ET WEB_SPECIFIC_APPS ZyXEL P-660R-T1 HomeCurrent_Date Parameter Cross Site Scripting Attempt

SID: 2012023Rev: 31 views
Sourceet/open
CreatedDecember 11, 2010
UpdatedSeptember 4, 2020
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS ZyXEL P-660R-T1 HomeCurrent_Date Parameter Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/Forms/home_1?"; nocase; content:"HomeCurrent_Date="; nocase; pcre:"/HomeCurrent_Date\x3d.+(?:script|onmouse[a-z]+|onkey[a-z]+|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange|style\x3D)/i"; reference:url,secunia.com/advisories/42344/; reference:url,archives.neohapsis.com/archives/bugtraq/2010-11/0190.html; classtype:web-application-attack; sid:2012023; rev:3; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_12_11, deployment Datacenter, signature_severity Major, tag XSS, tag Cross_Site_Scripting, updated_at 2020_09_04;)

References

urlsecunia.com/advisories/42344/
urlarchives.neohapsis.com/archives/bugtraq/2010-11/0190.html

Metadata

affected productWeb_Server_Applications
attack targetWeb_Server
created at2010_12_11
deploymentDatacenter
signature severityMajor
tagCross_Site_Scripting
updated at2020_09_04

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!