ET WEB_SPECIFIC_APPS Apache Tomcat Orderby Parameter Cross Site Scripting Attempt

SID: 2013118Rev: 50 views
History
Sourceet/open
CreatedJune 24, 2011
UpdatedAugust 5, 2020
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Apache Tomcat Orderby Parameter Cross Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/sessions?path="; nocase; content:"orderby="; nocase; pcre:"/orderby\x3D.+(?:alert|script|onmouse|onkey|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange|style\x3D)/i"; reference:bid,45015; reference:cve,2010-4172; classtype:web-application-attack; sid:2013118; rev:5; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2011_06_24, cve CVE_2010_4172, deployment Datacenter, signature_severity Major, tag XSS, tag Cross_Site_Scripting, updated_at 2020_08_05;)

References

bid45015
cve2010-4172

Metadata

affected productWeb_Server_Applications
attack targetWeb_Server
created at2011_06_24
deploymentDatacenter
signature severityMajor
tagCross_Site_Scripting
updated at2020_08_05

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!