Rule History

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS WP Cost Estimator Plugin AFI Vulnerability"; flow:established,to_server; http.uri; content:"/wp-admin/admin-ajax.php?action=lfb_upload_form"; nocase; reference:url,www.wordfence.com/blog/2019/02/vulnerabilities-patched-in-wp-cost-estimation-plugin/; classtype:web-application-attack; sid:2026950; rev:3; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2019_02_21, deployment Datacenter, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_08_27;)