ET EXPLOIT TOTOLINK Router Cross-site Scripting CVE-2021-34228 (boafrm) M4

SID: 2033848Rev: 10 viewsHistory

Sourceet/open

CreatedAugust 30, 2021

UpdatedAugust 30, 2021

Classificationweb-application-attack

alert http any any -> $HOME_NET any (msg:"ET EXPLOIT TOTOLINK Router Cross-site Scripting CVE-2021-34228 (boafrm) M4"; flow:established,to_server; http.method; content:"POST"; http.uri; content:"/boafrm/"; fast_pattern; http.request_body; content:"=|22 3e 3c|script|3e|"; reference:url,github.com/pup2y/IoTVul/tree/main/TOTOLINK/A3002R; reference:cve,2021-34228; classtype:web-application-attack; sid:2033848; rev:1; metadata:affected_product Router, attack_target Client_Endpoint, created_at 2021_08_30, cve CVE_2021_34228, deployment Perimeter, confidence High, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_08_30;)

References

url	github.com/pup2y/IoTVul/tree/main/TOTOLINK/A3002R
cve	2021-34228

Metadata

affected productRouter

attack targetClient_Endpoint

created at2021_08_30

cveCVE-2021-34228

deploymentPerimeter

confidenceHigh

signature severityMajor

tagDescription_Generated_By_Proofpoint_Nexus

updated at2021_08_30

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!