ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 28

SID: 2019449Rev: 40 viewsHistory

Sourceet/open

CreatedOctober 16, 2014

UpdatedSeptember 25, 2020

Classificationweb-application-attack

alert http any any -> $HTTP_SERVERS any (msg:"ET EXPLOIT Possible CVE-2014-3704 Drupal SQLi attempt URLENCODE 28"; flow:established,to_server; http.request_body; content:"%6e%61m%65%5b"; nocase; fast_pattern; pcre:"/(?:^|&|Content-Disposition[\x3a][^\n]*?name\s*?=\s*?[\x22\x27])\%6e\%61m\%65\%5b[^\x5d]*?\W/i"; reference:url,pastebin.com/F2Dk9LbX; classtype:web-application-attack; sid:2019449; rev:4; metadata:created_at 2014_10_16, cve CVE_2014_3704, confidence Medium, signature_severity Major, updated_at 2020_09_25;)

References

url	pastebin.com/F2Dk9LbX

Metadata

created at2014_10_16

cveCVE-2014-3704

confidenceMedium

signature severityMajor

updated at2020_09_25

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!