{"vulnerability": "CVE-2020-35848", "sightings": [{"uuid": "2759526a-8a24-44f8-96a3-25f62c3547eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35848", "type": "published-proof-of-concept", "source": "Telegram/5XGpncEfRIuewYJEc34aWTFVRwMO65Yc4SMMQva9F06aJhs", "content": "", "creation_timestamp": "2025-07-13T21:00:04.000000Z"}, {"uuid": "274a80e5-218c-430e-bba4-e1f90f59127d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35848", "type": "seen", "source": "https://t.me/cibsecurity/21423", "content": "\u203c CVE-2020-35848 \u203c\n\nAgentejo Cockpit before 0.11.2 allows NoSQL injection via the Controller/Auth.php newpassword function.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-30T07:30:09.000000Z"}, {"uuid": "e6d3087c-e2c3-4de3-b622-7ea846086dc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-35848", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/527", "content": "#exploit\n1. CVE-2020-8813:\nCacti v1.2.8 RCE Exploit\nhttps://github.com/mhaskar/CVE-2020-8813\n\n2. CVE-2020-35847,\nCVE-2020-35848:\nCockpit CMS NoSQL Injection\nhttps://github.com/w33vils/CVE-2020-35847_CVE-2020-35848", "creation_timestamp": "2024-10-14T21:58:51.000000Z"}]}