Skip to the content.

DIVD-2022-00027 - F5 BIG-IP iControl REST API remote code executionPepijn van der Stap

Status: Open
F5 BIG-IP is vulnerable to remote code execution due to a vulnerability that allows attackers to execute commands by leveraging a authentication bypass in the REST API. DIVD is actively notifying owners of vulnerable systems

Lees meer

DIVD-2022-00026 - WSO2 Remote Code Executions - CVE-2022-29464Pepijn van der Stap

Status: Open
WSO2 servers are vulnerable to remote code execution due to a vulnerability that allows attackers to perform unauthenticated unrestricted arbitrary file uploads. DIVD is actively notifying owners of vulnerable systems

Lees meer

DIVD-2022-00025 - VMware - CVE-2022-22954Victor Pasman

Status: Open
VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability due to server-side template injection. A malicious actor with network access can trigger a server-side template injection that may result in remote code execution.

Lees meer

DIVD-2022-00024 - Spring Cloud RCE - CVE-2022-22963Pepijn van der Stap

Status: Open
Spring Cloud Function versions prior to 3.1.7 and 3.2.3 are vulnerable to remote code execution due to using an unsafe evaluation context with user-provided queries. DIVD is actively notifying owners of vulnerable systems

Lees meer

DIVD-2022-00022 - WatchGuard Firebox and XTM appliance ACE vulnerabilityMax van der Horst

Status: Open
On WatchGuard Firebox and XTM appliances, an unauthenticated user can execute arbitrary code. DIVD is actively scanning to notify owners of vulnerable systems.

Lees meer

DIVD-2022-00021 - Ivanti EPM CSA remote code executionPepijn van der Stap

Status: Open
DIVD is searching for vulnerable instances of the Ivanti EPM Cloud Services Appliance (CSA).

Lees meer

DIVD-2022-00019 - Insecure Mendix ApplicationsJohn Cornegge

Status: Open
DIVD is researching misconfigured Entity access rules in applications built with the Mendix Platform.

Lees meer

DIVD-2022-00017 - Global Healthcare VulnerabilitiesVictor Gevers

Status: Open
DIVD is researching vulnerabilities in healthcare services globally and notifying these services.

Lees meer

DIVD-2022-00015 - Unauthenticated user enumeration on GraphQL APIMick Beer

Status: Open
CVE-2021-4191: GitLab GraphQL API User Enumeration

Lees meer

DIVD-2022-00014 - GreyNoise's Ukraine only listFrank Breedijk

Status: Open
GreyNoise has created a public list of IP addresses that have exclusively been observed in their honeypots in Ukraine, and not anywhere else. We decided to take it upon ourselves to make network administrators aware of the fact that these hosts are on this list.

Lees meer

DIVD-2022-00012 - Global Charity VulnerabilitiesMax van der Horst

Status: Open
DIVD is researching vulnerabilities in charities globally and notifying these charities.

Lees meer

DIVD-2022-00010 - Auth bypass in SAPPatrick Hulshof

Status: Open
Unauthenticated user impersonation (auth bypass) in SAP Posted on February 8 2022

Lees meer

DIVD-2022-00008 - XSS Zeroday in ZimbraBoaz Braaksma

Status: Open
A new Zero-day XSS Vulnerability in Zimbra was published on the internet on the third of February 2022.

Lees meer

DIVD-2022-00007 - Subdomain TakeoversMartin van Wingerden

Status: Open
Subdomain Takeovers via CNAMES or A records pointing to Azure, AWS, GitHub or unregistered domains

Lees meer

DIVD-2022-00006 - SAProuterJoris van de Vis

Status: Open
DIVD scanned for internet connected SAProuters that respond to information-requests, meaning they are not properly secured.

Lees meer


DIVD-2022-00004 - Post-Log4J Open Database C2 and Monero Miner InfectionsMax van der Horst

Status: Open
Post-Log4J Open Database Instances used for C2 and Monero Miner Infections.

Lees meer

DIVD-2022-00002 - GrafanaTom Wolters

Status: Open
Unauthenticated Directory Traversal vulnerability in Grafana - CVE-2021-43798

Lees meer

DIVD-2021-00039 - HP iLOPatrick Hulshof

Status: Open
We will be scanning for open-iLO ports

Lees meer

DIVD-2021-00038 - Apache Log4j2Victor Pasman

Status: Open
We will be scanning for CVE-2021-44228

Lees meer


DIVD-2021-00033 - Sites with Potential SQL-InjectionCélistine Oosting

Status: Closed
We obtained a list with sites potentially vulnerable to SQL-Injection

Lees meer

DIVD-2021-00030 - GitLab Unauthenticated RCE FlawJeroen van de Weerd

Status: Closed
We will be scanning for CVE-2021-22205

Lees meer

DIVD-2021-00029 - SmartertrackFinn van der Knaap

Status: Open
Several vulnerabilities have been found in the helpdesk software called SmarterTrack made by SmarterTools.

Lees meer


DIVD-2021-00026 - Omigod: Microsoft Open Management Interface RCECélistine Oosting

Status: Closed
Omigod vulnerabilities make it possible to execute remote code via Microsoft Open Management Interface (OMI) this service is installed automatically on machines running certain Azure services (either on premise or in the cloud)

Lees meer

DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE)Pepijn van der Stap

Status: Open
In affected versions of Confluence Server and Data Center, an OGNL injection vulnerability exists that would allow an unauthenticated attacker to execute arbitrary code on a Confluence Server or Data Center instance. The affected versions are before version 6.13.23, from version 6.14.0 before 7.4.11, from version 7.5.0 before 7.11.6, and from version 7.12.0 before 7.12.5.

Lees meer

DIVD-2021-00022 - Exchange ProxyShell and ProxyOracleFrank Breedijk

Status: Open
We will be scanning for the vulnerabilities related to the ProxyShell and ProxyOracle attacks against Microsoft Exchange.

Lees meer

DIVD-2021-00021 - Qlik Sense Enterprise domain user enumerationHidde Smit

Status: Open
Domain user enumeration via response timing

Lees meer

DIVD-2021-00017 - SolarWinds N-able N-central agent vulnerabilitiesHidde Smit

Status: Closed
Vulnerabilities discovered affect multi-tenant environments.

Lees meer

DIVD-2021-00015 - Telegram ODVictor Gevers

Status: Open
One of our researchers has discovered a Telegram group that shares millions of usernames and passwords that criminals have stolen from their victims.

Lees meer

DIVD-2021-00014 - Kaseya UnitrendsVictor Gevers

Status: Open
Users of on-premise Kaseya Unitrends are advised to not expose this service directly to the internet

Lees meer

DIVD-2021-00012 - Warehouse BotnetFrank Breedijk

Status: Closed
One of our researchers has discovered a database full of usernames and passwords that criminals have stolen from their victims'.

Lees meer

DIVD-2021-00011 - Kaseya VSA DisclosureLennaert Oudshoorn

Status: Closed
Wietse Boonstra found multiple vulnerabilities in Kaseya VSA, this casefile details the disclosure process.

Lees meer

DIVD-2021-00010 - vCenter Server PreAuth RCEHidde Smit

Status: Closed
A critical vulnerability has been found in VMware vCenter Server versions 3.x, 4.x, 6.5, 6.7 and 7.0.

Lees meer

DIVD-2021-00007 - EA Origin XSS and RCE 1-clickHidde Smit

Status: Closed
Origin users are advised to update Origin client to the latest version

Lees meer

DIVD-2021-00006 - SmarterMailVictor Pasman

Status: Closed
Multiple vulnerabilities discovered in all versions of 16.x of Smartertools SmarterMail and all versions before 100.0.7803 (May 13, 2021)

Lees meer

DIVD-2021-00005 - Pulse Secure PreAuth RCEMatthijs Koot

Status: Closed
Er zijn kritieke kwetsbaarheden gevonden in Pulse Secure Connect versies >=9.0R3 en =9.0R3 and <9.1R11.4.

Lees meer

DIVD-2021-00004 - Gelekte phishing gegevens / Leaked phishing credentialsLennaert Oudshoorn,Célistine Oosting

Status: Closed
DIVD heeft een lijst van bij phishing buitgemaakte en daarna gelekte emailadressen en wachtwoorden van een security researcher ontvangen. / DIVD has received a list of credentials obtained through phishing from a security researcher.

Lees meer

DIVD-2021-00002 - Kaseya VSAVictor Gevers,Lennaert Oudshoorn

Status: Closed
Users of on-premise Kaseya VSA are advised to disable their Kaseya VSA servers.

Lees meer

DIVD-2021-00001 - Microsoft on-prem Exchange ServersLennaert Oudshoorn

Status: Closed
Microsoft heeft meerdere 0-day exploits ontdekt die actief gebruikt worden om on-premises versies van Microsoft Exchange Server aan te vallen. / Microsoft has detected multiple 0-day exploits that are actively being used in attacks against on-premises versions of Microsoft Exchange Server.

Lees meer

DIVD-2020-00014 - SolarWinds OrionLennaert Oudshoorn

Status: Closed
Een authenticatie bypass kan aanvallers de mogelijkeheid geven om API commando's uit te voeren, hierdoor kan het systeem gecompromiteerd worden. / An authentication bypass could allow attackers to execute API commands which may result in a compromise of the system.

Lees meer

DIVD-2020-00013 - Gelekte phishing wachtwoorden / Leaked phishing credentialsFrank Breedijk

Status: Closed
DIVD heeft een lijst van bij phishing buitgemaakte en daarna gelekte email en wachtwoorden van een partner ontvangen / DIVD has received a list of credentials obtained through phishing from a partner.

Lees meer

DIVD-2020-00012 - 49 000 vulnerable Fortinet VPN devicesLennaert Oudshoorn

Status: Closed
Er is een lijst online aangetroffen met 49 577 kwetsbare Fortinet VPN devices waarvan login credentials gestolen kunnen worden / A list was found online, with 49 577 vulnerable Fortinet VPN devices, potentially login credentials could be exposed

Lees meer

DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDRFrank Breedijk

Status: Closed
DIVD Onderzoeker Wietse Boonstra heeft vier critieke kwetsbaarheden gevonden in Vembu BDR, patches zijn beschikbaar / DIVD researcher Wietse Boonstra hasdiscovered four critical vulnerabilities in Vembu BDR, patches are available.

Lees meer

DIVD-2020-00010 - wpDiscuz plugin Remote Code ExcutionFrank Breedijk

Status: Closed
In de WordPress Plugin wpDiscuz zit een kritieke kwetsbaarheid die aanvalles in staat stelt een systemen over te nemen / Wordpress plugin wpDiscuz has a critical vulnerability that allows an attacker to take over the system.

Lees meer

DIVD-2020-00009 - Pulse Secure VPN enterprise LeakLennaert Oudshoorn

Status: Closed
Een datadump met informatie over meer dan 900 gecompromitteerde Pulse Secure VPN enterprise servers is publiek gemaakt. / A data dump with information of over 900 compromised Pulse Secure VPN enterprise servers has been released.

Lees meer

DIVD-2020-00008 - 313 000 Wordpress sites scannedLennaert Oudshoorn

Status: Closed
Onderzoekers van het DIVD hebben 313 000 Wordpress sites met .NL domein gescanned, meldingen voor kwetsbare sites worden gedaan naarmate de resultaten verwerkt worden. / DIVD researchers scanned 313 000 Wordpress websites with .NL domains, vulnerability notifications are being sent as results are processed.

Lees meer

DIVD-2020-00007 - Citrix ShareFileLennaert Oudshoorn

Status: Closed
Er is een kwetsbaarheid gevonden in Citrix ShareFile deze kwetsbaarheid kan gebruikt worden door een aanvaller om toegang te verkrijgen tot gevoelige data. / A vulnerabilty in Citrix ShareFile has been discovered, this vulnerability can be used by an attacker to potentially gain access to sensitive data.

Lees meer

DIVD-2020-00006 - SMBv3 Server Compression Transform Header Memory CorruptionSander Spierenburg

Status: Closed
Security Meldpunt vraagt uw aandacht voor een SMBv3 kwetsbaarheid en gaat netwerkbeheerders met publiek beschikbare SMBv3 servers met compressie waarschuwen / The Security hotline is asking your attention for a vulnerabilty in SMBv3 and is going to warn network operators of Dutch IPs that respond to SMBv3 handshakes and have encryption enabled

Lees meer

DIVD-2020-00005 - Apache Tomcat AJP File Read/Inclusion VulnerabilityJeroen van de Weerd

Status: Closed
773 Nederlandse IP adressen kwetsbaar voor Ghostcat - Apache Tomcat AJP File Read/Inclusion Vulnerability / 773 Dutch IP addresses vulnerable to Ghostcat - Apache Tomcat AJP File Read / Inclusion Vulnerability

Lees meer

DIVD-2020-00004 - List of Mirai botnet victims published with credentialsSander Spierenburg

Status: Closed
Een lijst met ruim 500k+ botnet slachtoffers is gepubliceerd / A list of Mirai botnet victims has been published exposing a total of 500K+ systems

Lees meer

DIVD-2020-00003 - Microsoft RDP Gateway vulnerable for Bluegate RCEBarry van Kampen

Status: Closed
16.000 kwetsbare Microsoft RDP Gateway systemen online / 16.000 vulnerable Microsoft RDP Gateway systemen online

Lees meer

DIVD-2020-00002 - Wildcard certificaten Citrix ADCFrank Breedijk

Status: Closed
Op ruim 450 kwetsbare Citrix ADC systemen hebben wij wildcard certificaten aangetroffen / We have found over 450 vulnerable Citrix ADC that used wildcard certificates

Lees meer

DIVD-2020-00001 - Citrix ADCFrank Breedijk

Status: Closed
Onze status omtrend CVE-2019-19781 / Our current status around CVE-2019-19781

Lees meer

gantt title Cases in 2022 dateFormat YYYY-MM-DD axisFormat %e %b %Y DIVD-2021-00006 - SmarterMail, 30 Apr 2021 - 13 Jan 2022 (259 days) :2022-01-01, 2022-01-13 DIVD-2021-00014 - Kaseya Unitrends, 2 Jul 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00015 - Telegram OD, 10 Jun 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00021 - Qlik Sense Enterprise domain user enumeration, 18 Aug 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00022 - Exchange ProxyShell and ProxyOracle, 30 Aug 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE), 22 Sep 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00029 - Smartertrack, 17 Oct 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00033 - Sites with Potential SQL-Injection, 16 Nov 2021 - 9 Feb 2022 (86 days) :2022-01-01, 2022-02-09 DIVD-2021-00036 - VMware vCenter Server arbitrary file read vulnerability, 3 Dec 2021 - 12 Jan 2022 (41 days) :2022-01-01, 2022-01-12 DIVD-2021-00038 - Apache Log4j2, 9 Dec 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2021-00039 - HP iLO, 31 Dec 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2022-00002 - Grafana, 7 Dec 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2022-00004 - Post-Log4J Open Database C2 and Monero Miner Infections, 13 Jan 2022 -> ? (open) :2022-01-13, 2022-06-15 DIVD-2022-00005 - Exposed BACnet devices, 29 Jan 2022 -> ? (open) :2022-01-29, 2022-06-15 DIVD-2022-00006 - SAProuter, 7 Feb 2022 -> ? (open) :2022-02-07, 2022-06-15 DIVD-2022-00007 - Subdomain Takeovers, 4 Feb 2022 -> ? (open) :2022-02-04, 2022-06-15 DIVD-2022-00008 - XSS Zeroday in Zimbra, 14 Dec 2021 -> ? (open) :2022-01-01, 2022-06-15 DIVD-2022-00010 - Auth bypass in SAP, 8 Feb 2022 -> ? (open) :2022-02-08, 2022-06-15 DIVD-2022-00012 - Global Charity Vulnerabilities, 22 Feb 2022 -> ? (open) :2022-02-22, 2022-06-15 DIVD-2022-00014 - GreyNoise's Ukraine only list, 4 Mar 2022 -> ? (open) :2022-03-04, 2022-06-15 DIVD-2022-00015 - Unauthenticated user enumeration on GraphQL API, 4 Mar 2022 -> ? (open) :2022-03-04, 2022-06-15 DIVD-2022-00017 - Global Healthcare Vulnerabilities, 10 Mar 2022 -> ? (open) :2022-03-10, 2022-06-15 DIVD-2022-00019 - Insecure Mendix Applications, 19 Mar 2022 -> ? (open) :2022-03-19, 2022-06-15 DIVD-2022-00021 - Ivanti EPM CSA remote code execution, 25 Mar 2022 -> ? (open) :2022-03-25, 2022-06-15 DIVD-2022-00022 - WatchGuard Firebox and XTM appliance ACE vulnerability, 29 Mar 2022 -> ? (open) :2022-03-29, 2022-06-15 DIVD-2022-00024 - Spring Cloud RCE - CVE-2022-22963, 31 Mar 2022 -> ? (open) :2022-03-31, 2022-06-15 DIVD-2022-00025 - VMware - CVE-2022-22954, 12 Apr 2022 -> ? (open) :2022-04-12, 2022-06-15 DIVD-2022-00026 - WSO2 Remote Code Executions - CVE-2022-29464, 24 Apr 2022 -> ? (open) :2022-04-24, 2022-06-15 DIVD-2022-00027 - F5 BIG-IP iControl REST API remote code execution, 10 May 2022 -> ? (open) :2022-05-10, 2022-06-15
gantt title Cases in 2021 dateFormat YYYY-MM-DD axisFormat %e %b %Y DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDR, 26 Oct 2020 - 11 May 2021 (198 days) :2021-01-01, 2021-05-11 DIVD-2021-00001 - Microsoft on-prem Exchange Servers, 3 Mar 2021 - 15 May 2021 (74 days) :2021-03-03, 2021-05-15 DIVD-2021-00002 - Kaseya VSA, 1 Apr 2021 - 9 Jul 2021 (100 days) :2021-04-01, 2021-07-09 DIVD-2021-00004 - Gelekte phishing gegevens / Leaked phishing credentials, 7 May 2021 - 10 May 2021 (4 days) :2021-05-07, 2021-05-10 DIVD-2021-00005 - Pulse Secure PreAuth RCE, 21 Apr 2021 - 1 Aug 2021 (103 days) :2021-04-21, 2021-08-01 DIVD-2021-00006 - SmarterMail, 30 Apr 2021 - 13 Jan 2022 (259 days) :2021-04-30, 2022-01-01 DIVD-2021-00007 - EA Origin XSS and RCE 1-click, 21 Apr 2021 - 13 Jul 2021 (84 days) :2021-04-21, 2021-07-13 DIVD-2021-00010 - vCenter Server PreAuth RCE, 30 May 2021 - 30 Nov 2021 (185 days) :2021-05-30, 2021-11-30 DIVD-2021-00011 - Kaseya VSA Disclosure, 1 Apr 2021 - 7 Jul 2021 (98 days) :2021-04-01, 2021-07-07 DIVD-2021-00012 - Warehouse Botnet, 20 May 2021 - 4 Jun 2021 (16 days) :2021-05-20, 2021-06-04 DIVD-2021-00014 - Kaseya Unitrends, 2 Jul 2021 -> ? (open) :2021-07-02, 2022-01-01 DIVD-2021-00015 - Telegram OD, 10 Jun 2021 -> ? (open) :2021-06-10, 2022-01-01 DIVD-2021-00017 - SolarWinds N-able N-central agent vulnerabilities, 5 Jul 2021 - 24 Sep 2021 (82 days) :2021-07-05, 2021-09-24 DIVD-2021-00021 - Qlik Sense Enterprise domain user enumeration, 18 Aug 2021 -> ? (open) :2021-08-18, 2022-01-01 DIVD-2021-00022 - Exchange ProxyShell and ProxyOracle, 30 Aug 2021 -> ? (open) :2021-08-30, 2022-01-01 DIVD-2021-00023 - Atlassian Confluence OGNL injection (RCE), 22 Sep 2021 -> ? (open) :2021-09-22, 2022-01-01 DIVD-2021-00026 - Omigod Microsoft Open Management Interface RCE, 15 Sep 2021 - 24 Nov 2021 (71 days) :2021-09-15, 2021-11-24 DIVD-2021-00027 - Apache HTTP 2.4.49 Path Traversal and File Disclosure, 5 Oct 2021 - 1 Dec 2021 (58 days) :2021-10-05, 2021-12-01 DIVD-2021-00029 - Smartertrack, 17 Oct 2021 -> ? (open) :2021-10-17, 2022-01-01 DIVD-2021-00030 - GitLab Unauthenticated RCE Flaw, 1 Nov 2021 - 29 Dec 2021 (59 days) :2021-11-01, 2021-12-29 DIVD-2021-00033 - Sites with Potential SQL-Injection, 16 Nov 2021 - 9 Feb 2022 (86 days) :2021-11-16, 2022-01-01 DIVD-2021-00036 - VMware vCenter Server arbitrary file read vulnerability, 3 Dec 2021 - 12 Jan 2022 (41 days) :2021-12-03, 2022-01-01 DIVD-2021-00038 - Apache Log4j2, 9 Dec 2021 -> ? (open) :2021-12-09, 2022-01-01 DIVD-2021-00039 - HP iLO, 31 Dec 2021 -> ? (open) :2021-12-31, 2022-01-01 DIVD-2022-00002 - Grafana, 7 Dec 2021 -> ? (open) :2021-12-07, 2022-01-01 DIVD-2022-00008 - XSS Zeroday in Zimbra, 14 Dec 2021 -> ? (open) :2021-12-14, 2022-01-01
gantt title Cases in 2020 dateFormat YYYY-MM-DD axisFormat %e %b %Y DIVD-2020-00001 - Citrix ADC, 13 Jan 2020 - 9 Mar 2020 (57 days) :2020-01-13, 2020-03-09 DIVD-2020-00002 - Wildcard certificaten Citrix ADC, 9 Jan 2020 - 22 Jan 2020 (14 days) :2020-01-09, 2020-01-22 DIVD-2020-00003 - Microsoft RDP Gateway vulnerable for Bluegate RCE, 27 Jan 2020 - 9 Mar 2020 (43 days) :2020-01-27, 2020-03-09 DIVD-2020-00004 - List of Mirai botnet victims published with credentials, 20 Jan 2020 - 7 Feb 2020 (19 days) :2020-01-20, 2020-02-07 DIVD-2020-00005 - Apache Tomcat AJP File Read/Inclusion Vulnerability, 22 Feb 2020 - 3 Dec 2020 (286 days) :2020-02-22, 2020-12-03 DIVD-2020-00006 - SMBv3 Server Compression Transform Header Memory Corruption, 10 Mar 2020 - 3 Dec 2020 (269 days) :2020-03-10, 2020-12-03 DIVD-2020-00007 - Citrix ShareFile, 26 May 2020 - 23 Jun 2020 (29 days) :2020-05-26, 2020-06-23 DIVD-2020-00008 - 313 000 Wordpress sites scanned, 10 Nov 2020 - 30 Nov 2020 (21 days) :2020-11-10, 2020-11-30 DIVD-2020-00009 - Pulse Secure VPN enterprise Leak, 5 Aug 2020 - 3 Dec 2020 (121 days) :2020-08-05, 2020-12-03 DIVD-2020-00010 - wpDiscuz plugin Remote Code Excution, 4 Aug 2020 - 3 Dec 2020 (122 days) :2020-08-04, 2020-12-03 DIVD-2020-00011 - Four critical vulnerabilities in Vembu BDR, 26 Oct 2020 - 11 May 2021 (198 days) :2020-10-26, 2021-01-01 DIVD-2020-00012 - 49 000 vulnerable Fortinet VPN devices, 22 Nov 2020 - 3 Dec 2020 (12 days) :2020-11-22, 2020-12-03 DIVD-2020-00013 - Gelekte phishing wachtwoorden / Leaked phishing credentials, 20 Dec 2020 - 31 Dec 2020 (12 days) :2020-12-20, 2020-12-31 DIVD-2020-00014 - SolarWinds Orion, 28 Dec 2020 - 30 Dec 2020 (3 days) :2020-12-28, 2020-12-30