{"vulnerability": "CVE-2020-35847", "sightings": [{"uuid": "21564ce6-41a7-4ab8-b312-8568de372fbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35847", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-06T03:13:44.000000Z"}, {"uuid": "3970c5bc-af5b-44fd-a2fc-aefb9fb0056a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35847", "type": "seen", "source": "MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd", "content": "", "creation_timestamp": "2025-02-23T04:10:28.000000Z"}, {"uuid": "9144c7db-681c-43bd-92ab-9b4e199b68d6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35847", "type": "seen", "source": "https://t.me/cibsecurity/21420", "content": "\u203c CVE-2020-35847 \u203c\n\nAgentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php resetpassword function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-30T07:30:07.000000Z"}, {"uuid": "ff989276-0e60-4515-8eb7-7a82f8ec3bdf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35847", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/cockpit_cms_rce.rb", "content": "", "creation_timestamp": "2021-04-21T12:28:51.000000Z"}, {"uuid": "534ff6b0-7dda-4138-9b39-604b5c461a00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35847", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/527", "content": "#exploit\n1. CVE-2020-8813:\nCacti v1.2.8 RCE Exploit\nhttps://github.com/mhaskar/CVE-2020-8813\n\n2. CVE-2020-35847,\nCVE-2020-35848:\nCockpit CMS NoSQL Injection\nhttps://github.com/w33vils/CVE-2020-35847_CVE-2020-35848", "creation_timestamp": "2024-10-14T21:58:51.000000Z"}]}