Rule History

alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS Bugzilla token.cgi HPP e-mail validation bypass Attempt Client Body"; flow:to_server,established; http.uri; content:"/token.cgi"; nocase; http.request_body; content:"&realname=login_name"; nocase; fast_pattern; reference:url,blog.gerv.net/2014/10/new-class-of-vulnerability-in-perl-web-applications/; classtype:web-application-attack; sid:2019365; rev:7; metadata:created_at 2014_10_08, signature_severity Major, updated_at 2020_09_25;)