>{"uuid": "eea73139-ecc5-49f4-bf4d-7d4843bd4db4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-07-16)", "content": "", "creation_timestamp": "2026-07-17T10:00:09.137465Z"}</description>
      <content:encoded>{"uuid": "eea73139-ecc5-49f4-bf4d-7d4843bd4db4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-07-16)", "content": "", "creation_timestamp": "2026-07-17T10:00:09.137465Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/eea73139-ecc5-49f4-bf4d-7d4843bd4db4/export</guid>
      <pubDate>Fri, 17 Jul 2026 10:00:09 +0000</pubDate>
    </item>
    <item>
      <title>0013becd-d43a-43fd-9567-ea5eb9d45308</title>
      <link>https://vulnerability.circl.lu/sighting/0013becd-d43a-43fd-9567-ea5eb9d45308/export</link>
      <description>{"uuid": "0013becd-d43a-43fd-9567-ea5eb9d45308", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "exploited", "source": "https://t.me/HackerNewsAR/2150", "content": "\u064a\u0639\u062b\u0631 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0639\u0644\u0649 \u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u062a\u0623\u062b\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0639\u062f\u0629 \u0623\u0633\u0627\u0644\u064a\u0628 \u0648\u0623\u062f\u0648\u0627\u062a \u062a\u0639\u062a\u0645\u062f \u0639\u0644\u0649 \u0627\u0644\u0645\u0633\u062d \u0627\u0644\u0634\u0628\u0643\u064a \u0648\u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a\u060c \u0648\u0623\u0647\u0645\u0647\u0627:\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u062d\u0631\u0643\u0627\u062a \u0627\u0644\u0628\u062d\u062b \u0627\u0644\u0645\u062e\u0635\u0635\u0629 \u0644\u0644\u0623\u062c\u0647\u0632\u0629 \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a (\u0645\u062b\u0644 Shodan, Censys):\n\n\u064a\u0628\u062d\u062b \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0643\u0644\u0645\u0627\u062a \u0645\u0641\u062a\u0627\u062d\u064a\u0629 (dorks) \u0623\u0648 \u062a\u0648\u0642\u064a\u0639\u0627\u062a \u0645\u0639\u064a\u0646\u0629 \u062a\u0643\u0634\u0641 \u0639\u0646 \u0648\u062c\u0648\u062f \u0648\u0627\u062c\u0647\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629 \u0639\u0644\u0649 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a\u060c \u0645\u062b\u0644 \u0627\u0644\u0628\u062d\u062b \u0639\u0646 \u0639\u0646\u0648\u0627\u0646 \u0635\u0641\u062d\u0629 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0623\u0648 \u0644\u0627\u0641\u062a\u0627\u062a http \u062a\u0634\u064a\u0631 \u0625\u0644\u0649 NetWeaver Application Server.\n\n\u0623\u0645\u062b\u0644\u0629 \u0644\u0639\u0645\u0644\u064a\u0627\u062a \u0627\u0644\u0628\u062d\u062b:\n\nhttp.title:\"SAP NetWeaver Application Server\"\n\n\u0627\u0644\u0628\u062d\u062b \u0636\u0645\u0646 \u0646\u0637\u0627\u0642\u0627\u062a \u0627\u0644\u0634\u0631\u0643\u0627\u062a \u0627\u0644\u0643\u0628\u0631\u0649 \u0623\u0648 \u0639\u0646\u0627\u0648\u064a\u0646 \u0627\u0644\u0645\u0624\u0633\u0633\u0627\u062a \u0627\u0644\u062d\u0643\u0648\u0645\u064a\u0629.\n\n\u0641\u062d\u0635 \u0627\u0644\u0628\u0648\u0631\u062a\u0627\u062a \u0627\u0644\u0634\u0627\u0626\u0639\u0629 \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0640 SAP:\n\n\u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u063a\u0627\u0644\u0628\u064b\u0627 \u0645\u0627 \u062a\u0643\u0648\u0646 \u0645\u062a\u0627\u062d\u0629 \u0639\u0644\u0649 \u0645\u0646\u0627\u0641\u0630 \u0645\u062d\u062f\u062f\u0629 \u0645\u062b\u0644 50000\u060c 50013\u060c 8000\u060c 8080 \u0648\u063a\u064a\u0631\u0647\u0627.\n\n\u064a\u0645\u0643\u0646 \u0644\u0644\u0623\u062f\u0648\u0627\u062a \u0645\u062b\u0644 nmap \u0625\u062c\u0631\u0627\u0621 \u0645\u0633\u062d \u0644\u0647\u0630\u0647 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0639\u062b\u0648\u0631 \u0639\u0644\u0649 \u0627\u0644\u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629.\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0643\u0634\u0641 \u0646\u0642\u0627\u0637 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0648\u0636\u0639\u0641 \u0627\u0644\u062d\u0645\u0627\u064a\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062d (scanner) \u0645\u062b\u0644 Onapsis\u060c \u0623\u0648 \u062d\u062a\u0649 \u0623\u062f\u0648\u0627\u062a \u0645\u0641\u062a\u0648\u062d\u0629 \u0627\u0644\u0645\u0635\u062f\u0631 \u0645\u062b\u0644 Metasploit modules\u060c \u062a\u0633\u062c\u0644 \u0646\u0642\u0637\u0629 \u0646\u0647\u0627\u064a\u0629 metadatauploader \u0623\u0648 \u0635\u0641\u062d\u0629 Visual Composer \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629.\n\n\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0623\u062f\u0644\u0629 \u0645\u0646 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0623\u0648 \u0631\u0624\u0648\u0633 HTTP:\n\n\u0623\u062d\u064a\u0627\u0646\u064b\u0627 \u062a\u0643\u0634\u0641 \u0631\u0624\u0648\u0633 (Headers) http \u0623\u0648 \u062d\u062a\u0649 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0627\u0644\u0631\u0642\u0645\u064a\u0629 \u0639\u0646 \u0625\u0635\u062f\u0627\u0631 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648\u0647\u0648\u064a\u062a\u0647.\n\n\u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0627\u0644\u0645\u0633\u0631\u0628\u0629 \u0623\u0648 \u0641\u0647\u0627\u0631\u0633 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a:\n\n\u0642\u062f \u062a\u0648\u0641\u0631 \u0628\u0639\u0636 \u0627\u0644\u0641\u0647\u0627\u0631\u0633 \u0623\u0648 \u062a\u0633\u0631\u064a\u0628\u0627\u062a \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0639\u0646\u0627\u0648\u064a\u0646 \u0623\u0646\u0638\u0645\u0629 SAP \u0645\u0643\u0634\u0648\u0641\u0629 \u0623\u0648 \u0643\u0644\u0645\u0627\u062a \u0633\u0631 \u0636\u0639\u064a\u0641\u0629 \u0623\u0648 \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629.\n\n\u0634\u0631\u062d \u0627\u0644\u062b\u063a\u0631\u0629 \u0628\u0627\u0644\u062a\u0641\u0635\u064a\u0644\n\u0627\u0644\u0645\u0643\u0648\u0646 \u0627\u0644\u0645\u062a\u0623\u062b\u0631: SAP NetWeaver Application Server Java\u060c \u0648\u062d\u062f\u0629 Visual Composer.\n\n\u0637\u0631\u064a\u0642\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u062a\u0643\u0645\u0646 \u0641\u064a \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u062a\u0641\u0648\u064a\u0636 (Missing Authorization Check) \u0639\u0646\u062f \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 /developmentserver/metadatauploader\u060c \u062d\u064a\u062b \u064a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0645\u0644\u0641\u0627\u062a \u062e\u0628\u064a\u062b\u0629 (\u0645\u062b\u0644 Web Shell \u0623\u0648 \u062a\u0637\u0628\u064a\u0642\u0627\u062a JAR \u0623\u0648 ZIP).\n\n\u064a\u0642\u0648\u0645 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0645\u062b\u0644 CVE-2025-31324 \u0639\u0627\u062f\u0629 \u0639\u0628\u0631 \u0623\u062f\u0648\u0627\u062a \u0645\u062a\u062e\u0635\u0635\u0629 \u062a\u062a\u064a\u062d \u0644\u0647 \u0635\u064a\u0627\u063a\u0629 \u0648\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0628\u0634\u0643\u0644 \u064a\u062f\u0648\u064a \u0623\u0648 \u062a\u0644\u0642\u0627\u0626\u064a\u060c \u0648\u0623\u0634\u0647\u0631 \u0627\u0644\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0639\u0645\u0644\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0647\u062c\u0648\u0645 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST\ncurl\n\n\u0623\u062f\u0627\u0629 \u064a\u0646\u062a\u062c\u0647\u0627 \u0646\u0638\u0627\u0645 \u0644\u064a\u0646\u0643\u0633 (\u0648\u0645\u062a\u0648\u0641\u0631\u0629 \u0644\u0643\u0644 \u0627\u0644\u0623\u0646\u0638\u0645\u0629)\u060c \u062a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP/HTTPS \u062d\u0633\u0628 \u0627\u0644\u0631\u063a\u0628\u0629.\n\n\u0645\u062b\u0627\u0644 \u0627\u0633\u062a\u062e\u062f\u0627\u0645:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u064a\u0645\u0643\u0646 \u0628\u0647\u0627 \u062a\u062d\u062f\u064a\u062f \u0646\u0648\u0639 \u0627\u0644\u0645\u062d\u062a\u0648\u0649\u060c \u0645\u0644\u0641 \u0627\u0644\u0625\u0631\u0633\u0627\u0644\u060c \u0625\u0639\u062f\u0627\u062f \u0631\u0624\u0648\u0633 \u0627\u0644\u0637\u0644\u0628 \u0648\u0643\u0644 \u0627\u0644\u062a\u0641\u0627\u0635\u064a\u0644 \u0627\u0644\u0645\u0637\u0644\u0648\u0628\u0629.\n\nBurp Suite\n\n\u0623\u062f\u0627\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u062e\u062a\u0631\u0627\u0642 \u0645\u062a\u0642\u062f\u0645\u0629\u060c \u062a\u062a\u064a\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0623\u0648 \u0645\u062e\u062a\u0628\u0631 \u0627\u0644\u0623\u0645\u0646 \u0625\u062c\u0631\u0627\u0621 \u0648\u0641\u062d\u0635 \u0648\u062a\u0639\u062f\u064a\u0644 \u0623\u064a \u0637\u0644\u0628 HTTP (GET/POST).\n\n\u064a\u0645\u0643\u0646 \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u0637\u0644\u0628\u0627\u062a \u0645\u0628\u0627\u0634\u0631\u0629 \u0639\u0628\u0631 \u0648\u0627\u062c\u0647\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0627\u0644\u062a\u0643\u0631\u0627\u0631 (Repeater/Intruder) \u0644\u0625\u0631\u0633\u0627\u0644 \u0639\u062f\u0629 \u0637\u0644\u0628\u0627\u062a \u0645\u062e\u062a\u0644\u0641\u0629 \u0648\u0645\u0644\u0627\u062d\u0638\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629.\n\nPostman\n\n\u062a\u0637\u0628\u064a\u0642 \u0645\u062a\u0643\u0627\u0645\u0644 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0648\u062a\u0637\u0648\u064a\u0631 \u0648\u0627\u062c\u0647\u0627\u062a API. \u064a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0645\u0644\u0641\u0627\u062a\u060c \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u062d\u0642\u0648\u0644 \u0648\u0627\u0644\u0631\u0624\u0648\u0633\u060c \u0648\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0627\u062a.\n\n\u064a\u0633\u062a\u062e\u062f\u0645 \u063a\u0627\u0644\u0628\u064b\u0627 \u0641\u064a \u0627\u0644\u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u064a\u062f\u0648\u064a \u0644\u0631\u0624\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0648\u062a\u0643\u0631\u0627\u0631 \u0627\u0644\u0637\u0644\u0628\u0627\u062a.\n\n\u0623\u062f\u0648\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0623\u0648 \u0633\u0643\u0631\u0628\u062a\u0627\u062a \u0628\u0644\u063a\u0629 Python/JavaScript\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0645\u062a\u0642\u062f\u0645 \u0642\u062f \u064a\u0643\u062a\u0628 \u0633\u0643\u0631\u0628\u062a \u0645\u062e\u0635\u0635 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u0643\u062a\u0628\u0627\u062a \u0645\u062b\u0644 requests (Python) \u0623\u0648 axios (JavaScript) \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u062d\u0633\u0628 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u062b\u0627\u0644 \u0639\u0645\u0644\u064a \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 curl:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u0647\u0643\u0630\u0627 \u064a\u0631\u0633\u0644 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0644\u0641 \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0641\u064a SAP NetWeaver\u060c \u0648\u064a\u0641\u062d\u0635 \u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0627\u0644\u062e\u0627\u062f\u0645 \u0644\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0646\u062c\u0627\u062d \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u0627 \u064a\u062d\u062f\u062b \u0639\u0646\u062f \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0646\u0638\u0627\u0645 \u064a\u0642\u0628\u0644 \u062a\u062d\u0645\u064a\u0644 \u0627\u0644\u0645\u0644\u0641 \u062f\u0648\u0646 \u0623\u0646 \u064a\u062a\u062d\u0642\u0642 \u0645\u0646 \u0635\u0644\u0627\u062d\u064a\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u064a\u0641\u062d\u0635 \u0627\u0644\u0645\u0644\u0641 \u0628\u0634\u0643\u0644 \u0622\u0645\u0646\u060c \u0645\u0627 \u064a\u0624\u062f\u064a \u0625\u0644\u0649 \u0625\u0645\u0643\u0627\u0646\u064a\u0629 \u062a\u0646\u0641\u064a\u0630 \u0643\u0648\u062f \u0628\u0631\u0645\u062c\u064a \u0636\u0627\u0631 \u0648\u062a\u062d\u0643\u0645 \u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u062e\u0627\u062f\u0645 (RCE) \u0639\u0646 \u0628\u064f\u0639\u062f.\n\n\u062f\u0631\u062c\u0629 \u0627\u0644\u062e\u0637\u0648\u0631\u0629: CVSS 10/10 (\u062d\u0631\u062c \u062c\u062f\u064b\u0627)\u060c \u062d\u064a\u062b \u064a\u0645\u0643\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0648\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u062d\u0633\u0627\u0633\u0629\u060c \u0623\u0648 \u062a\u0639\u0637\u064a\u0644 \u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0623\u0639\u0645\u0627\u0644 \u0627\u0644\u062d\u0631\u062c\u0629.\n\n\u062a\u0623\u062b\u064a\u0631 \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0623\u0647\u062f\u0627\u0641 \u0627\u0644\u0647\u062c\u0648\u0645\n\u0627\u0646\u062a\u0634\u0627\u0631 \u0648\u0627\u0633\u0639: \u0647\u0646\u0627\u0643 \u0623\u0643\u062b\u0631 \u0645\u0646 1200 \u0646\u0638\u0627\u0645 SAP NetWeaver \u0645\u0643\u0634\u0648\u0641 \u0644\u0644\u0625\u0646\u062a\u0631\u0646\u062a \u062d\u0648\u0644 \u0627\u0644\u0639\u0627\u0644\u0645 \u0645\u0639\u0631\u0636 \u0644\u0644\u062e\u0637\u0631.\n\n\u0623\u0645\u062b\u0644\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644:\n\n\u062a\u062d\u0645\u064a\u0644 Web Shell \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0627\u0644\u0645\u062c\u0644\u062f j2ee/cluster/apps/sap.com/irj/servlet_jsp/irj/root/ \u0648\u0645\u0646 \u062b\u0645 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u064a\u0647 \u0648\u062a\u0646\u0641\u064a\u0630 \u0623\u0648\u0627\u0645\u0631 \u0639\u0628\u0631 GET.\n\n\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0639\u0645\u0644\u0627\u0621 \u0627\u0644\u062d\u0633\u0627\u0633\u0629 \u0623\u0648 \u0627\u0644\u0645\u0627\u0644\u064a\u0629\u060c \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u0623\u0646\u0634\u0637\u0629 \u0627\u0644\u062a\u062c\u0627\u0631\u064a\u0629\u060c \u0627\u0644\u062d\u0631\u0643\u0629 \u0627\u0644\u062c\u0627\u0646\u0628\u064a\u0629 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629 \u0648\u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u0646\u0638\u0645\u0629 \u0623\u062e\u0631\u0649.\n\n\u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644\u064a\u0629:\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062d\u0636\u0651\u0631 \u0645\u0644\u0641\u064b\u0627 \u062e\u0628\u064a\u062b\u064b\u0627 (\u0645\u062b\u0644\u0627\u064b: Web Shell\u060c \u0645\u0644\u0641 JAR \u0623\u0648 ZIP \u0645\u062f\u0645\u062c \u0628\u0643\u0648\u062f \u0636\u0627\u0631).\n\n\u064a\u0631\u0633\u0644 \u0647\u0630\u0627 \u0627\u0644\u0645\u0644\u0641 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0637\u0644\u0628 HTTP POST \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0645\u062b\u0644:\n\n/irj/servlet/prt/portal/prtroot/com.sap.visualcomposer.dev.server.metadatauploader\n\n\u062e\u0627\u062f\u0645 SAP NetWeaver\u060c \u0628\u0633\u0628\u0628 \u062e\u0637\u0623 \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642\u060c \u064a\u0642\u0628\u0644 \u0627\u0644\u0645\u0644\u0641 \u0648\u064a\u0642\u0648\u0645 \u0628\u062a\u062e\u0632\u064a\u0646\u0647 \u0648\u062a\u0634\u063a\u064a\u0644\u0647 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0646\u0638\u0627\u0645\u0647.\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062a\u0628\u0639 \u0630\u0644\u0643 \u0628\u0637\u0644\u0628 HTTP GET \u0625\u0644\u0649 \u0645\u0644\u0641 \u0627\u0644\u0640 Web Shell (\u0623\u0648 \u064a\u0646\u0641\u0630 \u0645\u0644\u0641 \u062c\u0627\u0641\u0627 \u0623\u0648 \u0623\u0643\u0648\u0627\u062f \u0623\u062e\u0631\u0649)\u060c \u0644\u064a\u0628\u062f\u0623 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645.\n\n\u064a\u0645\u0643\u0646 \u0627\u0644\u0622\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u062a\u0646\u0641\u064a\u0630 \u0623\u064a \u062a\u0639\u0644\u064a\u0645\u0627\u062a\u060c \u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a\u060c \u0623\u0648 \u0627\u0644\u062a\u062d\u0631\u0643 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629.", "creation_timestamp": "2026-07-16T00:00:19.949625Z"}</description>
      <content:encoded>{"uuid": "0013becd-d43a-43fd-9567-ea5eb9d45308", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "exploited", "source": "https://t.me/HackerNewsAR/2150", "content": "\u064a\u0639\u062b\u0631 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0639\u0644\u0649 \u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u062a\u0623\u062b\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0639\u062f\u0629 \u0623\u0633\u0627\u0644\u064a\u0628 \u0648\u0623\u062f\u0648\u0627\u062a \u062a\u0639\u062a\u0645\u062f \u0639\u0644\u0649 \u0627\u0644\u0645\u0633\u062d \u0627\u0644\u0634\u0628\u0643\u064a \u0648\u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a\u060c \u0648\u0623\u0647\u0645\u0647\u0627:\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u062d\u0631\u0643\u0627\u062a \u0627\u0644\u0628\u062d\u062b \u0627\u0644\u0645\u062e\u0635\u0635\u0629 \u0644\u0644\u0623\u062c\u0647\u0632\u0629 \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a (\u0645\u062b\u0644 Shodan, Censys):\n\n\u064a\u0628\u062d\u062b \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0643\u0644\u0645\u0627\u062a \u0645\u0641\u062a\u0627\u062d\u064a\u0629 (dorks) \u0623\u0648 \u062a\u0648\u0642\u064a\u0639\u0627\u062a \u0645\u0639\u064a\u0646\u0629 \u062a\u0643\u0634\u0641 \u0639\u0646 \u0648\u062c\u0648\u062f \u0648\u0627\u062c\u0647\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629 \u0639\u0644\u0649 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a\u060c \u0645\u062b\u0644 \u0627\u0644\u0628\u062d\u062b \u0639\u0646 \u0639\u0646\u0648\u0627\u0646 \u0635\u0641\u062d\u0629 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0623\u0648 \u0644\u0627\u0641\u062a\u0627\u062a http \u062a\u0634\u064a\u0631 \u0625\u0644\u0649 NetWeaver Application Server.\n\n\u0623\u0645\u062b\u0644\u0629 \u0644\u0639\u0645\u0644\u064a\u0627\u062a \u0627\u0644\u0628\u062d\u062b:\n\nhttp.title:\"SAP NetWeaver Application Server\"\n\n\u0627\u0644\u0628\u062d\u062b \u0636\u0645\u0646 \u0646\u0637\u0627\u0642\u0627\u062a \u0627\u0644\u0634\u0631\u0643\u0627\u062a \u0627\u0644\u0643\u0628\u0631\u0649 \u0623\u0648 \u0639\u0646\u0627\u0648\u064a\u0646 \u0627\u0644\u0645\u0624\u0633\u0633\u0627\u062a \u0627\u0644\u062d\u0643\u0648\u0645\u064a\u0629.\n\n\u0641\u062d\u0635 \u0627\u0644\u0628\u0648\u0631\u062a\u0627\u062a \u0627\u0644\u0634\u0627\u0626\u0639\u0629 \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0640 SAP:\n\n\u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u063a\u0627\u0644\u0628\u064b\u0627 \u0645\u0627 \u062a\u0643\u0648\u0646 \u0645\u062a\u0627\u062d\u0629 \u0639\u0644\u0649 \u0645\u0646\u0627\u0641\u0630 \u0645\u062d\u062f\u062f\u0629 \u0645\u062b\u0644 50000\u060c 50013\u060c 8000\u060c 8080 \u0648\u063a\u064a\u0631\u0647\u0627.\n\n\u064a\u0645\u0643\u0646 \u0644\u0644\u0623\u062f\u0648\u0627\u062a \u0645\u062b\u0644 nmap \u0625\u062c\u0631\u0627\u0621 \u0645\u0633\u062d \u0644\u0647\u0630\u0647 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0639\u062b\u0648\u0631 \u0639\u0644\u0649 \u0627\u0644\u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629.\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0643\u0634\u0641 \u0646\u0642\u0627\u0637 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0648\u0636\u0639\u0641 \u0627\u0644\u062d\u0645\u0627\u064a\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062d (scanner) \u0645\u062b\u0644 Onapsis\u060c \u0623\u0648 \u062d\u062a\u0649 \u0623\u062f\u0648\u0627\u062a \u0645\u0641\u062a\u0648\u062d\u0629 \u0627\u0644\u0645\u0635\u062f\u0631 \u0645\u062b\u0644 Metasploit modules\u060c \u062a\u0633\u062c\u0644 \u0646\u0642\u0637\u0629 \u0646\u0647\u0627\u064a\u0629 metadatauploader \u0623\u0648 \u0635\u0641\u062d\u0629 Visual Composer \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629.\n\n\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0623\u062f\u0644\u0629 \u0645\u0646 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0623\u0648 \u0631\u0624\u0648\u0633 HTTP:\n\n\u0623\u062d\u064a\u0627\u0646\u064b\u0627 \u062a\u0643\u0634\u0641 \u0631\u0624\u0648\u0633 (Headers) http \u0623\u0648 \u062d\u062a\u0649 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0627\u0644\u0631\u0642\u0645\u064a\u0629 \u0639\u0646 \u0625\u0635\u062f\u0627\u0631 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648\u0647\u0648\u064a\u062a\u0647.\n\n\u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0627\u0644\u0645\u0633\u0631\u0628\u0629 \u0623\u0648 \u0641\u0647\u0627\u0631\u0633 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a:\n\n\u0642\u062f \u062a\u0648\u0641\u0631 \u0628\u0639\u0636 \u0627\u0644\u0641\u0647\u0627\u0631\u0633 \u0623\u0648 \u062a\u0633\u0631\u064a\u0628\u0627\u062a \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0639\u0646\u0627\u0648\u064a\u0646 \u0623\u0646\u0638\u0645\u0629 SAP \u0645\u0643\u0634\u0648\u0641\u0629 \u0623\u0648 \u0643\u0644\u0645\u0627\u062a \u0633\u0631 \u0636\u0639\u064a\u0641\u0629 \u0623\u0648 \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629.\n\n\u0634\u0631\u062d \u0627\u0644\u062b\u063a\u0631\u0629 \u0628\u0627\u0644\u062a\u0641\u0635\u064a\u0644\n\u0627\u0644\u0645\u0643\u0648\u0646 \u0627\u0644\u0645\u062a\u0623\u062b\u0631: SAP NetWeaver Application Server Java\u060c \u0648\u062d\u062f\u0629 Visual Composer.\n\n\u0637\u0631\u064a\u0642\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u062a\u0643\u0645\u0646 \u0641\u064a \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u062a\u0641\u0648\u064a\u0636 (Missing Authorization Check) \u0639\u0646\u062f \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 /developmentserver/metadatauploader\u060c \u062d\u064a\u062b \u064a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0645\u0644\u0641\u0627\u062a \u062e\u0628\u064a\u062b\u0629 (\u0645\u062b\u0644 Web Shell \u0623\u0648 \u062a\u0637\u0628\u064a\u0642\u0627\u062a JAR \u0623\u0648 ZIP).\n\n\u064a\u0642\u0648\u0645 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0645\u062b\u0644 CVE-2025-31324 \u0639\u0627\u062f\u0629 \u0639\u0628\u0631 \u0623\u062f\u0648\u0627\u062a \u0645\u062a\u062e\u0635\u0635\u0629 \u062a\u062a\u064a\u062d \u0644\u0647 \u0635\u064a\u0627\u063a\u0629 \u0648\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0628\u0634\u0643\u0644 \u064a\u062f\u0648\u064a \u0623\u0648 \u062a\u0644\u0642\u0627\u0626\u064a\u060c \u0648\u0623\u0634\u0647\u0631 \u0627\u0644\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0639\u0645\u0644\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0647\u062c\u0648\u0645 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST\ncurl\n\n\u0623\u062f\u0627\u0629 \u064a\u0646\u062a\u062c\u0647\u0627 \u0646\u0638\u0627\u0645 \u0644\u064a\u0646\u0643\u0633 (\u0648\u0645\u062a\u0648\u0641\u0631\u0629 \u0644\u0643\u0644 \u0627\u0644\u0623\u0646\u0638\u0645\u0629)\u060c \u062a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP/HTTPS \u062d\u0633\u0628 \u0627\u0644\u0631\u063a\u0628\u0629.\n\n\u0645\u062b\u0627\u0644 \u0627\u0633\u062a\u062e\u062f\u0627\u0645:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u064a\u0645\u0643\u0646 \u0628\u0647\u0627 \u062a\u062d\u062f\u064a\u062f \u0646\u0648\u0639 \u0627\u0644\u0645\u062d\u062a\u0648\u0649\u060c \u0645\u0644\u0641 \u0627\u0644\u0625\u0631\u0633\u0627\u0644\u060c \u0625\u0639\u062f\u0627\u062f \u0631\u0624\u0648\u0633 \u0627\u0644\u0637\u0644\u0628 \u0648\u0643\u0644 \u0627\u0644\u062a\u0641\u0627\u0635\u064a\u0644 \u0627\u0644\u0645\u0637\u0644\u0648\u0628\u0629.\n\nBurp Suite\n\n\u0623\u062f\u0627\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u062e\u062a\u0631\u0627\u0642 \u0645\u062a\u0642\u062f\u0645\u0629\u060c \u062a\u062a\u064a\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0623\u0648 \u0645\u062e\u062a\u0628\u0631 \u0627\u0644\u0623\u0645\u0646 \u0625\u062c\u0631\u0627\u0621 \u0648\u0641\u062d\u0635 \u0648\u062a\u0639\u062f\u064a\u0644 \u0623\u064a \u0637\u0644\u0628 HTTP (GET/POST).\n\n\u064a\u0645\u0643\u0646 \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u0637\u0644\u0628\u0627\u062a \u0645\u0628\u0627\u0634\u0631\u0629 \u0639\u0628\u0631 \u0648\u0627\u062c\u0647\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0627\u0644\u062a\u0643\u0631\u0627\u0631 (Repeater/Intruder) \u0644\u0625\u0631\u0633\u0627\u0644 \u0639\u062f\u0629 \u0637\u0644\u0628\u0627\u062a \u0645\u062e\u062a\u0644\u0641\u0629 \u0648\u0645\u0644\u0627\u062d\u0638\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629.\n\nPostman\n\n\u062a\u0637\u0628\u064a\u0642 \u0645\u062a\u0643\u0627\u0645\u0644 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0648\u062a\u0637\u0648\u064a\u0631 \u0648\u0627\u062c\u0647\u0627\u062a API. \u064a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0645\u0644\u0641\u0627\u062a\u060c \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u062d\u0642\u0648\u0644 \u0648\u0627\u0644\u0631\u0624\u0648\u0633\u060c \u0648\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0627\u062a.\n\n\u064a\u0633\u062a\u062e\u062f\u0645 \u063a\u0627\u0644\u0628\u064b\u0627 \u0641\u064a \u0627\u0644\u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u064a\u062f\u0648\u064a \u0644\u0631\u0624\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0648\u062a\u0643\u0631\u0627\u0631 \u0627\u0644\u0637\u0644\u0628\u0627\u062a.\n\n\u0623\u062f\u0648\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0623\u0648 \u0633\u0643\u0631\u0628\u062a\u0627\u062a \u0628\u0644\u063a\u0629 Python/JavaScript\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0645\u062a\u0642\u062f\u0645 \u0642\u062f \u064a\u0643\u062a\u0628 \u0633\u0643\u0631\u0628\u062a \u0645\u062e\u0635\u0635 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u0643\u062a\u0628\u0627\u062a \u0645\u062b\u0644 requests (Python) \u0623\u0648 axios (JavaScript) \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u062d\u0633\u0628 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u062b\u0627\u0644 \u0639\u0645\u0644\u064a \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 curl:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u0647\u0643\u0630\u0627 \u064a\u0631\u0633\u0644 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0644\u0641 \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0641\u064a SAP NetWeaver\u060c \u0648\u064a\u0641\u062d\u0635 \u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0627\u0644\u062e\u0627\u062f\u0645 \u0644\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0646\u062c\u0627\u062d \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u0627 \u064a\u062d\u062f\u062b \u0639\u0646\u062f \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0646\u0638\u0627\u0645 \u064a\u0642\u0628\u0644 \u062a\u062d\u0645\u064a\u0644 \u0627\u0644\u0645\u0644\u0641 \u062f\u0648\u0646 \u0623\u0646 \u064a\u062a\u062d\u0642\u0642 \u0645\u0646 \u0635\u0644\u0627\u062d\u064a\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u064a\u0641\u062d\u0635 \u0627\u0644\u0645\u0644\u0641 \u0628\u0634\u0643\u0644 \u0622\u0645\u0646\u060c \u0645\u0627 \u064a\u0624\u062f\u064a \u0625\u0644\u0649 \u0625\u0645\u0643\u0627\u0646\u064a\u0629 \u062a\u0646\u0641\u064a\u0630 \u0643\u0648\u062f \u0628\u0631\u0645\u062c\u064a \u0636\u0627\u0631 \u0648\u062a\u062d\u0643\u0645 \u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u062e\u0627\u062f\u0645 (RCE) \u0639\u0646 \u0628\u064f\u0639\u062f.\n\n\u062f\u0631\u062c\u0629 \u0627\u0644\u062e\u0637\u0648\u0631\u0629: CVSS 10/10 (\u062d\u0631\u062c \u062c\u062f\u064b\u0627)\u060c \u062d\u064a\u062b \u064a\u0645\u0643\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0648\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u062d\u0633\u0627\u0633\u0629\u060c \u0623\u0648 \u062a\u0639\u0637\u064a\u0644 \u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0623\u0639\u0645\u0627\u0644 \u0627\u0644\u062d\u0631\u062c\u0629.\n\n\u062a\u0623\u062b\u064a\u0631 \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0623\u0647\u062f\u0627\u0641 \u0627\u0644\u0647\u062c\u0648\u0645\n\u0627\u0646\u062a\u0634\u0627\u0631 \u0648\u0627\u0633\u0639: \u0647\u0646\u0627\u0643 \u0623\u0643\u062b\u0631 \u0645\u0646 1200 \u0646\u0638\u0627\u0645 SAP NetWeaver \u0645\u0643\u0634\u0648\u0641 \u0644\u0644\u0625\u0646\u062a\u0631\u0646\u062a \u062d\u0648\u0644 \u0627\u0644\u0639\u0627\u0644\u0645 \u0645\u0639\u0631\u0636 \u0644\u0644\u062e\u0637\u0631.\n\n\u0623\u0645\u062b\u0644\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644:\n\n\u062a\u062d\u0645\u064a\u0644 Web Shell \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0627\u0644\u0645\u062c\u0644\u062f j2ee/cluster/apps/sap.com/irj/servlet_jsp/irj/root/ \u0648\u0645\u0646 \u062b\u0645 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u064a\u0647 \u0648\u062a\u0646\u0641\u064a\u0630 \u0623\u0648\u0627\u0645\u0631 \u0639\u0628\u0631 GET.\n\n\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0639\u0645\u0644\u0627\u0621 \u0627\u0644\u062d\u0633\u0627\u0633\u0629 \u0623\u0648 \u0627\u0644\u0645\u0627\u0644\u064a\u0629\u060c \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u0623\u0646\u0634\u0637\u0629 \u0627\u0644\u062a\u062c\u0627\u0631\u064a\u0629\u060c \u0627\u0644\u062d\u0631\u0643\u0629 \u0627\u0644\u062c\u0627\u0646\u0628\u064a\u0629 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629 \u0648\u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u0646\u0638\u0645\u0629 \u0623\u062e\u0631\u0649.\n\n\u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644\u064a\u0629:\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062d\u0636\u0651\u0631 \u0645\u0644\u0641\u064b\u0627 \u062e\u0628\u064a\u062b\u064b\u0627 (\u0645\u062b\u0644\u0627\u064b: Web Shell\u060c \u0645\u0644\u0641 JAR \u0623\u0648 ZIP \u0645\u062f\u0645\u062c \u0628\u0643\u0648\u062f \u0636\u0627\u0631).\n\n\u064a\u0631\u0633\u0644 \u0647\u0630\u0627 \u0627\u0644\u0645\u0644\u0641 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0637\u0644\u0628 HTTP POST \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0645\u062b\u0644:\n\n/irj/servlet/prt/portal/prtroot/com.sap.visualcomposer.dev.server.metadatauploader\n\n\u062e\u0627\u062f\u0645 SAP NetWeaver\u060c \u0628\u0633\u0628\u0628 \u062e\u0637\u0623 \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642\u060c \u064a\u0642\u0628\u0644 \u0627\u0644\u0645\u0644\u0641 \u0648\u064a\u0642\u0648\u0645 \u0628\u062a\u062e\u0632\u064a\u0646\u0647 \u0648\u062a\u0634\u063a\u064a\u0644\u0647 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0646\u0638\u0627\u0645\u0647.\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062a\u0628\u0639 \u0630\u0644\u0643 \u0628\u0637\u0644\u0628 HTTP GET \u0625\u0644\u0649 \u0645\u0644\u0641 \u0627\u0644\u0640 Web Shell (\u0623\u0648 \u064a\u0646\u0641\u0630 \u0645\u0644\u0641 \u062c\u0627\u0641\u0627 \u0623\u0648 \u0623\u0643\u0648\u0627\u062f \u0623\u062e\u0631\u0649)\u060c \u0644\u064a\u0628\u062f\u0623 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645.\n\n\u064a\u0645\u0643\u0646 \u0627\u0644\u0622\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u062a\u0646\u0641\u064a\u0630 \u0623\u064a \u062a\u0639\u0644\u064a\u0645\u0627\u062a\u060c \u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a\u060c \u0623\u0648 \u0627\u0644\u062a\u062d\u0631\u0643 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629.", "creation_timestamp": "2026-07-16T00:00:19.949625Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/0013becd-d43a-43fd-9567-ea5eb9d45308/export</guid>
      <pubDate>Thu, 16 Jul 2026 00:00:19 +0000</pubDate>
    </item>
    <item>
      <title>baa984fe-3d36-406d-b1ad-98236a207344</title>
      <link>https://vulnerability.circl.lu/sighting/baa984fe-3d36-406d-b1ad-98236a207344/export</link>
      <description>{"uuid": "baa984fe-3d36-406d-b1ad-98236a207344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-07-14)", "content": "", "creation_timestamp": "2026-07-15T10:00:13.362196Z"}</description>
      <content:encoded>{"uuid": "baa984fe-3d36-406d-b1ad-98236a207344", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-07-14)", "content": "", "creation_timestamp": "2026-07-15T10:00:13.362196Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/baa984fe-3d36-406d-b1ad-98236a207344/export</guid>
      <pubDate>Wed, 15 Jul 2026 10:00:13 +0000</pubDate>
    </item>
    <item>
      <title>ea100d6c-9311-4ecd-8d64-2f91dbdd400f</title>
      <link>https://vulnerability.circl.lu/sighting/ea100d6c-9311-4ecd-8d64-2f91dbdd400f/export</link>
      <description>{"uuid": "ea100d6c-9311-4ecd-8d64-2f91dbdd400f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "https://t.me/HackerNewsAR/2150", "content": "\u064a\u0639\u062b\u0631 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0639\u0644\u0649 \u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u062a\u0623\u062b\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0639\u062f\u0629 \u0623\u0633\u0627\u0644\u064a\u0628 \u0648\u0623\u062f\u0648\u0627\u062a \u062a\u0639\u062a\u0645\u062f \u0639\u0644\u0649 \u0627\u0644\u0645\u0633\u062d \u0627\u0644\u0634\u0628\u0643\u064a \u0648\u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a\u060c \u0648\u0623\u0647\u0645\u0647\u0627:\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u062d\u0631\u0643\u0627\u062a \u0627\u0644\u0628\u062d\u062b \u0627\u0644\u0645\u062e\u0635\u0635\u0629 \u0644\u0644\u0623\u062c\u0647\u0632\u0629 \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a (\u0645\u062b\u0644 Shodan, Censys):\n\n\u064a\u0628\u062d\u062b \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0643\u0644\u0645\u0627\u062a \u0645\u0641\u062a\u0627\u062d\u064a\u0629 (dorks) \u0623\u0648 \u062a\u0648\u0642\u064a\u0639\u0627\u062a \u0645\u0639\u064a\u0646\u0629 \u062a\u0643\u0634\u0641 \u0639\u0646 \u0648\u062c\u0648\u062f \u0648\u0627\u062c\u0647\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629 \u0639\u0644\u0649 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a\u060c \u0645\u062b\u0644 \u0627\u0644\u0628\u062d\u062b \u0639\u0646 \u0639\u0646\u0648\u0627\u0646 \u0635\u0641\u062d\u0629 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0623\u0648 \u0644\u0627\u0641\u062a\u0627\u062a http \u062a\u0634\u064a\u0631 \u0625\u0644\u0649 NetWeaver Application Server.\n\n\u0623\u0645\u062b\u0644\u0629 \u0644\u0639\u0645\u0644\u064a\u0627\u062a \u0627\u0644\u0628\u062d\u062b:\n\nhttp.title:\"SAP NetWeaver Application Server\"\n\n\u0627\u0644\u0628\u062d\u062b \u0636\u0645\u0646 \u0646\u0637\u0627\u0642\u0627\u062a \u0627\u0644\u0634\u0631\u0643\u0627\u062a \u0627\u0644\u0643\u0628\u0631\u0649 \u0623\u0648 \u0639\u0646\u0627\u0648\u064a\u0646 \u0627\u0644\u0645\u0624\u0633\u0633\u0627\u062a \u0627\u0644\u062d\u0643\u0648\u0645\u064a\u0629.\n\n\u0641\u062d\u0635 \u0627\u0644\u0628\u0648\u0631\u062a\u0627\u062a \u0627\u0644\u0634\u0627\u0626\u0639\u0629 \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0640 SAP:\n\n\u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u063a\u0627\u0644\u0628\u064b\u0627 \u0645\u0627 \u062a\u0643\u0648\u0646 \u0645\u062a\u0627\u062d\u0629 \u0639\u0644\u0649 \u0645\u0646\u0627\u0641\u0630 \u0645\u062d\u062f\u062f\u0629 \u0645\u062b\u0644 50000\u060c 50013\u060c 8000\u060c 8080 \u0648\u063a\u064a\u0631\u0647\u0627.\n\n\u064a\u0645\u0643\u0646 \u0644\u0644\u0623\u062f\u0648\u0627\u062a \u0645\u062b\u0644 nmap \u0625\u062c\u0631\u0627\u0621 \u0645\u0633\u062d \u0644\u0647\u0630\u0647 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0639\u062b\u0648\u0631 \u0639\u0644\u0649 \u0627\u0644\u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629.\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0643\u0634\u0641 \u0646\u0642\u0627\u0637 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0648\u0636\u0639\u0641 \u0627\u0644\u062d\u0645\u0627\u064a\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062d (scanner) \u0645\u062b\u0644 Onapsis\u060c \u0623\u0648 \u062d\u062a\u0649 \u0623\u062f\u0648\u0627\u062a \u0645\u0641\u062a\u0648\u062d\u0629 \u0627\u0644\u0645\u0635\u062f\u0631 \u0645\u062b\u0644 Metasploit modules\u060c \u062a\u0633\u062c\u0644 \u0646\u0642\u0637\u0629 \u0646\u0647\u0627\u064a\u0629 metadatauploader \u0623\u0648 \u0635\u0641\u062d\u0629 Visual Composer \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629.\n\n\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0623\u062f\u0644\u0629 \u0645\u0646 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0623\u0648 \u0631\u0624\u0648\u0633 HTTP:\n\n\u0623\u062d\u064a\u0627\u0646\u064b\u0627 \u062a\u0643\u0634\u0641 \u0631\u0624\u0648\u0633 (Headers) http \u0623\u0648 \u062d\u062a\u0649 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0627\u0644\u0631\u0642\u0645\u064a\u0629 \u0639\u0646 \u0625\u0635\u062f\u0627\u0631 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648\u0647\u0648\u064a\u062a\u0647.\n\n\u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0627\u0644\u0645\u0633\u0631\u0628\u0629 \u0623\u0648 \u0641\u0647\u0627\u0631\u0633 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a:\n\n\u0642\u062f \u062a\u0648\u0641\u0631 \u0628\u0639\u0636 \u0627\u0644\u0641\u0647\u0627\u0631\u0633 \u0623\u0648 \u062a\u0633\u0631\u064a\u0628\u0627\u062a \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0639\u0646\u0627\u0648\u064a\u0646 \u0623\u0646\u0638\u0645\u0629 SAP \u0645\u0643\u0634\u0648\u0641\u0629 \u0623\u0648 \u0643\u0644\u0645\u0627\u062a \u0633\u0631 \u0636\u0639\u064a\u0641\u0629 \u0623\u0648 \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629.\n\n\u0634\u0631\u062d \u0627\u0644\u062b\u063a\u0631\u0629 \u0628\u0627\u0644\u062a\u0641\u0635\u064a\u0644\n\u0627\u0644\u0645\u0643\u0648\u0646 \u0627\u0644\u0645\u062a\u0623\u062b\u0631: SAP NetWeaver Application Server Java\u060c \u0648\u062d\u062f\u0629 Visual Composer.\n\n\u0637\u0631\u064a\u0642\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u062a\u0643\u0645\u0646 \u0641\u064a \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u062a\u0641\u0648\u064a\u0636 (Missing Authorization Check) \u0639\u0646\u062f \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 /developmentserver/metadatauploader\u060c \u062d\u064a\u062b \u064a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0645\u0644\u0641\u0627\u062a \u062e\u0628\u064a\u062b\u0629 (\u0645\u062b\u0644 Web Shell \u0623\u0648 \u062a\u0637\u0628\u064a\u0642\u0627\u062a JAR \u0623\u0648 ZIP).\n\n\u064a\u0642\u0648\u0645 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0645\u062b\u0644 CVE-2025-31324 \u0639\u0627\u062f\u0629 \u0639\u0628\u0631 \u0623\u062f\u0648\u0627\u062a \u0645\u062a\u062e\u0635\u0635\u0629 \u062a\u062a\u064a\u062d \u0644\u0647 \u0635\u064a\u0627\u063a\u0629 \u0648\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0628\u0634\u0643\u0644 \u064a\u062f\u0648\u064a \u0623\u0648 \u062a\u0644\u0642\u0627\u0626\u064a\u060c \u0648\u0623\u0634\u0647\u0631 \u0627\u0644\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0639\u0645\u0644\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0647\u062c\u0648\u0645 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST\ncurl\n\n\u0623\u062f\u0627\u0629 \u064a\u0646\u062a\u062c\u0647\u0627 \u0646\u0638\u0627\u0645 \u0644\u064a\u0646\u0643\u0633 (\u0648\u0645\u062a\u0648\u0641\u0631\u0629 \u0644\u0643\u0644 \u0627\u0644\u0623\u0646\u0638\u0645\u0629)\u060c \u062a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP/HTTPS \u062d\u0633\u0628 \u0627\u0644\u0631\u063a\u0628\u0629.\n\n\u0645\u062b\u0627\u0644 \u0627\u0633\u062a\u062e\u062f\u0627\u0645:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u064a\u0645\u0643\u0646 \u0628\u0647\u0627 \u062a\u062d\u062f\u064a\u062f \u0646\u0648\u0639 \u0627\u0644\u0645\u062d\u062a\u0648\u0649\u060c \u0645\u0644\u0641 \u0627\u0644\u0625\u0631\u0633\u0627\u0644\u060c \u0625\u0639\u062f\u0627\u062f \u0631\u0624\u0648\u0633 \u0627\u0644\u0637\u0644\u0628 \u0648\u0643\u0644 \u0627\u0644\u062a\u0641\u0627\u0635\u064a\u0644 \u0627\u0644\u0645\u0637\u0644\u0648\u0628\u0629.\n\nBurp Suite\n\n\u0623\u062f\u0627\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u062e\u062a\u0631\u0627\u0642 \u0645\u062a\u0642\u062f\u0645\u0629\u060c \u062a\u062a\u064a\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0623\u0648 \u0645\u062e\u062a\u0628\u0631 \u0627\u0644\u0623\u0645\u0646 \u0625\u062c\u0631\u0627\u0621 \u0648\u0641\u062d\u0635 \u0648\u062a\u0639\u062f\u064a\u0644 \u0623\u064a \u0637\u0644\u0628 HTTP (GET/POST).\n\n\u064a\u0645\u0643\u0646 \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u0637\u0644\u0628\u0627\u062a \u0645\u0628\u0627\u0634\u0631\u0629 \u0639\u0628\u0631 \u0648\u0627\u062c\u0647\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0627\u0644\u062a\u0643\u0631\u0627\u0631 (Repeater/Intruder) \u0644\u0625\u0631\u0633\u0627\u0644 \u0639\u062f\u0629 \u0637\u0644\u0628\u0627\u062a \u0645\u062e\u062a\u0644\u0641\u0629 \u0648\u0645\u0644\u0627\u062d\u0638\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629.\n\nPostman\n\n\u062a\u0637\u0628\u064a\u0642 \u0645\u062a\u0643\u0627\u0645\u0644 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0648\u062a\u0637\u0648\u064a\u0631 \u0648\u0627\u062c\u0647\u0627\u062a API. \u064a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0645\u0644\u0641\u0627\u062a\u060c \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u062d\u0642\u0648\u0644 \u0648\u0627\u0644\u0631\u0624\u0648\u0633\u060c \u0648\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0627\u062a.\n\n\u064a\u0633\u062a\u062e\u062f\u0645 \u063a\u0627\u0644\u0628\u064b\u0627 \u0641\u064a \u0627\u0644\u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u064a\u062f\u0648\u064a \u0644\u0631\u0624\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0648\u062a\u0643\u0631\u0627\u0631 \u0627\u0644\u0637\u0644\u0628\u0627\u062a.\n\n\u0623\u062f\u0648\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0623\u0648 \u0633\u0643\u0631\u0628\u062a\u0627\u062a \u0628\u0644\u063a\u0629 Python/JavaScript\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0645\u062a\u0642\u062f\u0645 \u0642\u062f \u064a\u0643\u062a\u0628 \u0633\u0643\u0631\u0628\u062a \u0645\u062e\u0635\u0635 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u0643\u062a\u0628\u0627\u062a \u0645\u062b\u0644 requests (Python) \u0623\u0648 axios (JavaScript) \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u062d\u0633\u0628 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u062b\u0627\u0644 \u0639\u0645\u0644\u064a \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 curl:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u0647\u0643\u0630\u0627 \u064a\u0631\u0633\u0644 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0644\u0641 \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0641\u064a SAP NetWeaver\u060c \u0648\u064a\u0641\u062d\u0635 \u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0627\u0644\u062e\u0627\u062f\u0645 \u0644\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0646\u062c\u0627\u062d \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u0627 \u064a\u062d\u062f\u062b \u0639\u0646\u062f \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0646\u0638\u0627\u0645 \u064a\u0642\u0628\u0644 \u062a\u062d\u0645\u064a\u0644 \u0627\u0644\u0645\u0644\u0641 \u062f\u0648\u0646 \u0623\u0646 \u064a\u062a\u062d\u0642\u0642 \u0645\u0646 \u0635\u0644\u0627\u062d\u064a\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u064a\u0641\u062d\u0635 \u0627\u0644\u0645\u0644\u0641 \u0628\u0634\u0643\u0644 \u0622\u0645\u0646\u060c \u0645\u0627 \u064a\u0624\u062f\u064a \u0625\u0644\u0649 \u0625\u0645\u0643\u0627\u0646\u064a\u0629 \u062a\u0646\u0641\u064a\u0630 \u0643\u0648\u062f \u0628\u0631\u0645\u062c\u064a \u0636\u0627\u0631 \u0648\u062a\u062d\u0643\u0645 \u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u062e\u0627\u062f\u0645 (RCE) \u0639\u0646 \u0628\u064f\u0639\u062f.\n\n\u062f\u0631\u062c\u0629 \u0627\u0644\u062e\u0637\u0648\u0631\u0629: CVSS 10/10 (\u062d\u0631\u062c \u062c\u062f\u064b\u0627)\u060c \u062d\u064a\u062b \u064a\u0645\u0643\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0648\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u062d\u0633\u0627\u0633\u0629\u060c \u0623\u0648 \u062a\u0639\u0637\u064a\u0644 \u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0623\u0639\u0645\u0627\u0644 \u0627\u0644\u062d\u0631\u062c\u0629.\n\n\u062a\u0623\u062b\u064a\u0631 \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0623\u0647\u062f\u0627\u0641 \u0627\u0644\u0647\u062c\u0648\u0645\n\u0627\u0646\u062a\u0634\u0627\u0631 \u0648\u0627\u0633\u0639: \u0647\u0646\u0627\u0643 \u0623\u0643\u062b\u0631 \u0645\u0646 1200 \u0646\u0638\u0627\u0645 SAP NetWeaver \u0645\u0643\u0634\u0648\u0641 \u0644\u0644\u0625\u0646\u062a\u0631\u0646\u062a \u062d\u0648\u0644 \u0627\u0644\u0639\u0627\u0644\u0645 \u0645\u0639\u0631\u0636 \u0644\u0644\u062e\u0637\u0631.\n\n\u0623\u0645\u062b\u0644\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644:\n\n\u062a\u062d\u0645\u064a\u0644 Web Shell \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0627\u0644\u0645\u062c\u0644\u062f j2ee/cluster/apps/sap.com/irj/servlet_jsp/irj/root/ \u0648\u0645\u0646 \u062b\u0645 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u064a\u0647 \u0648\u062a\u0646\u0641\u064a\u0630 \u0623\u0648\u0627\u0645\u0631 \u0639\u0628\u0631 GET.\n\n\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0639\u0645\u0644\u0627\u0621 \u0627\u0644\u062d\u0633\u0627\u0633\u0629 \u0623\u0648 \u0627\u0644\u0645\u0627\u0644\u064a\u0629\u060c \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u0623\u0646\u0634\u0637\u0629 \u0627\u0644\u062a\u062c\u0627\u0631\u064a\u0629\u060c \u0627\u0644\u062d\u0631\u0643\u0629 \u0627\u0644\u062c\u0627\u0646\u0628\u064a\u0629 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629 \u0648\u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u0646\u0638\u0645\u0629 \u0623\u062e\u0631\u0649.\n\n\u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644\u064a\u0629:\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062d\u0636\u0651\u0631 \u0645\u0644\u0641\u064b\u0627 \u062e\u0628\u064a\u062b\u064b\u0627 (\u0645\u062b\u0644\u0627\u064b: Web Shell\u060c \u0645\u0644\u0641 JAR \u0623\u0648 ZIP \u0645\u062f\u0645\u062c \u0628\u0643\u0648\u062f \u0636\u0627\u0631).\n\n\u064a\u0631\u0633\u0644 \u0647\u0630\u0627 \u0627\u0644\u0645\u0644\u0641 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0637\u0644\u0628 HTTP POST \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0645\u062b\u0644:\n\n/irj/servlet/prt/portal/prtroot/com.sap.visualcomposer.dev.server.metadatauploader\n\n\u062e\u0627\u062f\u0645 SAP NetWeaver\u060c \u0628\u0633\u0628\u0628 \u062e\u0637\u0623 \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642\u060c \u064a\u0642\u0628\u0644 \u0627\u0644\u0645\u0644\u0641 \u0648\u064a\u0642\u0648\u0645 \u0628\u062a\u062e\u0632\u064a\u0646\u0647 \u0648\u062a\u0634\u063a\u064a\u0644\u0647 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0646\u0638\u0627\u0645\u0647.\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062a\u0628\u0639 \u0630\u0644\u0643 \u0628\u0637\u0644\u0628 HTTP GET \u0625\u0644\u0649 \u0645\u0644\u0641 \u0627\u0644\u0640 Web Shell (\u0623\u0648 \u064a\u0646\u0641\u0630 \u0645\u0644\u0641 \u062c\u0627\u0641\u0627 \u0623\u0648 \u0623\u0643\u0648\u0627\u062f \u0623\u062e\u0631\u0649)\u060c \u0644\u064a\u0628\u062f\u0623 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645.\n\n\u064a\u0645\u0643\u0646 \u0627\u0644\u0622\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u062a\u0646\u0641\u064a\u0630 \u0623\u064a \u062a\u0639\u0644\u064a\u0645\u0627\u062a\u060c \u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a\u060c \u0623\u0648 \u0627\u0644\u062a\u062d\u0631\u0643 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629.", "creation_timestamp": "2026-07-15T10:00:04.591949Z"}</description>
      <content:encoded>{"uuid": "ea100d6c-9311-4ecd-8d64-2f91dbdd400f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "https://t.me/HackerNewsAR/2150", "content": "\u064a\u0639\u062b\u0631 \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0639\u0644\u0649 \u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u062a\u0623\u062b\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0639\u062f\u0629 \u0623\u0633\u0627\u0644\u064a\u0628 \u0648\u0623\u062f\u0648\u0627\u062a \u062a\u0639\u062a\u0645\u062f \u0639\u0644\u0649 \u0627\u0644\u0645\u0633\u062d \u0627\u0644\u0634\u0628\u0643\u064a \u0648\u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a\u060c \u0648\u0623\u0647\u0645\u0647\u0627:\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u062d\u0631\u0643\u0627\u062a \u0627\u0644\u0628\u062d\u062b \u0627\u0644\u0645\u062e\u0635\u0635\u0629 \u0644\u0644\u0623\u062c\u0647\u0632\u0629 \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a (\u0645\u062b\u0644 Shodan, Censys):\n\n\u064a\u0628\u062d\u062b \u0627\u0644\u0645\u0647\u0627\u062c\u0645\u0648\u0646 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0643\u0644\u0645\u0627\u062a \u0645\u0641\u062a\u0627\u062d\u064a\u0629 (dorks) \u0623\u0648 \u062a\u0648\u0642\u064a\u0639\u0627\u062a \u0645\u0639\u064a\u0646\u0629 \u062a\u0643\u0634\u0641 \u0639\u0646 \u0648\u062c\u0648\u062f \u0648\u0627\u062c\u0647\u0627\u062a SAP NetWeaver \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629 \u0639\u0644\u0649 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a\u060c \u0645\u062b\u0644 \u0627\u0644\u0628\u062d\u062b \u0639\u0646 \u0639\u0646\u0648\u0627\u0646 \u0635\u0641\u062d\u0629 \u062a\u0633\u062c\u064a\u0644 \u0627\u0644\u062f\u062e\u0648\u0644 \u0623\u0648 \u0644\u0627\u0641\u062a\u0627\u062a http \u062a\u0634\u064a\u0631 \u0625\u0644\u0649 NetWeaver Application Server.\n\n\u0623\u0645\u062b\u0644\u0629 \u0644\u0639\u0645\u0644\u064a\u0627\u062a \u0627\u0644\u0628\u062d\u062b:\n\nhttp.title:\"SAP NetWeaver Application Server\"\n\n\u0627\u0644\u0628\u062d\u062b \u0636\u0645\u0646 \u0646\u0637\u0627\u0642\u0627\u062a \u0627\u0644\u0634\u0631\u0643\u0627\u062a \u0627\u0644\u0643\u0628\u0631\u0649 \u0623\u0648 \u0639\u0646\u0627\u0648\u064a\u0646 \u0627\u0644\u0645\u0624\u0633\u0633\u0627\u062a \u0627\u0644\u062d\u0643\u0648\u0645\u064a\u0629.\n\n\u0641\u062d\u0635 \u0627\u0644\u0628\u0648\u0631\u062a\u0627\u062a \u0627\u0644\u0634\u0627\u0626\u0639\u0629 \u0627\u0644\u062e\u0627\u0635\u0629 \u0628\u0640 SAP:\n\n\u0645\u0646\u0635\u0627\u062a SAP NetWeaver \u063a\u0627\u0644\u0628\u064b\u0627 \u0645\u0627 \u062a\u0643\u0648\u0646 \u0645\u062a\u0627\u062d\u0629 \u0639\u0644\u0649 \u0645\u0646\u0627\u0641\u0630 \u0645\u062d\u062f\u062f\u0629 \u0645\u062b\u0644 50000\u060c 50013\u060c 8000\u060c 8080 \u0648\u063a\u064a\u0631\u0647\u0627.\n\n\u064a\u0645\u0643\u0646 \u0644\u0644\u0623\u062f\u0648\u0627\u062a \u0645\u062b\u0644 nmap \u0625\u062c\u0631\u0627\u0621 \u0645\u0633\u062d \u0644\u0647\u0630\u0647 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0639\u062b\u0648\u0631 \u0639\u0644\u0649 \u0627\u0644\u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0645\u0643\u0634\u0648\u0641\u0629.\n\n\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0643\u0634\u0641 \u0646\u0642\u0627\u0637 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0648\u0636\u0639\u0641 \u0627\u0644\u062d\u0645\u0627\u064a\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062d (scanner) \u0645\u062b\u0644 Onapsis\u060c \u0623\u0648 \u062d\u062a\u0649 \u0623\u062f\u0648\u0627\u062a \u0645\u0641\u062a\u0648\u062d\u0629 \u0627\u0644\u0645\u0635\u062f\u0631 \u0645\u062b\u0644 Metasploit modules\u060c \u062a\u0633\u062c\u0644 \u0646\u0642\u0637\u0629 \u0646\u0647\u0627\u064a\u0629 metadatauploader \u0623\u0648 \u0635\u0641\u062d\u0629 Visual Composer \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629.\n\n\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0623\u062f\u0644\u0629 \u0645\u0646 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0623\u0648 \u0631\u0624\u0648\u0633 HTTP:\n\n\u0623\u062d\u064a\u0627\u0646\u064b\u0627 \u062a\u0643\u0634\u0641 \u0631\u0624\u0648\u0633 (Headers) http \u0623\u0648 \u062d\u062a\u0649 \u0627\u0644\u0634\u0647\u0627\u062f\u0627\u062a \u0627\u0644\u0631\u0642\u0645\u064a\u0629 \u0639\u0646 \u0625\u0635\u062f\u0627\u0631 \u0627\u0644\u0633\u064a\u0631\u0641\u0631 \u0648\u0647\u0648\u064a\u062a\u0647.\n\n\u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0627\u0644\u0645\u0633\u0631\u0628\u0629 \u0623\u0648 \u0641\u0647\u0627\u0631\u0633 \u0627\u0644\u0625\u0646\u062a\u0631\u0646\u062a:\n\n\u0642\u062f \u062a\u0648\u0641\u0631 \u0628\u0639\u0636 \u0627\u0644\u0641\u0647\u0627\u0631\u0633 \u0623\u0648 \u062a\u0633\u0631\u064a\u0628\u0627\u062a \u0627\u0644\u0628\u064a\u0627\u0646\u0627\u062a \u0639\u0646\u0627\u0648\u064a\u0646 \u0623\u0646\u0638\u0645\u0629 SAP \u0645\u0643\u0634\u0648\u0641\u0629 \u0623\u0648 \u0643\u0644\u0645\u0627\u062a \u0633\u0631 \u0636\u0639\u064a\u0641\u0629 \u0623\u0648 \u0627\u0641\u062a\u0631\u0627\u0636\u064a\u0629.\n\n\u0634\u0631\u062d \u0627\u0644\u062b\u063a\u0631\u0629 \u0628\u0627\u0644\u062a\u0641\u0635\u064a\u0644\n\u0627\u0644\u0645\u0643\u0648\u0646 \u0627\u0644\u0645\u062a\u0623\u062b\u0631: SAP NetWeaver Application Server Java\u060c \u0648\u062d\u062f\u0629 Visual Composer.\n\n\u0637\u0631\u064a\u0642\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u062a\u0643\u0645\u0646 \u0641\u064a \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642 \u0645\u0646 \u0627\u0644\u062a\u0641\u0648\u064a\u0636 (Missing Authorization Check) \u0639\u0646\u062f \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 /developmentserver/metadatauploader\u060c \u062d\u064a\u062b \u064a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0645\u0644\u0641\u0627\u062a \u062e\u0628\u064a\u062b\u0629 (\u0645\u062b\u0644 Web Shell \u0623\u0648 \u062a\u0637\u0628\u064a\u0642\u0627\u062a JAR \u0623\u0648 ZIP).\n\n\u064a\u0642\u0648\u0645 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u062b\u063a\u0631\u0629 \u0645\u062b\u0644 CVE-2025-31324 \u0639\u0627\u062f\u0629 \u0639\u0628\u0631 \u0623\u062f\u0648\u0627\u062a \u0645\u062a\u062e\u0635\u0635\u0629 \u062a\u062a\u064a\u062d \u0644\u0647 \u0635\u064a\u0627\u063a\u0629 \u0648\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0628\u0634\u0643\u0644 \u064a\u062f\u0648\u064a \u0623\u0648 \u062a\u0644\u0642\u0627\u0626\u064a\u060c \u0648\u0623\u0634\u0647\u0631 \u0627\u0644\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u0639\u0645\u0644\u0629:\n\n\u0623\u062f\u0648\u0627\u062a \u0627\u0644\u0647\u062c\u0648\u0645 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST\ncurl\n\n\u0623\u062f\u0627\u0629 \u064a\u0646\u062a\u062c\u0647\u0627 \u0646\u0638\u0627\u0645 \u0644\u064a\u0646\u0643\u0633 (\u0648\u0645\u062a\u0648\u0641\u0631\u0629 \u0644\u0643\u0644 \u0627\u0644\u0623\u0646\u0638\u0645\u0629)\u060c \u062a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP/HTTPS \u062d\u0633\u0628 \u0627\u0644\u0631\u063a\u0628\u0629.\n\n\u0645\u062b\u0627\u0644 \u0627\u0633\u062a\u062e\u062f\u0627\u0645:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u064a\u0645\u0643\u0646 \u0628\u0647\u0627 \u062a\u062d\u062f\u064a\u062f \u0646\u0648\u0639 \u0627\u0644\u0645\u062d\u062a\u0648\u0649\u060c \u0645\u0644\u0641 \u0627\u0644\u0625\u0631\u0633\u0627\u0644\u060c \u0625\u0639\u062f\u0627\u062f \u0631\u0624\u0648\u0633 \u0627\u0644\u0637\u0644\u0628 \u0648\u0643\u0644 \u0627\u0644\u062a\u0641\u0627\u0635\u064a\u0644 \u0627\u0644\u0645\u0637\u0644\u0648\u0628\u0629.\n\nBurp Suite\n\n\u0623\u062f\u0627\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u062e\u062a\u0631\u0627\u0642 \u0645\u062a\u0642\u062f\u0645\u0629\u060c \u062a\u062a\u064a\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0623\u0648 \u0645\u062e\u062a\u0628\u0631 \u0627\u0644\u0623\u0645\u0646 \u0625\u062c\u0631\u0627\u0621 \u0648\u0641\u062d\u0635 \u0648\u062a\u0639\u062f\u064a\u0644 \u0623\u064a \u0637\u0644\u0628 HTTP (GET/POST).\n\n\u064a\u0645\u0643\u0646 \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u0637\u0644\u0628\u0627\u062a \u0645\u0628\u0627\u0634\u0631\u0629 \u0639\u0628\u0631 \u0648\u0627\u062c\u0647\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0623\u062f\u0648\u0627\u062a \u0627\u0644\u062a\u0643\u0631\u0627\u0631 (Repeater/Intruder) \u0644\u0625\u0631\u0633\u0627\u0644 \u0639\u062f\u0629 \u0637\u0644\u0628\u0627\u062a \u0645\u062e\u062a\u0644\u0641\u0629 \u0648\u0645\u0644\u0627\u062d\u0638\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629.\n\nPostman\n\n\u062a\u0637\u0628\u064a\u0642 \u0645\u062a\u0643\u0627\u0645\u0644 \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a HTTP \u0648\u062a\u0637\u0648\u064a\u0631 \u0648\u0627\u062c\u0647\u0627\u062a API. \u064a\u062a\u064a\u062d \u0625\u0631\u0633\u0627\u0644 \u0645\u0644\u0641\u0627\u062a\u060c \u062a\u0639\u062f\u064a\u0644 \u0627\u0644\u062d\u0642\u0648\u0644 \u0648\u0627\u0644\u0631\u0624\u0648\u0633\u060c \u0648\u062a\u062d\u0644\u064a\u0644 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0627\u062a.\n\n\u064a\u0633\u062a\u062e\u062f\u0645 \u063a\u0627\u0644\u0628\u064b\u0627 \u0641\u064a \u0627\u0644\u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u064a\u062f\u0648\u064a \u0644\u0631\u0624\u064a\u0629 \u0627\u0644\u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0648\u062a\u0643\u0631\u0627\u0631 \u0627\u0644\u0637\u0644\u0628\u0627\u062a.\n\n\u0623\u062f\u0648\u0627\u062a \u0628\u0631\u0645\u062c\u064a\u0629 \u0623\u0648 \u0633\u0643\u0631\u0628\u062a\u0627\u062a \u0628\u0644\u063a\u0629 Python/JavaScript\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0627\u0644\u0645\u062a\u0642\u062f\u0645 \u0642\u062f \u064a\u0643\u062a\u0628 \u0633\u0643\u0631\u0628\u062a \u0645\u062e\u0635\u0635 \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 \u0645\u0643\u062a\u0628\u0627\u062a \u0645\u062b\u0644 requests (Python) \u0623\u0648 axios (JavaScript) \u0644\u0625\u0631\u0633\u0627\u0644 \u0637\u0644\u0628\u0627\u062a POST \u062a\u0644\u0642\u0627\u0626\u064a\u0629 \u062d\u0633\u0628 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u062b\u0627\u0644 \u0639\u0645\u0644\u064a \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645 curl:\n\nbash\ncurl -k -X POST -F \"file=@webshell.jsp\" https://target-sap-server/metadatauploader\n\u0647\u0643\u0630\u0627 \u064a\u0631\u0633\u0644 \u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u0645\u0644\u0641 \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0646\u0642\u0637\u0629 \u0627\u0644\u0646\u0647\u0627\u064a\u0629 \u0641\u064a SAP NetWeaver\u060c \u0648\u064a\u0641\u062d\u0635 \u0627\u0633\u062a\u062c\u0627\u0628\u0629 \u0627\u0644\u062e\u0627\u062f\u0645 \u0644\u0644\u062a\u0623\u0643\u062f \u0645\u0646 \u0646\u062c\u0627\u062d \u0627\u0644\u0647\u062c\u0648\u0645.\n\n\u0645\u0627 \u064a\u062d\u062f\u062b \u0639\u0646\u062f \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644: \u0627\u0644\u0646\u0638\u0627\u0645 \u064a\u0642\u0628\u0644 \u062a\u062d\u0645\u064a\u0644 \u0627\u0644\u0645\u0644\u0641 \u062f\u0648\u0646 \u0623\u0646 \u064a\u062a\u062d\u0642\u0642 \u0645\u0646 \u0635\u0644\u0627\u062d\u064a\u0629 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0623\u0648 \u064a\u0641\u062d\u0635 \u0627\u0644\u0645\u0644\u0641 \u0628\u0634\u0643\u0644 \u0622\u0645\u0646\u060c \u0645\u0627 \u064a\u0624\u062f\u064a \u0625\u0644\u0649 \u0625\u0645\u0643\u0627\u0646\u064a\u0629 \u062a\u0646\u0641\u064a\u0630 \u0643\u0648\u062f \u0628\u0631\u0645\u062c\u064a \u0636\u0627\u0631 \u0648\u062a\u062d\u0643\u0645 \u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u062e\u0627\u062f\u0645 (RCE) \u0639\u0646 \u0628\u064f\u0639\u062f.\n\n\u062f\u0631\u062c\u0629 \u0627\u0644\u062e\u0637\u0648\u0631\u0629: CVSS 10/10 (\u062d\u0631\u062c \u062c\u062f\u064b\u0627)\u060c \u062d\u064a\u062b \u064a\u0645\u0643\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0648\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u062d\u0633\u0627\u0633\u0629\u060c \u0623\u0648 \u062a\u0639\u0637\u064a\u0644 \u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u0623\u0639\u0645\u0627\u0644 \u0627\u0644\u062d\u0631\u062c\u0629.\n\n\u062a\u0623\u062b\u064a\u0631 \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0623\u0647\u062f\u0627\u0641 \u0627\u0644\u0647\u062c\u0648\u0645\n\u0627\u0646\u062a\u0634\u0627\u0631 \u0648\u0627\u0633\u0639: \u0647\u0646\u0627\u0643 \u0623\u0643\u062b\u0631 \u0645\u0646 1200 \u0646\u0638\u0627\u0645 SAP NetWeaver \u0645\u0643\u0634\u0648\u0641 \u0644\u0644\u0625\u0646\u062a\u0631\u0646\u062a \u062d\u0648\u0644 \u0627\u0644\u0639\u0627\u0644\u0645 \u0645\u0639\u0631\u0636 \u0644\u0644\u062e\u0637\u0631.\n\n\u0623\u0645\u062b\u0644\u0629 \u0627\u0644\u0627\u0633\u062a\u063a\u0644\u0627\u0644:\n\n\u062a\u062d\u0645\u064a\u0644 Web Shell \u062e\u0628\u064a\u062b \u0625\u0644\u0649 \u0627\u0644\u0645\u062c\u0644\u062f j2ee/cluster/apps/sap.com/irj/servlet_jsp/irj/root/ \u0648\u0645\u0646 \u062b\u0645 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u064a\u0647 \u0648\u062a\u0646\u0641\u064a\u0630 \u0623\u0648\u0627\u0645\u0631 \u0639\u0628\u0631 GET.\n\n\u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a \u0627\u0644\u0639\u0645\u0644\u0627\u0621 \u0627\u0644\u062d\u0633\u0627\u0633\u0629 \u0623\u0648 \u0627\u0644\u0645\u0627\u0644\u064a\u0629\u060c \u062a\u0639\u0637\u064a\u0644 \u0627\u0644\u0623\u0646\u0634\u0637\u0629 \u0627\u0644\u062a\u062c\u0627\u0631\u064a\u0629\u060c \u0627\u0644\u062d\u0631\u0643\u0629 \u0627\u0644\u062c\u0627\u0646\u0628\u064a\u0629 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629 \u0648\u0627\u062e\u062a\u0631\u0627\u0642 \u0623\u0646\u0638\u0645\u0629 \u0623\u062e\u0631\u0649.\n\n\u0633\u064a\u0631 \u0627\u0644\u0639\u0645\u0644\u064a\u0629:\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062d\u0636\u0651\u0631 \u0645\u0644\u0641\u064b\u0627 \u062e\u0628\u064a\u062b\u064b\u0627 (\u0645\u062b\u0644\u0627\u064b: Web Shell\u060c \u0645\u0644\u0641 JAR \u0623\u0648 ZIP \u0645\u062f\u0645\u062c \u0628\u0643\u0648\u062f \u0636\u0627\u0631).\n\n\u064a\u0631\u0633\u0644 \u0647\u0630\u0627 \u0627\u0644\u0645\u0644\u0641 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0637\u0644\u0628 HTTP POST \u0625\u0644\u0649 \u0645\u0633\u0627\u0631 \u0645\u062b\u0644:\n\n/irj/servlet/prt/portal/prtroot/com.sap.visualcomposer.dev.server.metadatauploader\n\n\u062e\u0627\u062f\u0645 SAP NetWeaver\u060c \u0628\u0633\u0628\u0628 \u062e\u0637\u0623 \u063a\u064a\u0627\u0628 \u0627\u0644\u062a\u062d\u0642\u0642\u060c \u064a\u0642\u0628\u0644 \u0627\u0644\u0645\u0644\u0641 \u0648\u064a\u0642\u0648\u0645 \u0628\u062a\u062e\u0632\u064a\u0646\u0647 \u0648\u062a\u0634\u063a\u064a\u0644\u0647 \u0643\u062c\u0632\u0621 \u0645\u0646 \u0646\u0638\u0627\u0645\u0647.\n\n\u0627\u0644\u0645\u0647\u0627\u062c\u0645 \u064a\u062a\u0628\u0639 \u0630\u0644\u0643 \u0628\u0637\u0644\u0628 HTTP GET \u0625\u0644\u0649 \u0645\u0644\u0641 \u0627\u0644\u0640 Web Shell (\u0623\u0648 \u064a\u0646\u0641\u0630 \u0645\u0644\u0641 \u062c\u0627\u0641\u0627 \u0623\u0648 \u0623\u0643\u0648\u0627\u062f \u0623\u062e\u0631\u0649)\u060c \u0644\u064a\u0628\u062f\u0623 \u0627\u0644\u062a\u062d\u0643\u0645 \u0627\u0644\u0643\u0627\u0645\u0644 \u0628\u0627\u0644\u0646\u0638\u0627\u0645.\n\n\u064a\u0645\u0643\u0646 \u0627\u0644\u0622\u0646 \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u062a\u0646\u0641\u064a\u0630 \u0623\u064a \u062a\u0639\u0644\u064a\u0645\u0627\u062a\u060c \u0633\u0631\u0642\u0629 \u0628\u064a\u0627\u0646\u0627\u062a\u060c \u0623\u0648 \u0627\u0644\u062a\u062d\u0631\u0643 \u062f\u0627\u062e\u0644 \u0627\u0644\u0634\u0628\u0643\u0629.", "creation_timestamp": "2026-07-15T10:00:04.591949Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ea100d6c-9311-4ecd-8d64-2f91dbdd400f/export</guid>
      <pubDate>Wed, 15 Jul 2026 10:00:04 +0000</pubDate>
    </item>
    <item>
      <title>4775f4cc-cb7b-4b84-a575-c76a77a67c3e</title>
      <link>https://vulnerability.circl.lu/sighting/4775f4cc-cb7b-4b84-a575-c76a77a67c3e/export</link>
      <description>{"uuid": "4775f4cc-cb7b-4b84-a575-c76a77a67c3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "exploited", "source": "https://t.me/securixy_kz/1144", "content": "SAP NetWeaver Unauthenticated Upload Vulnerability CVE-2025-31324\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SAP NetWeaver, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c ReliaQuest, \u044d\u0442\u0430 \u0431\u0440\u0435\u0448\u044c \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n\u2620\ufe0f \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 backdoor-\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0432;\n\ud83d\ude80 \u041d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438;\n\ud83d\udee1\ufe0f CVSS 9.8 - \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c.\n\u26a1 \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\nSAP NetWeaver Visual Composer Framework 7.50\n\n\ud83d\udee1\ufe0f \u0427\u0442\u043e \u0441\u0434\u0435\u043b\u0430\u0442\u044c:\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 (\u0441\u043c. SAP Security Note 3594142)\n\n\ud83d\udee0\ufe0f \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a /developmentserver/metadatauploader\n\u2022 \u0415\u0441\u043b\u0438 Visual Composer \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c\n\u2022 \u041d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0436\u0443\u0440\u043d\u0430\u043b\u043e\u0432 \u0432 SIEM \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c servlet path \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\u2699\ufe0f \u0428\u0430\u0431\u043b\u043e\u043d\u044b Nuclei \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f:\nCVE-2025-31324\nSAP NetWeaver Backdoor\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nReliaQuest \u2014 Threat Spotlight\nQualys \u2014 CVE-2025-31324", "creation_timestamp": "2026-07-14T00:01:02.107167Z"}</description>
      <content:encoded>{"uuid": "4775f4cc-cb7b-4b84-a575-c76a77a67c3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "exploited", "source": "https://t.me/securixy_kz/1144", "content": "SAP NetWeaver Unauthenticated Upload Vulnerability CVE-2025-31324\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SAP NetWeaver, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c ReliaQuest, \u044d\u0442\u0430 \u0431\u0440\u0435\u0448\u044c \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n\u2620\ufe0f \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 backdoor-\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0432;\n\ud83d\ude80 \u041d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438;\n\ud83d\udee1\ufe0f CVSS 9.8 - \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c.\n\u26a1 \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\nSAP NetWeaver Visual Composer Framework 7.50\n\n\ud83d\udee1\ufe0f \u0427\u0442\u043e \u0441\u0434\u0435\u043b\u0430\u0442\u044c:\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 (\u0441\u043c. SAP Security Note 3594142)\n\n\ud83d\udee0\ufe0f \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a /developmentserver/metadatauploader\n\u2022 \u0415\u0441\u043b\u0438 Visual Composer \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c\n\u2022 \u041d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0436\u0443\u0440\u043d\u0430\u043b\u043e\u0432 \u0432 SIEM \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c servlet path \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\u2699\ufe0f \u0428\u0430\u0431\u043b\u043e\u043d\u044b Nuclei \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f:\nCVE-2025-31324\nSAP NetWeaver Backdoor\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nReliaQuest \u2014 Threat Spotlight\nQualys \u2014 CVE-2025-31324", "creation_timestamp": "2026-07-14T00:01:02.107167Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4775f4cc-cb7b-4b84-a575-c76a77a67c3e/export</guid>
      <pubDate>Tue, 14 Jul 2026 00:01:02 +0000</pubDate>
    </item>
    <item>
      <title>4be3b3eb-b2d3-4f77-9d50-d3602690aaf7</title>
      <link>https://vulnerability.circl.lu/sighting/4be3b3eb-b2d3-4f77-9d50-d3602690aaf7/export</link>
      <description>{"uuid": "4be3b3eb-b2d3-4f77-9d50-d3602690aaf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "https://t.me/securixy_kz/1144", "content": "SAP NetWeaver Unauthenticated Upload Vulnerability CVE-2025-31324\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SAP NetWeaver, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c ReliaQuest, \u044d\u0442\u0430 \u0431\u0440\u0435\u0448\u044c \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n\u2620\ufe0f \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 backdoor-\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0432;\n\ud83d\ude80 \u041d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438;\n\ud83d\udee1\ufe0f CVSS 9.8 - \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c.\n\u26a1 \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\nSAP NetWeaver Visual Composer Framework 7.50\n\n\ud83d\udee1\ufe0f \u0427\u0442\u043e \u0441\u0434\u0435\u043b\u0430\u0442\u044c:\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 (\u0441\u043c. SAP Security Note 3594142)\n\n\ud83d\udee0\ufe0f \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a /developmentserver/metadatauploader\n\u2022 \u0415\u0441\u043b\u0438 Visual Composer \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c\n\u2022 \u041d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0436\u0443\u0440\u043d\u0430\u043b\u043e\u0432 \u0432 SIEM \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c servlet path \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\u2699\ufe0f \u0428\u0430\u0431\u043b\u043e\u043d\u044b Nuclei \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f:\nCVE-2025-31324\nSAP NetWeaver Backdoor\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nReliaQuest \u2014 Threat Spotlight\nQualys \u2014 CVE-2025-31324", "creation_timestamp": "2026-07-13T00:00:18.405074Z"}</description>
      <content:encoded>{"uuid": "4be3b3eb-b2d3-4f77-9d50-d3602690aaf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "https://t.me/securixy_kz/1144", "content": "SAP NetWeaver Unauthenticated Upload Vulnerability CVE-2025-31324\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SAP NetWeaver, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c ReliaQuest, \u044d\u0442\u0430 \u0431\u0440\u0435\u0448\u044c \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n\u2620\ufe0f \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 backdoor-\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0432;\n\ud83d\ude80 \u041d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438;\n\ud83d\udee1\ufe0f CVSS 9.8 - \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c.\n\u26a1 \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\nSAP NetWeaver Visual Composer Framework 7.50\n\n\ud83d\udee1\ufe0f \u0427\u0442\u043e \u0441\u0434\u0435\u043b\u0430\u0442\u044c:\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 (\u0441\u043c. SAP Security Note 3594142)\n\n\ud83d\udee0\ufe0f \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a /developmentserver/metadatauploader\n\u2022 \u0415\u0441\u043b\u0438 Visual Composer \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c\n\u2022 \u041d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0436\u0443\u0440\u043d\u0430\u043b\u043e\u0432 \u0432 SIEM \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c servlet path \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\u2699\ufe0f \u0428\u0430\u0431\u043b\u043e\u043d\u044b Nuclei \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f:\nCVE-2025-31324\nSAP NetWeaver Backdoor\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nReliaQuest \u2014 Threat Spotlight\nQualys \u2014 CVE-2025-31324", "creation_timestamp": "2026-07-13T00:00:18.405074Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/4be3b3eb-b2d3-4f77-9d50-d3602690aaf7/export</guid>
      <pubDate>Mon, 13 Jul 2026 00:00:18 +0000</pubDate>
    </item>
    <item>
      <title>5bf56be7-6b36-43bc-a8dd-5df82e7ee130</title>
      <link>https://vulnerability.circl.lu/sighting/5bf56be7-6b36-43bc-a8dd-5df82e7ee130/export</link>
      <description>{"uuid": "5bf56be7-6b36-43bc-a8dd-5df82e7ee130", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "https://t.me/securixy_kz/1144", "content": "SAP NetWeaver Unauthenticated Upload Vulnerability CVE-2025-31324\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SAP NetWeaver, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c ReliaQuest, \u044d\u0442\u0430 \u0431\u0440\u0435\u0448\u044c \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n\u2620\ufe0f \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 backdoor-\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0432;\n\ud83d\ude80 \u041d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438;\n\ud83d\udee1\ufe0f CVSS 9.8 - \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c.\n\u26a1 \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\nSAP NetWeaver Visual Composer Framework 7.50\n\n\ud83d\udee1\ufe0f \u0427\u0442\u043e \u0441\u0434\u0435\u043b\u0430\u0442\u044c:\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 (\u0441\u043c. SAP Security Note 3594142)\n\n\ud83d\udee0\ufe0f \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a /developmentserver/metadatauploader\n\u2022 \u0415\u0441\u043b\u0438 Visual Composer \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c\n\u2022 \u041d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0436\u0443\u0440\u043d\u0430\u043b\u043e\u0432 \u0432 SIEM \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c servlet path \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\u2699\ufe0f \u0428\u0430\u0431\u043b\u043e\u043d\u044b Nuclei \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f:\nCVE-2025-31324\nSAP NetWeaver Backdoor\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nReliaQuest \u2014 Threat Spotlight\nQualys \u2014 CVE-2025-31324", "creation_timestamp": "2026-07-12T22:00:07.422080Z"}</description>
      <content:encoded>{"uuid": "5bf56be7-6b36-43bc-a8dd-5df82e7ee130", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "https://t.me/securixy_kz/1144", "content": "SAP NetWeaver Unauthenticated Upload Vulnerability CVE-2025-31324\n\n\u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u0435\u0442\u0441\u044f \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0430\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 SAP NetWeaver, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0435\u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u0446\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u043c \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0438\u043c \u0437\u0430\u0433\u0440\u0443\u0436\u0430\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440. \u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c ReliaQuest, \u044d\u0442\u0430 \u0431\u0440\u0435\u0448\u044c \u0443\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0430\u0442\u0430\u043a\u0430\u0445 \u043d\u0430 \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043c\u0438\u0440\u0443.\n\n\u041e\u0441\u043d\u043e\u0432\u043d\u043e\u0435:\n\u2620\ufe0f \u041f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 backdoor-\u0441\u043a\u0440\u0438\u043f\u0442\u043e\u0432;\n\ud83d\ude80 \u041d\u0435 \u0442\u0440\u0435\u0431\u0443\u0435\u0442 \u0430\u0432\u0442\u043e\u0440\u0438\u0437\u0430\u0446\u0438\u0438;\n\ud83d\udee1\ufe0f CVSS 9.8 - \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c.\n\u26a1 \u0417\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0435 \u0432\u0435\u0440\u0441\u0438\u0438:\nSAP NetWeaver Visual Composer Framework 7.50\n\n\ud83d\udee1\ufe0f \u0427\u0442\u043e \u0441\u0434\u0435\u043b\u0430\u0442\u044c:\n\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u044e\u044e \u0437\u0430\u043f\u043b\u0430\u0442\u043a\u0443 (\u0441\u043c. SAP Security Note 3594142)\n\n\ud83d\udee0\ufe0f \u0412\u0440\u0435\u043c\u0435\u043d\u043d\u043e\u0435 \u0440\u0435\u0448\u0435\u043d\u0438\u0435 \u043f\u0440\u0438 \u043d\u0435\u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f:\n\u2022 \u041e\u0433\u0440\u0430\u043d\u0438\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a /developmentserver/metadatauploader\n\u2022 \u0415\u0441\u043b\u0438 Visual Composer \u043d\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f - \u043f\u043e\u043b\u043d\u043e\u0441\u0442\u044c\u044e \u043e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u044c\n\u2022 \u041d\u0430\u0441\u0442\u0440\u043e\u0438\u0442\u044c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0443 \u0436\u0443\u0440\u043d\u0430\u043b\u043e\u0432 \u0432 SIEM \u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u044f\u0442\u044c servlet path \u043d\u0430 \u043d\u0430\u043b\u0438\u0447\u0438\u0435 \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432\n\n\u2699\ufe0f \u0428\u0430\u0431\u043b\u043e\u043d\u044b Nuclei \u0434\u043b\u044f \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f:\nCVE-2025-31324\nSAP NetWeaver Backdoor\n\n\ud83d\udcd6 \u041f\u043e\u0434\u0440\u043e\u0431\u043d\u0435\u0435:\nReliaQuest \u2014 Threat Spotlight\nQualys \u2014 CVE-2025-31324", "creation_timestamp": "2026-07-12T22:00:07.422080Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/5bf56be7-6b36-43bc-a8dd-5df82e7ee130/export</guid>
      <pubDate>Sun, 12 Jul 2026 22:00:07 +0000</pubDate>
    </item>
    <item>
      <title>ac6984cb-e077-45c8-82a6-58ca5a081833</title>
      <link>https://vulnerability.circl.lu/sighting/ac6984cb-e077-45c8-82a6-58ca5a081833/export</link>
      <description>{"uuid": "ac6984cb-e077-45c8-82a6-58ca5a081833", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "published-proof-of-concept", "source": "Telegram/2OctfRjTwTb4sk4IDGTYrwTJ3mtx5aGqcYyOPzacdudXe1iu", "content": "", "creation_timestamp": "2026-07-12T00:00:20.393826Z"}</description>
      <content:encoded>{"uuid": "ac6984cb-e077-45c8-82a6-58ca5a081833", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "published-proof-of-concept", "source": "Telegram/2OctfRjTwTb4sk4IDGTYrwTJ3mtx5aGqcYyOPzacdudXe1iu", "content": "", "creation_timestamp": "2026-07-12T00:00:20.393826Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ac6984cb-e077-45c8-82a6-58ca5a081833/export</guid>
      <pubDate>Sun, 12 Jul 2026 00:00:20 +0000</pubDate>
    </item>
    <item>
      <title>ddf3cd8e-8e86-47e1-87b3-1efcaf73ba8e</title>
      <link>https://vulnerability.circl.lu/sighting/ddf3cd8e-8e86-47e1-87b3-1efcaf73ba8e/export</link>
      <description>{"uuid": "ddf3cd8e-8e86-47e1-87b3-1efcaf73ba8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "published-proof-of-concept", "source": "Telegram/2OctfRjTwTb4sk4IDGTYrwTJ3mtx5aGqcYyOPzacdudXe1iu", "content": "", "creation_timestamp": "2026-07-11T22:00:07.724626Z"}</description>
      <content:encoded>{"uuid": "ddf3cd8e-8e86-47e1-87b3-1efcaf73ba8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "published-proof-of-concept", "source": "Telegram/2OctfRjTwTb4sk4IDGTYrwTJ3mtx5aGqcYyOPzacdudXe1iu", "content": "", "creation_timestamp": "2026-07-11T22:00:07.724626Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/ddf3cd8e-8e86-47e1-87b3-1efcaf73ba8e/export</guid>
      <pubDate>Sat, 11 Jul 2026 22:00:07 +0000</pubDate>
    </item>
    <item>
      <title>33fea086-8b0b-43cc-803a-f5391dbb1fc6</title>
      <link>https://vulnerability.circl.lu/sighting/33fea086-8b0b-43cc-803a-f5391dbb1fc6/export</link>
      <description>{"uuid": "33fea086-8b0b-43cc-803a-f5391dbb1fc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-07-10)", "content": "", "creation_timestamp": "2026-07-11T10:00:06.069383Z"}</description>
      <content:encoded>{"uuid": "33fea086-8b0b-43cc-803a-f5391dbb1fc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31324", "type": "seen", "source": "The Shadowserver (honeypot/common-vulnerabilities) - (2026-07-10)", "content": "", "creation_timestamp": "2026-07-11T10:00:06.069383Z"}</content:encoded>
      <guid isPermaLink="false">https://vulnerability.circl.lu/sighting/33fea086-8b0b-43cc-803a-f5391dbb1fc6/export</guid>
      <pubDate>Sat, 11 Jul 2026 10:00:06 +0000</pubDate>
    </item>
  </channel>
</rss>
