Versions (4)
Version DetailsCurrent
Rev: 3 • Jun 6, 2013, 12:00 PMET WEB_SERVER Access to /phppath/php Possible Plesk 0-day Exploit June 05 2013
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Access to /phppath/php Possible Plesk 0-day Exploit June 05 2013"; flow:established,to_server; http.uri; content:"/phppath/php"; pcre:"/^\b/R"; reference:url,seclists.org/fulldisclosure/2013/Jun/21; classtype:attempted-admin; sid:2016983; rev:3; metadata:created_at 2013_06_06, confidence Medium, signature_severity Minor, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_04_24;)
Jun 6, 2013, 12:00 PM
Apr 24, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
Oct 21, 2025, 10:35 PM
rules/emerging-web_server.rules