SCARD

Suspicious activity by IP address 101.47.8.187

Below is a list of the last 500 suspicious interactions with this IP.

Last observed Tue, 14 Jul 2026 17:21:55 (Australia/Brisbane)

Back to main list

Summary of suspicious activity by IP address 101.47.8.187

Description Count
ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 299
ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) 118
ET WEB_SERVER auto_prepend_file PHP config option in uri 10
ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) 10
ET WEB_SERVER PHP.//Input in HTTP POST 10
ET WEB_SERVER allow_url_include PHP config option in uri 10
ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body 10
ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) 10
SERVER-WEBAPP PHP PHP-CGI command execution attempt 10
ET WEB_SERVER PHP tags in HTTP POST 10
ET WEB_SERVER Generic PHP Remote File Include 10

Detailed activity by IP address 101.47.8.187

Timestamp Description Protocol Destination Port
2026-07-14 17:21:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-14 17:21:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-14 12:31:44 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-14 12:31:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-14 12:31:43 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-14 09:51:20 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-14 09:51:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-13 22:01:56 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-13 22:01:56 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-13 21:25:29 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-13 21:25:29 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-13 21:25:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-13 18:52:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-13 18:52:35 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 18:13:22 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 18:13:22 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 02:23:05 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 02:23:05 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-12 00:19:31 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-12 00:19:31 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-12 00:19:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-11 21:31:49 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-11 21:31:48 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-09 10:12:10 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-09 10:12:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-09 06:16:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-09 06:16:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-08 15:09:38 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-08 15:09:37 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-08 15:09:37 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-08 14:49:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-08 14:49:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-07 07:22:16 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-07 07:22:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-06 20:41:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-06 20:41:42 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-06 15:24:03 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-06 15:24:02 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-06 15:24:02 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-06 12:22:49 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-07-06 12:22:48 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-05 02:21:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-05 02:21:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-04 16:17:53 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-04 16:17:52 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-04 01:41:12 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-04 01:41:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-03 21:10:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-03 21:10:14 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-02 23:01:47 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-07-02 23:01:47 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-30 04:35:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-30 04:35:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-30 01:24:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-30 01:24:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-30 00:11:09 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-30 00:11:08 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-30 00:11:07 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-29 15:39:45 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-29 15:39:45 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-29 08:30:39 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-29 08:30:38 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-28 18:40:59 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-28 18:40:59 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-28 15:39:48 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-28 15:39:48 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-27 23:15:18 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-27 23:15:18 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-27 23:15:17 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-27 03:02:45 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-27 03:02:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-26 08:23:52 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-26 08:23:51 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-26 08:23:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-25 07:29:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-25 07:29:54 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-25 05:59:15 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-25 05:59:14 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-25 05:59:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-24 18:27:52 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-24 18:27:52 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-24 18:27:51 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-23 22:22:05 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-23 22:22:04 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-23 22:22:03 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-23 03:43:05 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-23 03:43:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-22 15:53:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-22 15:53:42 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-22 01:50:01 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-22 01:50:00 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-21 01:58:10 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-21 01:58:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 15:57:42 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-20 15:57:41 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 15:57:41 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-20 11:44:42 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 11:44:42 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 09:51:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-20 09:51:14 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-19 19:09:07 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-19 19:09:07 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-19 06:35:02 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-19 06:35:01 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-18 22:09:00 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-18 22:09:00 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-17 21:15:03 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-17 21:15:03 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-17 21:15:03 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-06-17 21:15:03 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-17 21:15:03 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-17 21:15:03 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-17 21:15:03 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-17 21:15:03 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-17 21:15:03 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-06-17 21:15:02 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-17 21:15:02 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-17 21:15:02 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-17 21:15:02 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-17 21:15:02 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-06-17 21:15:02 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-17 21:15:02 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-06-17 21:15:02 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-17 21:15:02 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-17 20:13:33 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-17 20:13:33 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-17 20:13:33 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-17 20:13:33 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-17 20:13:33 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-06-17 20:13:33 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-06-17 20:13:33 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-17 20:13:33 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-06-17 20:13:33 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-17 20:13:33 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-17 20:13:33 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-17 20:13:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-17 20:13:33 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-17 20:13:33 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-17 20:13:33 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-06-17 20:13:33 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-17 20:13:33 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-17 20:13:33 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-17 20:13:33 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-17 20:13:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-17 09:15:59 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-17 09:15:58 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-17 02:01:31 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-17 02:01:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-17 01:41:27 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-17 01:41:27 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-16 00:44:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-16 00:44:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-15 04:59:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-15 04:59:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-14 05:21:05 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-14 05:21:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-13 04:55:51 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-13 04:55:51 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-13 04:55:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-12 01:29:51 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-12 01:29:49 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 21:51:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 21:51:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 18:51:38 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 18:51:37 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 10:30:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 10:30:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 00:23:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-11 00:23:35 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-09 10:29:41 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-09 10:29:41 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-09 00:31:48 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-09 00:31:48 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-09 00:31:47 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-08 22:41:20 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-08 22:41:20 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-08 22:41:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-08 20:20:29 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-08 20:20:29 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-06-08 20:20:29 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-08 20:20:29 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-06-08 20:20:29 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-08 20:20:29 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-06-08 20:20:29 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-08 20:20:29 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-08 20:20:29 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-06-08 20:20:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-08 20:20:29 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-06-08 20:20:29 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-08 20:20:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-08 20:20:29 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-06-08 20:20:29 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-08 20:20:29 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-06-08 20:20:29 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-06-08 20:20:29 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-06-08 20:20:29 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-06-08 20:20:29 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-06-08 07:31:35 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-08 07:31:35 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-06 22:11:52 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-06 22:11:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-06 16:27:58 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-06 16:27:58 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-06 13:37:20 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-06 13:37:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-05 22:59:44 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-05 22:59:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-05 22:59:43 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-05 14:28:15 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-05 14:28:14 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 21:34:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 21:34:03 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 18:13:06 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 18:13:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 04:32:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 04:32:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 01:22:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 01:22:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 00:49:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-04 00:49:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-03 20:35:14 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-03 20:35:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-03 18:47:57 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-03 18:47:56 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-03 05:27:06 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-03 05:27:06 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-02 23:33:06 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-02 23:33:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-01 23:47:25 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-01 23:47:25 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-06-01 19:05:12 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-06-01 19:05:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-31 18:28:39 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-31 18:28:38 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-31 08:21:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-31 08:21:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-30 03:12:21 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-30 03:12:21 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-30 03:12:20 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-30 02:39:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-30 02:39:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-29 04:28:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-29 04:28:03 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-28 01:26:17 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-28 01:26:17 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-27 23:54:59 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-27 23:54:58 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-27 11:25:10 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-27 11:25:10 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-27 07:24:28 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-27 07:24:27 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-27 07:24:27 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-26 21:00:37 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-26 21:00:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-26 14:07:03 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-26 14:07:03 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-26 03:13:32 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-26 03:13:31 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-26 03:13:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-24 23:11:18 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-24 23:11:17 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-24 23:11:17 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-24 10:27:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-24 10:27:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 19:23:37 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-23 19:23:37 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-23 19:23:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 09:15:53 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 09:15:53 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 07:46:48 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 07:46:48 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 01:25:25 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-23 01:25:23 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-22 05:27:32 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-22 05:27:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-22 03:59:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-22 03:59:18 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-20 23:48:19 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-20 23:48:18 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-20 23:48:17 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-20 10:01:16 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-20 10:01:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-20 10:01:15 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-19 00:49:09 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-19 00:49:08 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-19 00:49:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-18 22:38:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-18 22:38:53 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-17 14:23:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-17 14:23:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-17 10:18:41 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-17 10:18:40 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-16 15:46:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-16 15:46:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-16 12:20:51 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-16 12:20:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-16 05:28:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-16 05:28:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-15 18:04:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-15 18:04:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-15 15:59:34 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-15 15:59:34 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-15 15:59:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-15 12:34:38 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-15 12:34:38 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-15 12:34:37 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-15 11:13:54 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-15 11:13:54 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-14 08:59:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-14 08:59:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-13 21:39:27 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-13 21:39:27 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-13 08:02:35 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-13 08:02:34 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-13 07:19:05 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-13 07:19:05 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-13 01:00:48 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-13 01:00:47 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-13 01:00:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-12 03:40:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-12 03:40:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-11 12:51:00 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-05-11 12:51:00 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-05-11 12:51:00 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-05-11 12:51:00 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-05-11 12:51:00 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-05-11 12:51:00 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-05-11 12:51:00 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-05-11 12:51:00 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-05-11 12:51:00 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-05-11 12:50:59 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-05-11 12:50:59 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-05-11 12:50:59 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-05-11 12:50:59 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-05-11 12:50:59 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-05-11 12:50:59 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-05-11 12:50:59 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-05-11 12:50:59 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-05-11 12:50:59 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-05-11 11:49:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-11 11:49:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-11 02:28:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-11 02:28:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-09 16:49:41 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-09 16:49:40 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-06 21:13:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-06 21:13:43 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-05 18:45:36 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-05 18:45:36 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-05 18:45:35 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-05 15:17:24 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-05 15:17:24 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-05 15:17:23 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-05 11:28:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-05 11:28:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-03 09:55:50 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-03 09:55:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-03 05:32:56 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-03 05:32:55 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-03 05:32:55 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-03 02:06:37 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-03 02:06:36 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-05-03 02:06:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-02 10:22:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-02 10:22:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-02 06:56:12 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-02 06:56:11 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-02 03:30:50 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-02 03:30:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-01 13:07:26 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-05-01 13:07:24 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-30 23:58:29 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-30 23:58:29 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-30 23:58:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-30 20:39:33 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-30 20:39:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-30 18:17:21 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-30 18:17:20 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-29 15:39:06 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-29 15:39:05 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-29 07:06:24 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-29 07:06:23 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-28 14:24:26 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-28 14:24:26 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-28 08:29:03 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-28 08:29:02 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-28 01:21:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-28 01:21:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-27 08:53:26 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-27 08:53:26 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-27 03:56:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-27 03:56:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-26 16:45:14 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-26 16:45:13 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-26 14:03:34 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-26 14:03:34 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-26 14:03:33 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-26 08:30:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-26 08:30:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-26 02:58:05 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-26 02:58:04 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-25 10:42:52 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-25 10:42:52 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-24 01:38:47 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-24 01:38:47 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-23 20:14:23 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-23 20:14:23 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-23 08:54:30 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-23 08:54:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-22 01:09:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-22 01:09:08 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-21 15:25:15 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-04-21 15:25:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-21 15:25:15 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-04-21 15:25:15 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-04-21 15:25:15 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-04-21 15:25:15 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-04-21 15:25:15 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-04-21 15:25:15 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-04-21 15:25:15 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-04-21 15:25:15 ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body TCP 80
2026-04-21 15:25:15 SERVER-WEBAPP PHP PHP-CGI command execution attempt TCP 80
2026-04-21 15:25:15 ET WEB_SERVER PHP.//Input in HTTP POST TCP 80
2026-04-21 15:25:15 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-04-21 15:25:15 ET WEB_SERVER allow_url_include PHP config option in uri TCP 80
2026-04-21 15:25:15 ET WEB_SERVER PHP tags in HTTP POST TCP 80
2026-04-21 15:25:15 ET WEB_SERVER Generic PHP Remote File Include TCP 80
2026-04-21 15:25:15 ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) TCP 80
2026-04-21 15:25:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-21 15:25:15 ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) TCP 80
2026-04-21 15:25:15 ET WEB_SERVER auto_prepend_file PHP config option in uri TCP 80
2026-04-21 13:08:00 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-21 13:07:59 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-21 00:02:50 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-21 00:02:49 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-21 00:02:49 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-20 09:19:13 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-20 09:19:12 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-20 09:19:12 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-20 06:41:32 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-20 06:41:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-19 12:56:01 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-19 12:56:01 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-19 12:56:00 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-19 10:07:37 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-19 10:07:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-18 13:54:15 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-18 13:54:14 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-16 14:03:25 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-16 14:03:24 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-16 12:13:13 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-16 12:13:13 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-16 12:13:12 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-16 06:25:51 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-16 06:25:50 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-16 06:25:49 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-16 01:21:10 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-16 01:21:10 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-14 06:03:20 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-14 06:03:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-13 23:37:21 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-13 23:37:20 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-13 23:37:20 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-13 02:13:02 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-13 02:13:02 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-08 11:29:10 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-08 11:29:09 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-08 11:29:09 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-07 15:30:30 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-07 15:30:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-05 07:35:17 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-05 07:35:16 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-05 07:35:16 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-05 04:41:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-05 04:41:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-04 04:44:03 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-04 04:44:02 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-03 17:32:31 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-03 17:32:29 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-03 04:19:27 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-03 04:19:27 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-03 04:19:26 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-03 01:23:19 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-03 01:23:18 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-02 06:29:29 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-02 06:29:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-02 06:29:28 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-02 02:47:38 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-02 02:47:37 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80
2026-04-02 02:47:36 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-01 05:50:58 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-04-01 05:50:57 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-30 15:52:22 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-30 12:43:28 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-30 12:43:27 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-29 06:02:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-29 06:02:46 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-29 00:39:57 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-29 00:39:57 ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 TCP 80
2026-03-28 23:56:31 ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) TCP 80

 

Back to top