{"uuid": "f9cd46ac-4efa-4a5a-ad66-d72951feae84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2018-14774", "type": "seen", "source": "https://t.me/DstatLogs/17078", "content": " \ud83d\udc51 CF-Business-2 \ud83d\udc51\n\n\ud83e\udd84 Total Count:\n\n All Request\n \u27a5 26,159,333\n\n Request Successful\n \u27a5 0  (0.00%)\n\n Request Blocked\n \u27a5 26,159,333  (100.00%)\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\udd2b Allowed Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 0\n \u27a5 Percentage: 0.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\ude81 Bypassed Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 0\n \u27a5 Percentage: 0.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\ud83d\udee1 Blocked Request:\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 7,001\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/1.1\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: Requests coming from known bad sources.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 2,633,066\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests trying to impersonate browsers.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 348\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/1.1\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Security Level\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 263,264\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests with unusual HTTP headers or URI path (signature #25).\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 875,550\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests that are very likely coming from bots.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 3,066,810\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Security Level\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 859,137\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests trying to impersonate browsers (pattern #6).\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 17,119\n \u27a5 Action: Managed Challenge\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: Managed Rules\n \u27a5 Vector: Drupal - Anomaly:Header:X-Forwarded-For - CVE:CVE-2018-14774\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 9,445,624\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests with unusual HTTP headers or URI path (signature #56).\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 3,854,855\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: Requests coming from known bad sources.\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n \u27a5 Count: 5,136,559\n \u27a5 Action: Blocked\n \u27a5 RequestHTTPMethod: GET\n \u27a5 RequestHTTPProtocol: HTTP/2\n \u27a5 ResponseStatus: 403\n \u27a5 Trigger Rules: HTTP DDoS\n \u27a5 Vector: HTTP requests with unusual HTTP headers or URI path (signature #57).\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n \u27a5 Count: 26,159,333\n \u27a5 Percentage: 100.00%\n\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\u2796\n\n\n\n\ud83d\ude97 Data from user:  TEAM t.me/TEAM_KINGDOM_1 \ud83d\ude97", "creation_timestamp": "2025-10-15T16:54:06.000000Z"}