ET WEB_SPECIFIC_APPS Wordpress Custom Contact Forms DB Upload/Download Auth Bypass

SID: 2018975Rev: 70 views
Sourceet/open
CreatedAugust 21, 2014
UpdatedSeptember 14, 2020
Classificationweb-application-attack
alert http any any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Wordpress Custom Contact Forms DB Upload/Download Auth Bypass"; flow:established,to_server; http.method; content:"POST"; http.uri; content:"/wp-admin/admin-post.php?"; nocase; content:"page=ccf_settings"; nocase; fast_pattern; http.request_body; pcre:"/ccf_(?:(?:clear|merge)_im|ex)port/i"; reference:url,blog.sucuri.net/2014/08/database-takeover-in-custom-contact-forms.html; classtype:web-application-attack; sid:2018975; rev:7; metadata:affected_product Wordpress, affected_product Wordpress_Plugins, attack_target Web_Server, created_at 2014_08_21, deployment Datacenter, signature_severity Major, tag Wordpress, updated_at 2020_09_14;)

References

urlblog.sucuri.net/2014/08/database-takeover-in-custom-contact-forms.html

Metadata

affected productWordpress_Plugins
attack targetWeb_Server
created at2014_08_21
deploymentDatacenter
signature severityMajor
tagWordpress
updated at2020_09_14

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!