ET WEB_SPECIFIC_APPS WordPress Limit Login Attempts Plugin Stored Cross Site Scripting (CVE-2023-1861) - Suricata Rule 2059302 (et/open) - EveBox Rules

ET WEB_SPECIFIC_APPS WordPress Limit Login Attempts Plugin Stored Cross Site Scripting (CVE-2023-1861)

SID: 2059302Rev: 151 views

Sourceet/open

CreatedJanuary 17, 2025

UpdatedJanuary 17, 2025

Classificationweb-application-attack

alert http any any -> $HOME_NET any (msg:"ET WEB_SPECIFIC_APPS WordPress Limit Login Attempts Plugin Stored Cross Site Scripting (CVE-2023-1861)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/wp-"; pcre:"/^(?:admin|login)/R"; http.cookie; content:"wordpress_"; fast_pattern; content:"|3d|"; distance:0; pcre:"/^.+(script|onmouse[a-z]+|onkey[a-z]+|onerror|onload|onunload|ondragdrop|onblur|onfocus|onclick|ondblclick|onsubmit|onreset|onselect|onchange|style\x3d)/Ri"; reference:url,wpscan.com/vulnerability/461cbcca-aed7-4c92-ba35-ebabf4fcd810/; reference:cve,2023-1861; classtype:web-application-attack; sid:2059302; rev:1; metadata:created_at 2025_01_17, cve CVE_2023_1861, performance_impact Low, signature_severity Unknown, updated_at 2025_01_17;)

References

url	wpscan.com/vulnerability/461cbcca-aed7-4c92-ba35-ebabf4fcd810/
cve	2023-1861

Metadata

created at2025_01_17

cveCVE-2023-1861

performance impactLow

signature severityUnknown

updated at2025_01_17

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!