ET WEB_CLIENT Attempted RCE in Wordpress Social Warfare Plugin Inbound (CVE-2019-9978)

SID: 2027315Rev: 33 views
History
Sourceet/open
CreatedMay 3, 2019
UpdatedAugust 28, 2020
Classificationattempted-admin
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_CLIENT Attempted RCE in Wordpress Social Warfare Plugin Inbound (CVE-2019-9978)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"wp-admin/admin-post.php?swp_debug=load_options&swp_url="; fast_pattern; pcre:"/^https?:\/\//R"; reference:url,www.exploit-db.com/exploits/46794; classtype:attempted-admin; sid:2027315; rev:3; metadata:affected_product Wordpress_Plugins, created_at 2019_05_03, cve CVE_2019_9978, deployment Perimeter, performance_impact Low, confidence Medium, signature_severity Major, tag CISA_KEV, updated_at 2020_08_28;)

References

urlwww.exploit-db.com/exploits/46794

Metadata

affected productWordpress_Plugins
created at2019_05_03
deploymentPerimeter
performance impactLow
confidenceMedium
signature severityMajor
tagCISA_KEV
updated at2020_08_28

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!