Versions (4)
Version DetailsCurrent
Rev: 1 • Aug 30, 2021, 12:00 PMET EXPLOIT TOTOLINK Router Cross-site Scripting CVE-2021-34228 (boafrm) M4
alert http any any -> $HOME_NET any (msg:"ET EXPLOIT TOTOLINK Router Cross-site Scripting CVE-2021-34228 (boafrm) M4"; flow:established,to_server; http.method; content:"POST"; http.uri; content:"/boafrm/"; fast_pattern; http.request_body; content:"=|22 3e 3c|script|3e|"; reference:url,github.com/pup2y/IoTVul/tree/main/TOTOLINK/A3002R; reference:cve,2021-34228; classtype:web-application-attack; sid:2033848; rev:1; metadata:affected_product Router, attack_target Client_Endpoint, created_at 2021_08_30, cve CVE_2021_34228, deployment Perimeter, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_08_30;)
Aug 30, 2021, 12:00 PM
Aug 30, 2021, 12:00 PM
Sep 21, 2024, 3:00 AM
Sep 9, 2025, 9:34 PM
rules/emerging-exploit.rules