ET WEB_SPECIFIC_APPS Concrete CMS btask parameter Cross-Site Scripting Attempt

SID: 2015034Rev: 50 views
History
Sourceet/open
CreatedJuly 7, 2012
UpdatedJune 4, 2020
Classificationweb-application-attack
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Concrete CMS btask parameter Cross-Site Scripting Attempt"; flow:established,to_server; http.uri; content:"/index.php?"; nocase; content:"arHandle="; nocase; fast_pattern; content:"method="; nocase; content:"btask="; nocase; pcre:"/btask\x3d.+?(s(cript|tyle\x3D)|on(mouse[a-z]|key[a-z]|load|unload|dragdrop|blur|focus|click|dblclick|submit|reset|select|change|error))/i"; reference:url,www.securityfocus.com/bid/53268/info; classtype:web-application-attack; sid:2015034; rev:5; metadata:created_at 2012_07_07, signature_severity Major, updated_at 2020_06_04;)

References

urlwww.securityfocus.com/bid/53268/info

Metadata

created at2012_07_07
signature severityMajor
updated at2020_06_04

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!