{"vulnerability": "cve-2021-3007", "sightings": [{"uuid": "10e37d0c-4d47-405b-a759-1b8c5739f8c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "https://gist.github.com/KrE80r/3deac6d66afa24e661d4ff3240e899a7", "content": "", "creation_timestamp": "2025-12-05T10:35:54.000000Z"}, {"uuid": "8f8b700d-6fc1-4e8f-ba8b-d0a66dbe7208", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/61767", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aCVE-2021-3007 Vulnerable Test Environment - Laminas/Zend Framework Deserialization RCE\nURL\uff1ahttps://github.com/KrE80r/cve-2021-3007-vulnerable\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-12-05T10:46:16.000000Z"}, {"uuid": "f2bea2ae-aac2-4a15-a518-843587b7d6e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3mah44e6lsa22", "content": "", "creation_timestamp": "2025-12-20T21:02:57.624556Z"}, {"uuid": "24fc9040-c0c5-4afb-acbe-c922e3b162f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "published-proof-of-concept", "source": "https://t.me/cKure/3596", "content": "\u25a0\u25a0\u25a0\u25a1\u25a1 CVE-2021-3007: RCE \u2018Bug\u2019 in Popular PHP Scripting Framework Zend.\n\nhttps://threatpost.com/rce-bug-php-scripting-framework/162773/", "creation_timestamp": "2021-01-06T05:08:25.000000Z"}, {"uuid": "8471f6ec-8694-467f-9d22-847eee48d8a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "Telegram/WtJrROt8lM6WHR-fB1g4_YMxbxFBlPxavIyCnf0PfRbxbYQ", "content": "", "creation_timestamp": "2025-12-05T15:00:08.000000Z"}, {"uuid": "ecdf42af-e5e5-44c1-a33c-f1302c383aea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "https://t.me/BleepingComputer/8858", "content": "Zend Framework remote code execution vulnerability revealed\n\nAn untrusted deserialization vulnerability has been disclosed in Zend Framework which can be used by attackers to achieve remote code execution on PHP sites. Portions of Laminas Project may also be impacted by this flaw, tracked as CVE-2021-3007. [...]\n\nhttps://www.bleepingcomputer.com/news/security/zend-framework-remote-code-execution-vulnerability-revealed/", "creation_timestamp": "2021-01-04T16:42:54.000000Z"}, {"uuid": "d9c02869-d458-4d9c-a314-bf4010542a0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "https://t.me/CyberGovIL/1057", "content": "3134 | \u05d4\u05ea\u05e8\u05e2\u05d4 - \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d1- Zend Framework\n\n\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea (CVE-2021-3007) \u05d4\u05e0\u05d5\u05d1\u05e2\u05ea \u05de\u05ea\u05d4\u05dc\u05d9\u05da \u05d3\u05d4-\u05e1\u05d9\u05e8\u05d9\u05d0\u05dc\u05d9\u05d6\u05e6\u05d9\u05d4 (deserialization) \u05dc\u05d0 \u05ea\u05e7\u05d9\u05df \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05d1-Zend Framework, \u05d5\u05d1\u05e4\u05e8\u05d5\u05d9\u05e7\u05d8 \u05d4\u05d4\u05de\u05e9\u05da Laminas.\n\n\u05e7\u05d9\u05d9\u05de\u05ea \u05de\u05d7\u05dc\u05d5\u05e7\u05ea \u05d4\u05d0\u05dd \u05de\u05e7\u05d5\u05e8 \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d4\u05d5\u05d0 \u05d1-Framework \u05d0\u05d5 \u05d1\u05e7\u05d5\u05d3 \u05d4\u05d0\u05e4\u05dc\u05d9\u05e7\u05d8\u05d9\u05d1\u05d9 \u05d4\u05de\u05d5\u05e8\u05e5 \u05d1\u05d0\u05de\u05e6\u05e2\u05d5\u05ea\u05d4, \u05d0\u05d5 \u05d0\u05e3 \u05d1\u05e9\u05e4\u05ea PHP \u05e2\u05e6\u05de\u05d4, \u05d0\u05da \u05ea\u05d5\u05e6\u05d0\u05ea \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d1\u05e8\u05d5\u05e8\u05d4 \u05d5\u05d4\u05d9\u05d0 \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e8\u05e6\u05ea \u05e7\u05d5\u05d3 \u05de\u05e8\u05d7\u05d5\u05e7 (RCE) \u05d1\u05ea\u05e0\u05d0\u05d9\u05dd \u05de\u05e1\u05d5\u05d9\u05de\u05d9\u05dd.", "creation_timestamp": "2021-01-06T15:17:43.000000Z"}, {"uuid": "c5947f02-9e84-4287-a079-ed59d2d8d16a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "published-proof-of-concept", "source": "https://t.me/reconshell/273", "content": "CVE-2021-3007: Zend Framework Remote Code Execution Vulnerability\n\n#RCE #ZendFramework #CVE-2021-3007 #Vulnerability\n\nhttps://reconshell.com/cve-2021-3007-zend-framework-remote-code-execution-vulnerability/", "creation_timestamp": "2021-01-11T13:16:41.000000Z"}, {"uuid": "48b15490-006a-44a6-a524-22518d70ab08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityIL/1829", "content": "\u05de\u05e2\u05e8\u05da \u05d4\u05e1\u05d9\u05d9\u05d1\u05e8 \u05d4\u05dc\u05d0\u05d5\u05de\u05d9:\n\n\u05d4\u05ea\u05e8\u05e2\u05d4 - \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d1- Zend Framework\n\n\u05e9\u05dc\u05d5\u05dd \u05e8\u05d1,\n\n1. \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea (CVE-2021-3007) \u05d4\u05e0\u05d5\u05d1\u05e2\u05ea \u05de\u05ea\u05d4\u05dc\u05d9\u05da \u05d3\u05d4-\u05e1\u05d9\u05e8\u05d9\u05d0\u05dc\u05d9\u05d6\u05e6\u05d9\u05d4 (deserialization) \u05dc\u05d0 \u05ea\u05e7\u05d9\u05df \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05d1-Zend Framework, \u05d5\u05d1\u05e4\u05e8\u05d5\u05d9\u05e7\u05d8 \u05d4\u05d4\u05de\u05e9\u05da Laminas.\n\n2. \u05e7\u05d9\u05d9\u05de\u05ea \u05de\u05d7\u05dc\u05d5\u05e7\u05ea \u05d4\u05d0\u05dd \u05de\u05e7\u05d5\u05e8 \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d4\u05d5\u05d0 \u05d1-Framework \u05d0\u05d5 \u05d1\u05e7\u05d5\u05d3 \u05d4\u05d0\u05e4\u05dc\u05d9\u05e7\u05d8\u05d9\u05d1\u05d9 \u05d4\u05de\u05d5\u05e8\u05e5 \u05d1\u05d0\u05de\u05e6\u05e2\u05d5\u05ea\u05d4, \u05d0\u05d5 \u05d0\u05e3 \u05d1\u05e9\u05e4\u05ea PHP \u05e2\u05e6\u05de\u05d4, \u05d0\u05da \u05ea\u05d5\u05e6\u05d0\u05ea \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d1\u05e8\u05d5\u05e8\u05d4 \u05d5\u05d4\u05d9\u05d0 \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e8\u05e6\u05ea \u05e7\u05d5\u05d3 \u05de\u05e8\u05d7\u05d5\u05e7 (RCE) \u05d1\u05ea\u05e0\u05d0\u05d9\u05dd \u05de\u05e1\u05d5\u05d9\u05de\u05d9\u05dd.", "creation_timestamp": "2021-01-06T16:21:24.000000Z"}, {"uuid": "5cbfd09c-7673-4c4f-abdb-1b1e748120ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "https://t.me/CyberSecurityIL/607", "content": "\u05de\u05e2\u05e8\u05da \u05d4\u05e1\u05d9\u05d9\u05d1\u05e8 \u05d4\u05dc\u05d0\u05d5\u05de\u05d9:\n\n\u05d4\u05ea\u05e8\u05e2\u05d4 - \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d1- Zend Framework\n\n\u05e9\u05dc\u05d5\u05dd \u05e8\u05d1,\n\n1. \u05e4\u05d2\u05d9\u05e2\u05d5\u05ea (CVE-2021-3007) \u05d4\u05e0\u05d5\u05d1\u05e2\u05ea \u05de\u05ea\u05d4\u05dc\u05d9\u05da \u05d3\u05d4-\u05e1\u05d9\u05e8\u05d9\u05d0\u05dc\u05d9\u05d6\u05e6\u05d9\u05d4 (deserialization) \u05dc\u05d0 \u05ea\u05e7\u05d9\u05df \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05d1-Zend Framework, \u05d5\u05d1\u05e4\u05e8\u05d5\u05d9\u05e7\u05d8 \u05d4\u05d4\u05de\u05e9\u05da Laminas.\n\n2. \u05e7\u05d9\u05d9\u05de\u05ea \u05de\u05d7\u05dc\u05d5\u05e7\u05ea \u05d4\u05d0\u05dd \u05de\u05e7\u05d5\u05e8 \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d4\u05d5\u05d0 \u05d1-Framework \u05d0\u05d5 \u05d1\u05e7\u05d5\u05d3 \u05d4\u05d0\u05e4\u05dc\u05d9\u05e7\u05d8\u05d9\u05d1\u05d9 \u05d4\u05de\u05d5\u05e8\u05e5 \u05d1\u05d0\u05de\u05e6\u05e2\u05d5\u05ea\u05d4, \u05d0\u05d5 \u05d0\u05e3 \u05d1\u05e9\u05e4\u05ea PHP \u05e2\u05e6\u05de\u05d4, \u05d0\u05da \u05ea\u05d5\u05e6\u05d0\u05ea \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d1\u05e8\u05d5\u05e8\u05d4 \u05d5\u05d4\u05d9\u05d0 \u05e2\u05dc\u05d5\u05dc\u05d4 \u05dc\u05d0\u05e4\u05e9\u05e8 \u05d4\u05e8\u05e6\u05ea \u05e7\u05d5\u05d3 \u05de\u05e8\u05d7\u05d5\u05e7 (RCE) \u05d1\u05ea\u05e0\u05d0\u05d9\u05dd \u05de\u05e1\u05d5\u05d9\u05de\u05d9\u05dd.", "creation_timestamp": "2021-01-06T16:21:24.000000Z"}, {"uuid": "404ccb4d-5bd5-4f13-86bb-27baa8c54fb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "seen", "source": "https://t.me/cibsecurity/21520", "content": "\u203c CVE-2021-3007 \u203c\n\nZend Framework 3.0.0 has a deserialization vulnerability that can lead to remote code execution if the content is controllable, related to the __destruct method of the Zend\\Http\\Response\\Stream class in Stream.php. NOTE: the code may be related to Laminas Project laminas-http. Zend Framework is no longer supported by the maintainer. However, not all Zend Framework 3.0.0 vulnerabilities exist in a Laminas Project release.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-01-04T07:36:17.000000Z"}, {"uuid": "9f9699a0-16c0-4865-8e02-3005cff95de3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-30070", "type": "seen", "source": "https://t.me/cibsecurity/48334", "content": "\u203c CVE-2021-30070 \u203c\n\nAn issue was discovered in HestiaCP before v1.3.5. Attackers are able to arbitrarily install packages due to values taken from the pgk [] parameter in the update request being transmitted to the operating system's package manager.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-08-18T12:41:21.000000Z"}, {"uuid": "f88900f9-90d7-4a6a-85dc-cd64e69b0fc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2021-3007", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/2432", "content": "#exploit\nCVE-2021-3007:\nZend Framework 3.0 RCE\nhttps://www.bleepingcomputer.com/news/security/zend-framework-remote-code-execution-vulnerability-revealed\n]-&gt; Vulnerable destructor in\u00a0Zend Framework and Laminas Project:\nhttps://github.com/laminas/laminas-http/blob/2.15.x/src/Response/Stream.php#L285", "creation_timestamp": "2024-09-16T16:06:40.000000Z"}]}