ET ATTACK_RESPONSE PHP script in OptimizePress Upload Directory Possible WebShell Access

SID: 2017854Rev: 40 views
History
Sourceet/open
CreatedDecember 13, 2013
UpdatedAugust 18, 2020
Classificationattempted-admin
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET ATTACK_RESPONSE PHP script in OptimizePress Upload Directory Possible WebShell Access"; flow:to_server,established; http.uri; content:"/wp-content/uploads/optpress/images_"; fast_pattern; content:".php"; pcre:"/\/wp-content\/uploads\/optpress\/images\_(?:comingsoon|lncthumbs|optbuttons)\/.*?\.php/i"; reference:url,blog.sucuri.net/2013/12/wordpress-optimizepress-theme-file-upload-vulnerability.html; classtype:attempted-admin; sid:2017854; rev:4; metadata:created_at 2013_12_13, confidence Medium, signature_severity Minor, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2020_08_18;)

References

urlblog.sucuri.net/2013/12/wordpress-optimizepress-theme-file-upload-vulnerability.html

Metadata

created at2013_12_13
confidenceMedium
signature severityMinor
tagDescription_Generated_By_Proofpoint_Nexus
updated at2020_08_18

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!