Versions (3)
Version DetailsCurrent
Rev: 3 • Jul 12, 2019, 12:00 PMET WEB_SPECIFIC_APPS Appointment Hour Booking - WordPress Plugin - Stored XSS (CVE-2019-13505)
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Appointment Hour Booking - WordPress Plugin - Stored XSS (CVE-2019-13505)"; flow:established,to_server; http.method; content:"POST"; http.request_body; content:"form-data|3b 20|name=|22|cp_appbooking_pform_process|22|"; fast_pattern; content:"form-data|3b 20|name=|22|email_1|22 0d 0a 0d 0a 3c|script|3e|"; distance:0; reference:cve,CVE-2019-13505; reference:url,github.com/ivoschyk-cs/CVE-s/blob/master/Appointment%20Hour%20Booking%20%E2%80%93%20WordPress%20Booking%20Plugin%20--%20stored%20XSS; classtype:web-application-attack; sid:2027706; rev:3; metadata:affected_product Wordpress_Plugins, attack_target Web_Server, created_at 2019_07_12, deployment Internet, performance_impact Low, confidence Medium, signature_severity Major, updated_at 2020_08_31;)
Jul 12, 2019, 12:00 PM
Aug 31, 2020, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-web_specific_apps.rules