ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 21

SID: 2019442Rev: 40 viewsHistory

Sourceet/open

CreatedOctober 16, 2014

UpdatedSeptember 25, 2020

Classificationweb-application-attack

alert http any any -> $HTTP_SERVERS any (msg:"ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 21"; flow:established,to_server; http.request_body; content:"%6ea%6de["; nocase; fast_pattern; pcre:"/(?:^|&|Content-Disposition[\x3a][^\n]*?name\s*?=\s*?[\x22\x27])\%6ea\%6de\[[^\x5d]*?\W/i"; reference:url,pastebin.com/F2Dk9LbX; classtype:web-application-attack; sid:2019442; rev:4; metadata:created_at 2014_10_16, cve CVE_2014_3704, confidence Medium, signature_severity Major, updated_at 2020_09_25;)

References

url	pastebin.com/F2Dk9LbX

Metadata

created at2014_10_16

cveCVE-2014-3704

confidenceMedium

signature severityMajor

updated at2020_09_25

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!