ET WEB_SPECIFIC_APPS WordPress - Attempted Check for Malicious posts-layout (post-layout Doppelganger) Plugin - Suricata Rule 2045882 (et/open)

ET WEB_SPECIFIC_APPS WordPress - Attempted Check for Malicious posts-layout (post-layout Doppelganger) Plugin

SID: 2045882Rev: 12 viewsHistory

Sourceet/open

CreatedMay 30, 2023

UpdatedMay 30, 2023

Classificationweb-application-activity

alert http $EXTERNAL_NET any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET WEB_SPECIFIC_APPS WordPress - Attempted Check for Malicious posts-layout (post-layout Doppelganger) Plugin"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/?343"; startswith; fast_pattern; reference:url,blog.sucuri.net/2023/05/vulnerability-in-essential-addons-for-elementor-leads-to-mass-infection.html; classtype:web-application-activity; sid:2045882; rev:1; metadata:attack_target Web_Server, created_at 2023_05_30, deployment Perimeter, deployment SSLDecrypt, performance_impact Low, confidence High, signature_severity Minor, updated_at 2023_05_30;)

References

url	blog.sucuri.net/2023/05/vulnerability-in-essential-addons-for-elementor-leads-to-mass-infection.html

Metadata

attack targetWeb_Server

created at2023_05_30

deploymentSSLDecrypt

performance impactLow

confidenceHigh

signature severityMinor

updated at2023_05_30

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!