{"vulnerability": "cve-2011-2523", "sightings": [{"uuid": "9204c9cd-e5a7-4b16-8aae-72fcb48554bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "exploited", "source": "https://www.exploit-db.com/exploits/49757", "content": "", "creation_timestamp": "2021-04-12T00:00:00.000000Z"}, {"uuid": "b482f629-5ca1-4613-8bc6-8ea403fa826f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/4zq_XAKfBKLeh8gHSvSvrJArlLI6vLMywbvNDmyrYFeYnXc", "content": "", "creation_timestamp": "2025-11-17T03:00:07.000000Z"}, {"uuid": "77e0c91b-7fa2-43c3-b042-78e0a9561047", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://gist.github.com/0x3n0/23a1e338707ada635a1c3b26ddbee8ab", "content": "", "creation_timestamp": "2025-07-17T01:27:32.000000Z"}, {"uuid": "e9e3c273-abdb-4474-a8dd-4f80e05691f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/ftp/vsftpd_234_backdoor.rb", "content": "", "creation_timestamp": "2018-05-29T15:50:33.000000Z"}, {"uuid": "98034f2a-fac6-4944-9ef5-4db304fc1567", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "db99543d-496c-4eef-ad0a-2df2093364df", "vulnerability": "CVE-2011-2523", "type": "confirmed", "source": "https://www.exploit-db.com/exploits/17491", "content": "", "creation_timestamp": "2011-07-05T00:00:00.000000Z"}, {"uuid": "02c1e9f5-3d01-45f2-8925-d01f3a6e1b5a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:12:56.000000Z"}, {"uuid": "317d89d7-bdc2-48c4-ab4b-a9bba1870028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://gist.github.com/Darkcrai86/b4f223bcd344016812062ce12249c0f2", "content": "", "creation_timestamp": "2025-09-26T14:20:45.000000Z"}, {"uuid": "831442ed-aad0-4160-ac5e-fe9a2c56625f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://gist.github.com/yyovil/51865e0e0043f9e11def2e8a4144e468", "content": "", "creation_timestamp": "2025-12-05T16:31:13.000000Z"}, {"uuid": "f767fd8f-17ea-46d2-bc53-b067c0262cc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "https://t.me/bermg1/154", "content": "\ud83d\udd3b \u0645\u0627\u0647\u064a \u062b\u063a\u0631\u0629 Vsftpd 2.3.4 \u061f\n\n\u0647\u064a \u062b\u063a\u0631\u0629 \u0627\u0645\u0627\u0646 \u0641\u064a \u0628\u0631\u0648\u062a\u0648\u0643\u0644 FTP \u0631\u0642\u0645 \u062a\u0639\u0631\u064a\u0641\u0647\u0627 (CVE-2011-2523) \u062a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u062a\u0646\u0641\u064a\u0630 \u0627\u0643\u0648\u0627\u062f \u0648\u0627\u0648\u0627\u0645\u0631 \u0628\u0631\u0645\u062c\u064a\u0629 \u0636\u0627\u0631\u0629 \u0648 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641 \n\n\ud83d\udd3b \u0645\u0627\u0647\u064a \u0637\u0631\u0642 \u0641\u062d\u0635 \u0648\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u061f\n\n\u0643\u0645\u0627 \u0642\u0644\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646 \u0639\u0645\u0644\u064a\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u062a\u0645\u0631 \u0639\u0644\u0649 \u062e\u0645\u0633\u0629 \u0645\u0631\u0627\u062d\u0644 \u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0648\u0627\u0644\u0641\u062d\u0635 \u0648\u0627\u0644\u0623\u0633\u062a\u0637\u0644\u0627\u0639 \u0648\u062a\u062d\u062f\u064a\u062f \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0648\u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u062f\u0639\u0648\u0646\u0627 \u0646\u0641\u0631\u0636 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0628\u0633\u064a\u0637 \u0627\u0644\u0623\u0646 \u0646\u0641\u0631\u0636 \u0627\u0646\u064a \u0641\u064a \u0634\u0631\u0643\u0629 \u0648\u0637\u0644\u0628 \u0645\u0646\u064a \u0627\u0644\u0645\u062f\u064a\u0631 \u0641\u062d\u0635 \u062c\u0647\u0627\u0632 \u062f\u0627\u062e\u0644 \u0647\u0630\u0647 \u0627\u0644\u0634\u0628\u0643\u0629 \u0623\u0648\u0644 \u062e\u0637\u0648\u0629 \u0633\u0623\u0642\u0648\u0645 \u0628\u0647\u0627 \u0628\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0628\u0623\u0633\u062a\u062e\u062f\u0627\u0645 \u0627\u062f\u0627\u0629 Nmap \u0630\u0643\u0631\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646\u0647\u0627 \u0645\u0646 \u0627\u0641\u0636\u0644 \u0627\u062f\u0648\u0627\u062a \u0641\u062d\u0635 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629 \u0641\u064a \u0627\u0644\u0640 Pentesting \u0627\u0644\u0627\u0646 \u0627\u0648\u0644 \u062e\u0637\u0648\u0629 \u0633\u0623\u0642\u0648\u0645 \u0628\u0647\u0627 \u0628\u0639\u0645\u0644 \u0641\u062d\u0635 \u0644\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0623\u0635\u062f\u0627\u0631\u0627\u062a \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a \u0627\u0644\u0645\u0634\u063a\u0644\u0629 \u0639\u0644\u064a\u0647\u0627 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 :\nnmap -sV -T4 127.0.0.1 \n\n \u062c\u064a\u062f \u0627\u0644\u0627\u0646 \u0646\u0641\u0631\u0636 \u0627\u0646\u0647 \u064a\u0648\u062c\u062f \u062c\u062f\u0627\u0631 \u062d\u0645\u0627\u064a\u0629 \u064a\u0642\u0648\u0645 \u0628\u0639\u0645\u0644 Block \u0644\u0639\u0645\u0644\u064a\u0629 \u0627\u0644\u0640 Scan \u0627\u0644\u062d\u0644 \u0628\u0643\u0644 \u0628\u0633\u0627\u0637\u0629 \u0647\u0648 \u0623\u0636\u0627\u0641\u0629 \u0627\u0644\u062e\u064a\u0627\u0631 \"Pn-\" \u0644\u062d\u0644 \u0647\u0630\u0647 \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u0627\u0644\u0627\u0646 \u0628\u0639\u062f \u0627\u0646 \u0642\u0645\u0646\u0627 \u0628\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u062a\u0628\u064a\u0646 \u0644\u0646\u0627 \u0627\u0646 \u0647\u0646\u0627\u0644\u0643 \u0645\u0646\u0641\u0630 FTP \u0645\u0641\u062a\u0648\u062d \u0627\u0644\u0627\u0646 \u062f\u0639\u0648\u0646\u0627 \u0646\u062a\u0639\u0645\u0642 \u0623\u0643\u062b\u0631 \u0648\u0646\u0642\u0648\u0645 \u0628\u0641\u062d\u0635 \u0645\u0646\u0641\u0630 21 \u064a\u0644\u064a \u0647\u0648 \u0645\u0646\u0641\u0630 FTP \u0627\u0644\u0627\u0645\u0631 \u0627\u0644\u062a\u0627\u0644\u064a \u0647\u0648 :\n\nnmap --script ftp-vsftpd-backdoor -p 21 127.0.0.1\n\n\u0627\u0644\u0627\u0646 \u0646\u062a\u0627\u0626\u062c \u0627\u0644\u0641\u062d\u0635 :\nPORT   STATE SERVICE\n21/tcp open  ftp\n| ftp-vsftpd-backdoor:\n|   VULNERABLE:\n|   vsFTPd version 2.3.4 backdoor\n|     State: VULNERABLE (Exploitable)\n|     IDs:  CVE:CVE-2011-2523  BID:48539\n|     Description:\n|       vsFTPd version 2.3.4 backdoor, this was reported on 2011-07-04.\n\n\u0643\u0645\u0627 \u062a\u0631\u0648\u0646 \u0623\u0635\u062f\u0642\u0627\u0626\u064a \u062a\u0623\u0643\u062f\u0646\u0627 \u0627\u0646 \u0627\u0644\u062c\u0647\u0627\u0632 \u0645\u0635\u0627\u0628 \u0641\u0639\u0644\u0627 \u0628\u062b\u063a\u0631\u0629 vsftpd 2.3.4 \u0627\u0644\u0627\u0646 \u0644\u0642\u062f \u0642\u0645\u0646\u0627 \u0628\u0623\u0646\u0647\u0627\u0621 \u0627\u0648\u0644 \u062b\u0644\u0627\u062b \u0645\u0631\u0627\u062d\u0644 \u062a\u0628\u0642\u0649 \u0641\u0642\u0637 \u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0648\u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \ud83d\ude01 \u0628\u0627\u0644\u0646\u0633\u0628\u0629 \u0644\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u064a\u0645\u0643\u0646\u0646\u0627 \u0641\u0639\u0644 \u0630\u0644\u0643 \u0628\u0643\u0644 \u0633\u0647\u0648\u0644\u0629 \u0639\u0646 \u0637\u0631\u064a\u0642 \u0627\u0644\u0627\u062f\u0627\u0629 \u0627\u0644\u0634\u0647\u064a\u0631\u0629   Metasploit \u0641\u064a \u0627\u0644\u0628\u062f\u0627\u064a\u0629 \u062f\u0639\u0648\u0646\u0627 \u0646\u0634\u063a\u0644\u0647\u0627 \u0639\u0646 \u0637\u0631\u064a\u0642 \u0627\u0644\u0623\u0645\u0631 msfconsole \u0648\u0627\u0644\u0627\u0646 \u062f\u0639\u0648\u0646\u0627 \u0646\u0628\u062d\u062b \u0639\u0646 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0642\u0644\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646 \u0645\u064a\u062a\u0627\u0633\u0628\u0644\u0648\u064a\u062a \u0623\u0637\u0627\u0631 \u0639\u0645\u0644 \u0636\u062e\u0645 \u064a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0627\u0644\u0639\u062f\u064a\u062f \u0645\u0646 \u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644\u0627\u062a \u0627\u0644\u0627\u0646 \u064a\u0645\u0643\u0646\u0646\u0627 \u0627\u0644\u0628\u062d\u062b \u0645\u0646 \u062e\u0644\u0627\u0644 search vsftpd 2.3.4 \u0628\u0639\u062f\u0647\u0627 \u0646\u0642\u0648\u0645 \u0628\u0623\u062e\u062a\u064a\u0627\u0631 \u0627\u0644\u0645\u0648\u062f\u064a\u0644 \u0627\u0644\u062a\u0627\u0644\u064a \u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 :\nuse exploit/unix/ftp/vsftpd_234_backdoor \n\n\u0627\u0644\u0627\u0646 \u0646\u0642\u0648\u0644 \u0628\u062a\u062d\u062f\u064a\u062f RHOST \u064a\u0644\u064a \u0647\u0648 ip \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 \nset RHOST 127.0.0.1 \n\n\u0648\u0627\u0644\u0627\u0646 \u0646\u0642\u0648\u0645 \u0628\u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0627\u0645\u0631 exploit \u0627\u0644\u0627\u0646 \u062a\u0645 \u0641\u062a\u062d \u062c\u0644\u0633\u0629 Command Shell \u064a\u0645\u0643\u0646\u0646\u0627 \u0627\u0644\u062a\u062d\u0643\u0645 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0628\u0643\u0644 \u0633\u0647\u0648\u0644\u0629 \u0627\u0644\u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0627\u062e\u064a\u0631\u0629 \u0647\u064a \u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0639\u0645\u0644\u064a\u0647 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u062a\u064a \u062d\u0635\u0644\u062a \u0648\u0627\u0644\u0627\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629 \u0644\u062d\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \n\n\ud83d\udd3b \u064a\u0631\u062c\u0649 \u0627\u0644\u0639\u0644\u0645 \u0627\u0646\u0647 \u064a\u0648\u062c\u062f \u0637\u0631\u0642 \u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0643\u062b\u064a\u0631\u0629 \u0627\u062e\u0631\u0649 \u0644\u0643\u0646\u0646\u064a \u0642\u0645\u062a \u0628\u0637\u0631\u062d \u0645\u062b\u0627\u0644 \u0641\u0642\u0637 \u0644\u0641\u0647\u0645 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 , \u0627\u062a\u0645\u0646\u0649 \u0627\u0646 \u062a\u0643\u0648\u0646\u0648\u0627 \u0642\u062f \u0623\u0633\u062a\u0641\u062f\u062a\u0648\u0627 \u0645\u0646 \u0647\u0630\u0627 \u0627\u0644\u0645\u0642\u0627\u0644 \u0648\u0634\u0643\u0631\u0627 \u0644\u0643\u0645 \u2764\ufe0f\ud83e\udd77\n        \u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\u2122\u2774\u23cc #\u0628\u0631\u0645\u062c\u0647_\u0648\u0625\u0646\u062c\u0640\u0640\u0640\u0627\u0632 \ud83d\udcbb \u23bf\u2775\ud83d\udcf2\n\u23be  https://telegram.me/bermg1 \u23ce", "creation_timestamp": "2024-08-05T19:18:41.000000Z"}, {"uuid": "d45e8218-3779-4cb2-be51-804f7ed2cd47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/TbyvnvMJG36HRPFkPQ_0bqUyF7XZabxxdc_yuEfCHFJjcrI", "content": "", "creation_timestamp": "2025-06-19T21:00:05.000000Z"}, {"uuid": "fb1fb663-a05d-40f0-bd7e-3dbf2633575d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/xqKxuZcrXMn8yShuA9idSauoFTIlSupJTQvyPUek130Kr2g", "content": "", "creation_timestamp": "2025-08-08T09:00:04.000000Z"}, {"uuid": "cdb54f9e-23c4-46c1-9547-908c9498465b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/z3TvDyHJ2ZNCRJ0X9w9PtwT_1v_yQk-ihtqyZcMIGAQJgDU", "content": "", "creation_timestamp": "2026-04-16T03:00:06.000000Z"}, {"uuid": "c5270517-179b-4e9f-9800-0a6d648596f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/FV-Rvp5-nmJlL-ye7soqr1a_vAj5QKyLCRjoohv879P-xrE", "content": "", "creation_timestamp": "2026-01-09T15:00:08.000000Z"}, {"uuid": "d1d728a8-33b2-41ca-aac3-f17778e72285", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/XH19znCpYYgo8U4Hfo5vrZyRbbrCs-tApQ3SmI_fVyYsQZY", "content": "", "creation_timestamp": "2026-04-07T15:00:07.000000Z"}, {"uuid": "bb415be6-4735-4aa3-a710-fc4a2e95e7ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/UOpN9O-nQlxe_OZJbndwLaVXTXD47CPOoDJFNfhkMssuXgQ", "content": "", "creation_timestamp": "2025-08-25T09:00:05.000000Z"}, {"uuid": "e1667b6c-74e8-42b0-82c4-38adf5226bc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/LegGEKh0JTQmQ5caQ5fsgnXr59alAvRjbf9RqdH14mBAnic", "content": "", "creation_timestamp": "2026-04-25T03:00:05.000000Z"}, {"uuid": "4991a411-83e5-43ef-bc2f-35f1d3285a26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/uahf6_F8PIdcSoBJIP2z2NI9nX1hJnv_S07gOiJEB5WdnlM", "content": "", "creation_timestamp": "2025-08-20T15:00:06.000000Z"}, {"uuid": "bfdc877a-c1f8-4f6d-b93b-79ff6aaa24c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/lfASgpARQv2c57G6EJ6ZFDpLBzh_hf6PR1VyFeUcDrYroUc", "content": "", "creation_timestamp": "2025-08-11T09:00:05.000000Z"}, {"uuid": "cec17f9c-74ce-4349-b0b3-1c01899a3c86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/L2PYrboxZLHcrUj1p9ylDTVlId5tME-h7qUD1WFs7JDrYK5y", "content": "", "creation_timestamp": "2023-08-06T21:15:10.000000Z"}, {"uuid": "f76de7f1-d255-42eb-94a3-f2a8cfd4085c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/NMV5sik8sia5UXj83qIxi8prcBwF0gahgeaFEnU786tN0nc", "content": "", "creation_timestamp": "2025-07-12T15:00:06.000000Z"}, {"uuid": "44c3e7df-01f9-4eff-8a45-855e14173da1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/BKE4qYyxMqArREycKe3HN6DFuncKlBcId21tcS12TWKCNCh-", "content": "", "creation_timestamp": "2023-08-10T15:27:41.000000Z"}, {"uuid": "72a097e5-2b72-459f-bd2d-479b4c611345", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/S2uy1Smk9mhzoKfF70Apfb4PIPTgKgtfhq2LKQic9pn4-zI", "content": "", "creation_timestamp": "2025-04-12T23:00:06.000000Z"}, {"uuid": "8a1d0597-70e4-4d18-bb8a-3652ca57873e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://t.me/arpsyndicate/741", "content": "#ExploitObserverAlert\n\nCVE-2011-2523\n\nDESCRIPTION: Exploit Observer has 58 entries related to CVE-2011-2523. vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.\n\nFIRST-EPSS: 0.883420000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-29T13:20:39.000000Z"}, {"uuid": "491043cc-ebfc-4f62-aa89-96a85d925bad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://t.me/arpsyndicate/31", "content": "#ExploitObserverAlert\n\nCVE-2011-2523\n\nDESCRIPTION: Exploit Observer has 52 entries related to CVE-2011-2523. vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.\n\nFIRST-EPSS: 0.883420000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-09T12:57:45.000000Z"}, {"uuid": "bfa3f6d7-f8b1-4399-8eec-2b915fdf2eab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://t.me/arpsyndicate/572", "content": "#ExploitObserverAlert\n\nCVE-2011-2523\n\nDESCRIPTION: Exploit Observer has 55 entries related to CVE-2011-2523. vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.\n\nFIRST-EPSS: 0.883420000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-11-25T04:47:50.000000Z"}, {"uuid": "7905be87-daa2-469e-b847-f5e90f929341", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://t.me/arpsyndicate/1731", "content": "#ExploitObserverAlert\n\nCVE-2011-2523\n\nDESCRIPTION: Exploit Observer has 58 entries related to CVE-2011-2523. vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.\n\nFIRST-EPSS: 0.883420000\nNVD-IS: 5.9\nNVD-ES: 3.9", "creation_timestamp": "2023-12-11T12:23:40.000000Z"}, {"uuid": "45c18bd2-2f9e-4a69-851b-becb41ed8b01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/3Hw0ti8HK8QOqtOY2rsuqDdNwUtzE1sTstZVcrt4AbtXgI8", "content": "", "creation_timestamp": "2025-04-14T23:00:06.000000Z"}, {"uuid": "b6df4e29-b103-4015-a30c-07de7d95afab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/2Mv-2iki26E7M91NoHSItb85uE7hmbSk_CGlhbCKtUOV7I0", "content": "", "creation_timestamp": "2025-04-05T17:00:10.000000Z"}, {"uuid": "1a96a1d4-6c89-4d8a-b24f-5e86357fe050", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/8KrClztxOpt43Dn04vWbNfDSJz2auxqrQryTcHMCR_fwseY", "content": "", "creation_timestamp": "2026-05-14T15:00:07.000000Z"}, {"uuid": "b3d7456d-be0e-4ed9-be0b-66176ef79db5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://t.me/ctinow/195632", "content": "https://ift.tt/7MvlIE0\nCVE-2011-2523 | vsftpd 2.3.4 Service Port 6200 os command injection (ID 162145)", "creation_timestamp": "2024-02-28T16:41:42.000000Z"}, {"uuid": "1f47db36-ba55-439c-a9fe-a3334c15dd89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/tU2jmdbw4RGZTBUbD4dAUWYmR23KETwFYGSN5xZtWnjEejM", "content": "", "creation_timestamp": "2026-04-29T09:00:05.000000Z"}, {"uuid": "d5bc7ea9-5cd3-4e93-8627-eb2db4e2f4c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://t.me/cibsecurity/8383", "content": "ATENTION\u203c New - CVE-2011-2523\n\nvsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2019-11-28T00:31:21.000000Z"}, {"uuid": "f0a01230-a363-49e2-993e-64a9d631d383", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/I9jr2FwJUHwAb81CK7-xeVKSwOp4PweEdPMw4HfzpPMKo1Y", "content": "", "creation_timestamp": "2026-05-09T15:00:07.000000Z"}, {"uuid": "b79de02e-91ac-4cbf-814c-cb9c4f473fa9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/Vb4nGx5dYQiJpRJuBNUH7q81YmTIcxb-wg_wbx-vBfcI_I0", "content": "", "creation_timestamp": "2025-02-20T04:00:07.000000Z"}, {"uuid": "d9c1e5d3-0bd0-489d-957b-dee05498f5b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/UIIil_OEKPCpY2SMStXdCBJaH7xM-W5ZaJi2JXSjxGtvPOo", "content": "", "creation_timestamp": "2025-02-28T04:00:06.000000Z"}, {"uuid": "7e9e7c33-7214-4f85-a6a7-152aa67b75b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurity026/1916", "content": "\ud83d\udd3b \u0645\u0627\u0647\u064a \u062b\u063a\u0631\u0629 Vsftpd 2.3.4 \u061f\n\n\u0647\u064a \u062b\u063a\u0631\u0629 \u0627\u0645\u0627\u0646 \u0641\u064a \u0628\u0631\u0648\u062a\u0648\u0643\u0644 FTP \u0631\u0642\u0645 \u062a\u0639\u0631\u064a\u0641\u0647\u0627 (CVE-2011-2523) \u062a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u062a\u0646\u0641\u064a\u0630 \u0627\u0643\u0648\u0627\u062f \u0648\u0627\u0648\u0627\u0645\u0631 \u0628\u0631\u0645\u062c\u064a\u0629 \u0636\u0627\u0631\u0629 \u0648 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641 \n\n\ud83d\udd3b \u0645\u0627\u0647\u064a \u0637\u0631\u0642 \u0641\u062d\u0635 \u0648\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u061f\n\n\u0643\u0645\u0627 \u0642\u0644\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646 \u0639\u0645\u0644\u064a\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u062a\u0645\u0631 \u0639\u0644\u0649 \u062e\u0645\u0633\u0629 \u0645\u0631\u0627\u062d\u0644 \u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0648\u0627\u0644\u0641\u062d\u0635 \u0648\u0627\u0644\u0623\u0633\u062a\u0637\u0644\u0627\u0639 \u0648\u062a\u062d\u062f\u064a\u062f \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0648\u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u062f\u0639\u0648\u0646\u0627 \u0646\u0641\u0631\u0636 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0628\u0633\u064a\u0637 \u0627\u0644\u0623\u0646 \u0646\u0641\u0631\u0636 \u0627\u0646\u064a \u0641\u064a \u0634\u0631\u0643\u0629 \u0648\u0637\u0644\u0628 \u0645\u0646\u064a \u0627\u0644\u0645\u062f\u064a\u0631 \u0641\u062d\u0635 \u062c\u0647\u0627\u0632 \u062f\u0627\u062e\u0644 \u0647\u0630\u0647 \u0627\u0644\u0634\u0628\u0643\u0629 \u0623\u0648\u0644 \u062e\u0637\u0648\u0629 \u0633\u0623\u0642\u0648\u0645 \u0628\u0647\u0627 \u0628\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0628\u0623\u0633\u062a\u062e\u062f\u0627\u0645 \u0627\u062f\u0627\u0629 Nmap \u0630\u0643\u0631\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646\u0647\u0627 \u0645\u0646 \u0627\u0641\u0636\u0644 \u0627\u062f\u0648\u0627\u062a \u0641\u062d\u0635 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629 \u0641\u064a \u0627\u0644\u0640 Pentesting \u0627\u0644\u0627\u0646 \u0627\u0648\u0644 \u062e\u0637\u0648\u0629 \u0633\u0623\u0642\u0648\u0645 \u0628\u0647\u0627 \u0628\u0639\u0645\u0644 \u0641\u062d\u0635 \u0644\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0623\u0635\u062f\u0627\u0631\u0627\u062a \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a \u0627\u0644\u0645\u0634\u063a\u0644\u0629 \u0639\u0644\u064a\u0647\u0627 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 :\nnmap -sV -T4 127.0.0.1 \n\n \u062c\u064a\u062f \u0627\u0644\u0627\u0646 \u0646\u0641\u0631\u0636 \u0627\u0646\u0647 \u064a\u0648\u062c\u062f \u062c\u062f\u0627\u0631 \u062d\u0645\u0627\u064a\u0629 \u064a\u0642\u0648\u0645 \u0628\u0639\u0645\u0644 Block \u0644\u0639\u0645\u0644\u064a\u0629 \u0627\u0644\u0640 Scan \u0627\u0644\u062d\u0644 \u0628\u0643\u0644 \u0628\u0633\u0627\u0637\u0629 \u0647\u0648 \u0623\u0636\u0627\u0641\u0629 \u0627\u0644\u062e\u064a\u0627\u0631 \"Pn-\" \u0644\u062d\u0644 \u0647\u0630\u0647 \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u0627\u0644\u0627\u0646 \u0628\u0639\u062f \u0627\u0646 \u0642\u0645\u0646\u0627 \u0628\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u062a\u0628\u064a\u0646 \u0644\u0646\u0627 \u0627\u0646 \u0647\u0646\u0627\u0644\u0643 \u0645\u0646\u0641\u0630 FTP \u0645\u0641\u062a\u0648\u062d \u0627\u0644\u0627\u0646 \u062f\u0639\u0648\u0646\u0627 \u0646\u062a\u0639\u0645\u0642 \u0623\u0643\u062b\u0631 \u0648\u0646\u0642\u0648\u0645 \u0628\u0641\u062d\u0635 \u0645\u0646\u0641\u0630 21 \u064a\u0644\u064a \u0647\u0648 \u0645\u0646\u0641\u0630 FTP \u0627\u0644\u0627\u0645\u0631 \u0627\u0644\u062a\u0627\u0644\u064a \u0647\u0648 :\n\nnmap --script ftp-vsftpd-backdoor -p 21 127.0.0.1\n\n\u0627\u0644\u0627\u0646 \u0646\u062a\u0627\u0626\u062c \u0627\u0644\u0641\u062d\u0635 :\nPORT   STATE SERVICE\n21/tcp open  ftp\n| ftp-vsftpd-backdoor:\n|   VULNERABLE:\n|   vsFTPd version 2.3.4 backdoor\n|     State: VULNERABLE (Exploitable)\n|     IDs:  CVE:CVE-2011-2523  BID:48539\n|     Description:\n|       vsFTPd version 2.3.4 backdoor, this was reported on 2011-07-04.\n\n\u0643\u0645\u0627 \u062a\u0631\u0648\u0646 \u0623\u0635\u062f\u0642\u0627\u0626\u064a \u062a\u0623\u0643\u062f\u0646\u0627 \u0627\u0646 \u0627\u0644\u062c\u0647\u0627\u0632 \u0645\u0635\u0627\u0628 \u0641\u0639\u0644\u0627 \u0628\u062b\u063a\u0631\u0629 vsftpd 2.3.4 \u0627\u0644\u0627\u0646 \u0644\u0642\u062f \u0642\u0645\u0646\u0627 \u0628\u0623\u0646\u0647\u0627\u0621 \u0627\u0648\u0644 \u062b\u0644\u0627\u062b \u0645\u0631\u0627\u062d\u0644 \u062a\u0628\u0642\u0649 \u0641\u0642\u0637 \u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0648\u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \ud83d\ude01 \u0628\u0627\u0644\u0646\u0633\u0628\u0629 \u0644\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u064a\u0645\u0643\u0646\u0646\u0627 \u0641\u0639\u0644 \u0630\u0644\u0643 \u0628\u0643\u0644 \u0633\u0647\u0648\u0644\u0629 \u0639\u0646 \u0637\u0631\u064a\u0642 \u0627\u0644\u0627\u062f\u0627\u0629 \u0627\u0644\u0634\u0647\u064a\u0631\u0629   Metasploit \u0641\u064a \u0627\u0644\u0628\u062f\u0627\u064a\u0629 \u062f\u0639\u0648\u0646\u0627 \u0646\u0634\u063a\u0644\u0647\u0627 \u0639\u0646 \u0637\u0631\u064a\u0642 \u0627\u0644\u0623\u0645\u0631 msfconsole \u0648\u0627\u0644\u0627\u0646 \u062f\u0639\u0648\u0646\u0627 \u0646\u0628\u062d\u062b \u0639\u0646 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0642\u0644\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646 \u0645\u064a\u062a\u0627\u0633\u0628\u0644\u0648\u064a\u062a \u0623\u0637\u0627\u0631 \u0639\u0645\u0644 \u0636\u062e\u0645 \u064a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0627\u0644\u0639\u062f\u064a\u062f \u0645\u0646 \u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644\u0627\u062a \u0627\u0644\u0627\u0646 \u064a\u0645\u0643\u0646\u0646\u0627 \u0627\u0644\u0628\u062d\u062b \u0645\u0646 \u062e\u0644\u0627\u0644 search vsftpd 2.3.4 \u0628\u0639\u062f\u0647\u0627 \u0646\u0642\u0648\u0645 \u0628\u0623\u062e\u062a\u064a\u0627\u0631 \u0627\u0644\u0645\u0648\u062f\u064a\u0644 \u0627\u0644\u062a\u0627\u0644\u064a \u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 :\nuse exploit/unix/ftp/vsftpd_234_backdoor \n\n\u0627\u0644\u0627\u0646 \u0646\u0642\u0648\u0644 \u0628\u062a\u062d\u062f\u064a\u062f RHOST \u064a\u0644\u064a \u0647\u0648 ip \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 \nset RHOST 127.0.0.1 \n\n\u0648\u0627\u0644\u0627\u0646 \u0646\u0642\u0648\u0645 \u0628\u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0627\u0645\u0631 exploit \u0627\u0644\u0627\u0646 \u062a\u0645 \u0641\u062a\u062d \u062c\u0644\u0633\u0629 Command Shell \u064a\u0645\u0643\u0646\u0646\u0627 \u0627\u0644\u062a\u062d\u0643\u0645 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0628\u0643\u0644 \u0633\u0647\u0648\u0644\u0629 \u0627\u0644\u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0627\u062e\u064a\u0631\u0629 \u0647\u064a \u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0639\u0645\u0644\u064a\u0647 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u062a\u064a \u062d\u0635\u0644\u062a \u0648\u0627\u0644\u0627\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629 \u0644\u062d\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \n\n\ud83d\udd3b \u064a\u0631\u062c\u0649 \u0627\u0644\u0639\u0644\u0645 \u0627\u0646\u0647 \u064a\u0648\u062c\u062f \u0637\u0631\u0642 \u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0643\u062b\u064a\u0631\u0629 \u0627\u062e\u0631\u0649 \u0644\u0643\u0646\u0646\u064a \u0642\u0645\u062a \u0628\u0637\u0631\u062d \u0645\u062b\u0627\u0644 \u0641\u0642\u0637 \u0644\u0641\u0647\u0645 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 , \u0627\u062a\u0645\u0646\u0649 \u0627\u0646 \u062a\u0643\u0648\u0646\u0648\u0627 \u0642\u062f \u0623\u0633\u062a\u0641\u062f\u062a\u0648\u0627 \u0645\u0646 \u0647\u0630\u0627 \u0627\u0644\u0645\u0642\u0627\u0644 \u0648\u0634\u0643\u0631\u0627 \u0644\u0643\u0645 \u2764\ufe0f\ud83e\udd77", "creation_timestamp": "2023-08-10T21:25:55.000000Z"}, {"uuid": "3424888b-3e47-4a8e-a9f0-d008dfee1726", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "exploited", "source": "https://t.me/pwnwiki_zhchannel/143", "content": "CVE-2011-2523 vsftpd 2.3.4 \u5f8c\u9580\u547d\u4ee4\u57f7\u884c\u6f0f\u6d1e\nhttps://www.pwnwiki.org/index.php?title=CVE-2011-2523_vsftpd_2.3.4_%E5%BE%8C%E9%96%80%E5%91%BD%E4%BB%A4%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E", "creation_timestamp": "2021-09-21T06:42:50.000000Z"}, {"uuid": "94ca2276-af58-47f9-ad8e-9f09e34f4240", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "https://t.me/jokerplstaeen/20815", "content": "\ud83d\udd3b \u0645\u0627\u0647\u064a \u062b\u063a\u0631\u0629 Vsftpd 2.3.4 \u061f\n\n\u0647\u064a \u062b\u063a\u0631\u0629 \u0627\u0645\u0627\u0646 \u0641\u064a \u0628\u0631\u0648\u062a\u0648\u0643\u0644 FTP \u0631\u0642\u0645 \u062a\u0639\u0631\u064a\u0641\u0647\u0627 (CVE-2011-2523) \u062a\u0633\u0645\u062d \u0644\u0644\u0645\u0647\u0627\u062c\u0645 \u0628\u062a\u0646\u0641\u064a\u0630 \u0627\u0643\u0648\u0627\u062f \u0648\u0627\u0648\u0627\u0645\u0631 \u0628\u0631\u0645\u062c\u064a\u0629 \u0636\u0627\u0631\u0629 \u0648 \u062e\u0637\u064a\u0631\u0629 \u0641\u064a \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641 \n\n\ud83d\udd3b \u0645\u0627\u0647\u064a \u0637\u0631\u0642 \u0641\u062d\u0635 \u0648\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u061f\n\n\u0643\u0645\u0627 \u0642\u0644\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646 \u0639\u0645\u0644\u064a\u0629 \u0627\u062e\u062a\u0628\u0627\u0631 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u062a\u0645\u0631 \u0639\u0644\u0649 \u062e\u0645\u0633\u0629 \u0645\u0631\u0627\u062d\u0644 \u062c\u0645\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0648\u0627\u0644\u0641\u062d\u0635 \u0648\u0627\u0644\u0623\u0633\u062a\u0637\u0644\u0627\u0639 \u0648\u062a\u062d\u062f\u064a\u062f \u0627\u0644\u062b\u063a\u0631\u0629 \u0648\u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0648\u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u062f\u0639\u0648\u0646\u0627 \u0646\u0641\u0631\u0636 \u0633\u064a\u0646\u0627\u0631\u064a\u0648 \u0628\u0633\u064a\u0637 \u0627\u0644\u0623\u0646 \u0646\u0641\u0631\u0636 \u0627\u0646\u064a \u0641\u064a \u0634\u0631\u0643\u0629 \u0648\u0637\u0644\u0628 \u0645\u0646\u064a \u0627\u0644\u0645\u062f\u064a\u0631 \u0641\u062d\u0635 \u062c\u0647\u0627\u0632 \u062f\u0627\u062e\u0644 \u0647\u0630\u0647 \u0627\u0644\u0634\u0628\u0643\u0629 \u0623\u0648\u0644 \u062e\u0637\u0648\u0629 \u0633\u0623\u0642\u0648\u0645 \u0628\u0647\u0627 \u0628\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0628\u0623\u0633\u062a\u062e\u062f\u0627\u0645 \u0627\u062f\u0627\u0629 Nmap \u0630\u0643\u0631\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646\u0647\u0627 \u0645\u0646 \u0627\u0641\u0636\u0644 \u0627\u062f\u0648\u0627\u062a \u0641\u062d\u0635 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629 \u0641\u064a \u0627\u0644\u0640 Pentesting \u0627\u0644\u0627\u0646 \u0627\u0648\u0644 \u062e\u0637\u0648\u0629 \u0633\u0623\u0642\u0648\u0645 \u0628\u0647\u0627 \u0628\u0639\u0645\u0644 \u0641\u062d\u0635 \u0644\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u0627\u0644\u0623\u0635\u062f\u0627\u0631\u0627\u062a \u0648\u0627\u0644\u062e\u062f\u0645\u0627\u062a \u0627\u0644\u0645\u0634\u063a\u0644\u0629 \u0639\u0644\u064a\u0647\u0627 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 :\nnmap -sV -T4 127.0.0.1 \n\n \u062c\u064a\u062f \u0627\u0644\u0627\u0646 \u0646\u0641\u0631\u0636 \u0627\u0646\u0647 \u064a\u0648\u062c\u062f \u062c\u062f\u0627\u0631 \u062d\u0645\u0627\u064a\u0629 \u064a\u0642\u0648\u0645 \u0628\u0639\u0645\u0644 Block \u0644\u0639\u0645\u0644\u064a\u0629 \u0627\u0644\u0640 Scan \u0627\u0644\u062d\u0644 \u0628\u0643\u0644 \u0628\u0633\u0627\u0637\u0629 \u0647\u0648 \u0623\u0636\u0627\u0641\u0629 \u0627\u0644\u062e\u064a\u0627\u0631 \"Pn-\" \u0644\u062d\u0644 \u0647\u0630\u0647 \u0627\u0644\u0645\u0634\u0643\u0644\u0629 \u0627\u0644\u0627\u0646 \u0628\u0639\u062f \u0627\u0646 \u0642\u0645\u0646\u0627 \u0628\u0641\u062d\u0635 \u0627\u0644\u0645\u0646\u0627\u0641\u0630 \u0648\u062a\u0628\u064a\u0646 \u0644\u0646\u0627 \u0627\u0646 \u0647\u0646\u0627\u0644\u0643 \u0645\u0646\u0641\u0630 FTP \u0645\u0641\u062a\u0648\u062d \u0627\u0644\u0627\u0646 \u062f\u0639\u0648\u0646\u0627 \u0646\u062a\u0639\u0645\u0642 \u0623\u0643\u062b\u0631 \u0648\u0646\u0642\u0648\u0645 \u0628\u0641\u062d\u0635 \u0645\u0646\u0641\u0630 21 \u064a\u0644\u064a \u0647\u0648 \u0645\u0646\u0641\u0630 FTP \u0627\u0644\u0627\u0645\u0631 \u0627\u0644\u062a\u0627\u0644\u064a \u0647\u0648 :\n\nnmap --script ftp-vsftpd-backdoor -p 21 127.0.0.1\n\n\u0627\u0644\u0627\u0646 \u0646\u062a\u0627\u0626\u062c \u0627\u0644\u0641\u062d\u0635 :\nPORT   STATE SERVICE\n21/tcp open  ftp\n| ftp-vsftpd-backdoor:\n|   VULNERABLE:\n|   vsFTPd version 2.3.4 backdoor\n|     State: VULNERABLE (Exploitable)\n|     IDs:  CVE:CVE-2011-2523  BID:48539\n|     Description:\n|       vsFTPd version 2.3.4 backdoor, this was reported on 2011-07-04.\n\n\u0643\u0645\u0627 \u062a\u0631\u0648\u0646 \u0623\u0635\u062f\u0642\u0627\u0626\u064a \u062a\u0623\u0643\u062f\u0646\u0627 \u0627\u0646 \u0627\u0644\u062c\u0647\u0627\u0632 \u0645\u0635\u0627\u0628 \u0641\u0639\u0644\u0627 \u0628\u062b\u063a\u0631\u0629 vsftpd 2.3.4 \u0627\u0644\u0627\u0646 \u0644\u0642\u062f \u0642\u0645\u0646\u0627 \u0628\u0623\u0646\u0647\u0627\u0621 \u0627\u0648\u0644 \u062b\u0644\u0627\u062b \u0645\u0631\u0627\u062d\u0644 \u062a\u0628\u0642\u0649 \u0641\u0642\u0637 \u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0648\u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \ud83d\ude01 \u0628\u0627\u0644\u0646\u0633\u0628\u0629 \u0644\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u064a\u0645\u0643\u0646\u0646\u0627 \u0641\u0639\u0644 \u0630\u0644\u0643 \u0628\u0643\u0644 \u0633\u0647\u0648\u0644\u0629 \u0639\u0646 \u0637\u0631\u064a\u0642 \u0627\u0644\u0627\u062f\u0627\u0629 \u0627\u0644\u0634\u0647\u064a\u0631\u0629   Metasploit \u0641\u064a \u0627\u0644\u0628\u062f\u0627\u064a\u0629 \u062f\u0639\u0648\u0646\u0627 \u0646\u0634\u063a\u0644\u0647\u0627 \u0639\u0646 \u0637\u0631\u064a\u0642 \u0627\u0644\u0623\u0645\u0631 msfconsole \u0648\u0627\u0644\u0627\u0646 \u062f\u0639\u0648\u0646\u0627 \u0646\u0628\u062d\u062b \u0639\u0646 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0642\u0644\u0646\u0627 \u0645\u0633\u0628\u0642\u0627\u064b \u0627\u0646 \u0645\u064a\u062a\u0627\u0633\u0628\u0644\u0648\u064a\u062a \u0623\u0637\u0627\u0631 \u0639\u0645\u0644 \u0636\u062e\u0645 \u064a\u062d\u062a\u0648\u064a \u0639\u0644\u0649 \u0627\u0644\u0639\u062f\u064a\u062f \u0645\u0646 \u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644\u0627\u062a \u0627\u0644\u0627\u0646 \u064a\u0645\u0643\u0646\u0646\u0627 \u0627\u0644\u0628\u062d\u062b \u0645\u0646 \u062e\u0644\u0627\u0644 search vsftpd 2.3.4 \u0628\u0639\u062f\u0647\u0627 \u0646\u0642\u0648\u0645 \u0628\u0623\u062e\u062a\u064a\u0627\u0631 \u0627\u0644\u0645\u0648\u062f\u064a\u0644 \u0627\u0644\u062a\u0627\u0644\u064a \u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 :\nuse exploit/unix/ftp/vsftpd_234_backdoor \n\n\u0627\u0644\u0627\u0646 \u0646\u0642\u0648\u0644 \u0628\u062a\u062d\u062f\u064a\u062f RHOST \u064a\u0644\u064a \u0647\u0648 ip \u0627\u0644\u0646\u0638\u0627\u0645 \u0627\u0644\u0645\u0633\u062a\u0647\u062f\u0641 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0623\u0645\u0631 \nset RHOST 127.0.0.1 \n\n\u0648\u0627\u0644\u0627\u0646 \u0646\u0642\u0648\u0645 \u0628\u0627\u0644\u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0645\u0646 \u062e\u0644\u0627\u0644 \u0627\u0644\u0627\u0645\u0631 exploit \u0627\u0644\u0627\u0646 \u062a\u0645 \u0641\u062a\u062d \u062c\u0644\u0633\u0629 Command Shell \u064a\u0645\u0643\u0646\u0646\u0627 \u0627\u0644\u062a\u062d\u0643\u0645 \u0628\u0627\u0644\u0646\u0638\u0627\u0645 \u0628\u0643\u0644 \u0633\u0647\u0648\u0644\u0629 \u0627\u0644\u0645\u0631\u062d\u0644\u0629 \u0627\u0644\u0627\u062e\u064a\u0631\u0629 \u0647\u064a \u0643\u062a\u0627\u0628\u0629 \u0627\u0644\u062a\u0642\u0631\u064a\u0631 \u0639\u0646 \u0639\u0645\u0644\u064a\u0647 \u0627\u0644\u0627\u062e\u062a\u0631\u0627\u0642 \u0627\u0644\u062a\u064a \u062d\u0635\u0644\u062a \u0648\u0627\u0644\u0627\u062f\u0648\u0627\u062a \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645\u0629 \u0644\u062d\u0644 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 \n\n\ud83d\udd3b \u064a\u0631\u062c\u0649 \u0627\u0644\u0639\u0644\u0645 \u0627\u0646\u0647 \u064a\u0648\u062c\u062f \u0637\u0631\u0642 \u0623\u0633\u062a\u063a\u0644\u0627\u0644 \u0643\u062b\u064a\u0631\u0629 \u0627\u062e\u0631\u0649 \u0644\u0643\u0646\u0646\u064a \u0642\u0645\u062a \u0628\u0637\u0631\u062d \u0645\u062b\u0627\u0644 \u0641\u0642\u0637 \u0644\u0641\u0647\u0645 \u0647\u0630\u0647 \u0627\u0644\u062b\u063a\u0631\u0629 , \u0627\u062a\u0645\u0646\u0649 \u0627\u0646 \u062a\u0643\u0648\u0646\u0648\u0627 \u0642\u062f \u0623\u0633\u062a\u0641\u062f\u062a\u0648\u0627 \u0645\u0646 \u0647\u0630\u0627 \u0627\u0644\u0645\u0642\u0627\u0644 \u0648\u0634\u0643\u0631\u0627 \u0644\u0643\u0645 \u2764\ufe0f\ud83e\udd77", "creation_timestamp": "2023-09-16T07:38:37.000000Z"}, {"uuid": "b2c4d7f5-9def-4ee7-8a29-4b01b0a17bac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://bsky.app/profile/securityelites.bsky.social/post/3mmbrmputgo2j", "content": "Metasploitable vsftpd Backdoor Lab \u2014 CVE-2011-2523 Exploit\u00a0Guide\n\nExploit vsftpd 2.3.4 backdoor on Metasploitable 2026. CVE-2011-2523 manual exploitation, Metasploit module, root shell verification and remediation. Lab 5 guide.", "creation_timestamp": "2026-05-20T11:14:16.166496Z"}, {"uuid": "1194e041-e16d-46a0-9f2a-786525b2c13e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/7cUPikWYVy9ZWytWyAxwh66xAlCEPyyOlWhVl_FYZCzkhJ4", "content": "", "creation_timestamp": "2026-05-16T03:00:05.000000Z"}, {"uuid": "ac2ffd71-a8eb-4ec0-b20c-11639dc28cfa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://bsky.app/profile/securityelites1.bsky.social/post/3mmbrxe33xz23", "content": "\ud83d\udce2 Metasploitable vsftpd Backdoor Lab \u2014 CVE-2011-2523 Exploit Guide\n\nExploit vsftpd 2.3.4 backdoor on Metasploitable 2026.\n\nhttps://securityelites.com/metasploitable-vsftpd-backdoor-lab-2026/\n\n#cve20112523 #cybersecuritylab", "creation_timestamp": "2026-05-20T11:20:12.222510Z"}, {"uuid": "aaef6085-efbf-450a-9269-e57b2088e8fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/eEkK6PVbdDfglsyujSuxBWIZjJpDuh84Njq8yhH-Zu1Cfr8", "content": "", "creation_timestamp": "2026-05-18T03:00:06.000000Z"}, {"uuid": "fef90036-a22e-49f1-9878-cca8377f8314", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/ZaHXjBqHV5p0kjhml26f_2eMLQEVC_NJ4MXuG-5T_OiTVdE", "content": "", "creation_timestamp": "2026-05-23T21:00:04.000000Z"}, {"uuid": "447ed811-8c7a-4e1b-b611-0875c2fcc469", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/hGWk8MIih0D3DxUwNWRe3y8KubP65D3PuLH-MA53N78330U", "content": "", "creation_timestamp": "2026-06-02T15:00:07.000000Z"}, {"uuid": "8df8ed76-c3a9-465c-9ab9-e4478ca4e562", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "Telegram/2GKVzEdq0Q1GgXdde3R68qhjmtmEcsIfO4W2udc5u2OvA5M", "content": "", "creation_timestamp": "2026-06-05T09:00:04.000000Z"}, {"uuid": "9c2ec36e-e5e4-4e08-949c-602fd38150b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "seen", "source": "https://gist.github.com/magajay4life-pixel/f7260a84b8e6d9a00baa0febf00bfd83", "content": "ID,Asset,Vulnerability,CVE,CVSS,Severity,Exploitability,Business Impact,Risk Rating,Remediation,Owner,Status\nVULN-001,Metasploitable Linux Server,Outdated Apache server 2.2.x EOL,N/A,9.8,Critical,High - Public exploits,Remote compromise,Critical,Upgrade Apache to 2.4+ and apply patches,WebAdmin,Open\nVULN-002,Metasploitable Linux Server,Operating system Ubuntu 8.04 EOL,N/A,10.0,Critical,High - No patches,Full system compromise,Critical,Upgrade to supported OS version,SysAdmin,Open\nVULN-003,Metasploitable Linux Server,Apache PHP-CGI Remote Code Execution,N/A,7.8,High,High - Metasploit module,Remote code execution,High,Disable CGI or patch PHP/Apache,WebAdmin,Open\nVULN-004,Metasploitable Linux Server,PHP-CGI query string injection,N/A,7.8,High,High - Public PoC,Remote code execution,High,Patch PHP and secure configurations,WebAdmin,Open\nVULN-005,Metasploitable Linux Server,CGI Remote File Inclusion,N/A,9.8,Critical,High - Metasploit module,System takeover,Critical,Disable remote file inclusion and validate inputs,WebAdmin,Open\nVULN-006,Metasploitable Linux Server,Publicly accessible phpinfo file,CWE-552,6.8,Medium,Medium - Recon,aids exploitation,Medium,Remove phpinfo files,WebAdmin,Open\nVULN-007,Metasploitable Linux Server,PHP version exposed via headers,N/A,7.5,High,Medium - Targeting known vulns,Targeted attacks,High,Disable expose_php,WebAdmin,Open\nVULN-008,Metasploitable Linux Server,Backup and sensitive files exposed,N/A,8.0,High,Medium - Direct access,Credential theft,High,Remove backup files and enforce access control,WebAdmin,Open\nVULN-009,Metasploitable Linux Server,Directory indexing enabled,CVE-1999-0678,6.5,Medium,Medium - Recon,Information disclosure,Medium,Disable directory listing,WebAdmin,Open\nVULN-010,Metasploitable Linux Server,Default Apache files exposed,N/A,9.2,Critical,Medium - Fingerprinting,Server fingerprinting,Critical,Remove default files,WebAdmin,Open\nVULN-011,Metasploitable Linux Server,HTTP TRACE/TRACK methods enabled,N/A,5.8,Medium,Medium - XST,Cookie/auth header exposure,Medium,Disable TRACE/TRACK,WebAdmin,Open\nVULN-012,Metasploitable Linux Server,Missing anti-clickjacking protection,N/A,6.8,Medium,Medium - Clickjacking,UI redress attacks,Medium,Add X-Frame-Options or CSP frame-ancestors,WebAdmin,Open\nVULN-013,Metasploitable Linux Server,Missing X-Content-Type-Options header,N/A,6.8,Medium,Medium - MIME sniffing,Malicious content execution,Medium,Add nosniff header,WebAdmin,Open\nVULN-014,Metasploitable Linux Server,Server responds to unsupported HTTP methods,N/A,7.5,High,Medium - Increased attack surface,Exploitation potential,High,Restrict HTTP methods,WebAdmin,Open\nVULN-015,Metasploitable Linux Server,Apache MultiViews enabled,CVE-2001-0731,7.5,High,Medium - Brute force,Discover hidden resources,High,Disable MultiViews,WebAdmin,Open\nVULN-016,Metasploitable Linux Server,phpMyAdmin exposed,N/A,7.0,High,High - SQLi/XSS,Database compromise,High,Restrict access and upgrade phpMyAdmin,DBA,Open\nVULN-017,Metasploitable Linux Server,vsFTPd backdoor vulnerability,CVE-2011-2523,10.0,Critical,High - Metasploit module,Remote root shell,Critical,Remove or patch FTP service,SysAdmin,Open\nVULN-018,Metasploitable Linux Server,UnrealIRCd backdoor,N/A,10.0,Critical,High - Metasploit module,Full compromise,Critical,Replace compromised service,SysAdmin,Open\nVULN-019,Metasploitable Linux Server,Bind shell backdoor detected,N/A,10.0,Critical,High - Active backdoor,Unauthorized remote access,Critical,Investigate and remove backdoor,SysAdmin,Open\nVULN-020,Metasploitable Linux Server,RMI registry remote class loading,N/A,9.0,Critical,High - RCE,Arbitrary code execution,Critical,Secure or disable RMI service,SysAdmin,Open\nVULN-021,Metasploitable Linux Server,VNC weak/default password,N/A,10.0,Critical,High - Brute force,Remote desktop access,Critical,Enforce strong authentication,SysAdmin,Open\nVULN-022,Metasploitable Linux Server,Telnet transmits credentials plaintext,N/A,9.8,Critical,High - MITM/Capture,Credential interception,Critical,Disable Telnet use SSH,SysAdmin,Open\nVULN-023,Metasploitable Linux Server,rlogin and rsh services enabled,N/A,9.8,Critical,High - Credential interception,Unauthorized access,Critical,Disable legacy services,SysAdmin,Open\nVULN-024,Metasploitable Linux Server,NFS shares world-readable,N/A,9.8,Critical,Medium - Mount shares,Data exposure,Critical,Restrict NFS permissions,SysAdmin,Open\nVULN-025,Metasploitable Linux Server,SMB signing not enforced,N/A,9.8,Critical,High - MITM/Session hijack,Session hijacking,Critical,Enable SMB signing,SysAdmin,Open\nVULN-026,Metasploitable Linux Server,Samba Badlock vulnerability,CVE-2016-2118,9.8,Critical,High - Public exploit,Privilege escalation,Critical,Patch Samba,SysAdmin,Open\nVULN-027,Metasploitable Linux Server,DNS cache poisoning,N/A,9.8,Critical,High - Cache poisoning,Traffic redirection,Critical,Patch DNS server,SysAdmin,Open\nVULN-028,Metasploitable Linux Server,DNS cache snooping,N/A,9.8,Critical,Medium - Info disclosure,Network activity inference,Critical,Restrict DNS recursion,SysAdmin,Open\nVULN-029,Metasploitable Linux Server,BIND DNS vulnerable to DoS,N/A,9.8,Critical,Medium - DoS,Service disruption,Critical,Upgrade BIND,SysAdmin,Open\nVULN-030,Metasploitable Linux Server,Slowloris DoS vulnerability,CVE-2007-6750,9.8,Critical,High - Resource exhaustion,Service unavailability,Critical,Configure connection limits/timeouts,WebAdmin,Open\nVULN-031,Metasploitable Linux Server,Weak SSL/TLS protocols SSLv2 SSLv3 TLS1.0,N/A,9.8,Critical,High - Downgrade attacks,Traffic interception,Critical,Disable weak protocols,WebAdmin,Open\nVULN-032,Metasploitable Linux Server,SSL POODLE vulnerability,CVE-2014-3566,9.8,Critical,Medium - Padding oracle,Decrypt encrypted traffic,Critical,Disable SSLv3,WebAdmin,Open\nVULN-033,Metasploitable Linux Server,SSL CCS Injection vulnerability,CVE-2014-0224,9.8,Critical,High - MITM,Session hijacking,Critical,Patch OpenSSL,WebAdmin,Open\nVULN-034,Metasploitable Linux Server,Weak Diffie-Hellman parameters Logjam,CVE-2015-4000,7.5,High,Medium - Downgrade,Decrypt traffic,High,Use strong DH groups,WebAdmin,Open\nVULN-035,Metasploitable Linux Server,Weak/anonymous cipher suites,N/A,7.5,High,Medium - Intercept,Communication interception,High,Disable weak ciphers,WebAdmin,Open\nVULN-036,Metasploitable Linux Server,RC4 cipher supported,N/A,6.8,Medium,Medium - Cryptographic attacks,Communication exposure,Medium,Disable RC4,WebAdmin,Open\nVULN-037,Metasploitable Linux Server,FREAK vulnerability,CVE-2015-0204,6.8,Medium,Medium - Downgrade,Weak encryption,Critical,Disable export ciphers,WebAdmin,Open\nVULN-038,Metasploitable Linux Server,SWEET32 vulnerability,N/A,9.8,Critical,Medium - Collision attacks,Session collision,Critical,Disable 3DES,WebAdmin,Open\nVULN-039,Metasploitable Linux Server,DROWN vulnerability,N/A,9.8,Critical,High - SSLv2 exploit,TLS session decryption,Critical,Disable SSLv2,WebAdmin,Open\nVULN-040,Metasploitable Linux Server,SSL certificate issues,N/A,9.8,Critical,Medium - MITM,Trust reduction/C MITM,Critical,Use valid certificates,WebAdmin,Open\nVULN-041,Metasploitable Linux Server,Weak SSH algorithms,N/A,9.8,Critical,High - Session compromise,Encrypted session compromise,Critical,Use strong algorithms,SysAdmin,Open\nVULN-042,Metasploitable Linux Server,Session cookies lack HttpOnly flag,N/A,9.8,Critical,High - XSS token theft,Session token access,Critical,Set HttpOnly and Secure flags,WebAdmin,Open\nVULN-043,Metasploitable Linux Server,Multiple exposed admin panels,N/A,9.8,Critical,High - Unauthorized access,File upload attacks,Critical,Restrict access and secure endpoints,WebAdmin,Open\nVULN-044,Metasploitable Linux Server,Apache Tomcat EOL version,N/A,9.8,Critical,High - Known exploits,Remote code execution,Critical,Upgrade Tomcat,WebAdmin,Open\nVULN-045,Metasploitable Linux Server,Weak password hashing MD5,N/A,9.8,Critical,High - Cracking,Password cracking,Critical,Use bcrypt/Argon2,SysAdmin,Open\nVULN-046,Metasploitable Linux Server,Application error disclosure,N/A,7.5,Critical,Medium - Info disclosure,Targeted attacks,Critical,Implement generic error handling,WebAdmin,Open\nVULN-047,Metasploitable Linux Server,Missing Content Security Policy,N/A,9.8,Critical,High - XSS/Data injection,XSS and data injection,Critical,Implement CSP header,WebAdmin,Open\nVULN-048,Metasploitable Linux Server,Vulnerable/outdated JavaScript library,N/A,6.8,Critical,Medium - XSS/Script injection,Client-side attacks,Critical,Update JS libraries,WebAdmin,Open", "creation_timestamp": "2026-06-16T06:00:26.000000Z"}, {"uuid": "73957224-1b3d-4a4e-b2eb-649b0f5aac3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2011-2523", "type": "published-proof-of-concept", "source": "Telegram/zpx2YN7HInPMmQ8KG8pYv6IBDfgk2AtEtv7usM5yLCaH_Ks", "content": "", "creation_timestamp": "2026-06-08T05:00:05.000000Z"}]}