ET MALWARE MedDream PACS Premium radiationDoseReport.php Reflected Cross-Site Scripting (CVE-2025-32731)

SID: 2066553Rev: 16 views

Sourceet/open

CreatedJanuary 2, 2026

UpdatedJanuary 2, 2026

Classificationweb-application-attack

alert http any any -> any any (msg:"ET MALWARE MedDream PACS Premium radiationDoseReport.php Reflected Cross-Site Scripting (CVE-2025-32731)"; flow:established,to_server; content:"GET"; http_method; content:"/Pacs/radiationDoseReport.php"; http_uri; fast_pattern; pcre:"/<[^>]{0,64}(?:img|svg|script|body|iframe|input|button|marquee|video|audio|object|embed)[^>]{0,64}(?:onerror|onload|onclick|onmouseover|onfocus|onblur|onchange|onsubmit|onkeydown|onkeyup|onkeypress)/Ui"; reference:url,talosintelligence.com/vulnerability_reports/talos-2025-2176; reference:cve,2025-32731; classtype:web-application-attack; sid:2066553; rev:1; metadata:attack_target Server, tls_state TLSDecrypt, created_at 2026_01_02, cve CVE_2025_32731, deployment Perimeter, deployment Internal, deployment SSLDecrypt, performance_impact Low, confidence High, signature_severity Major, updated_at 2026_01_02; target:dest_ip;)

References

url	talosintelligence.com/vulnerability_reports/talos-2025-2176
cve	2025-32731

Metadata

attack targetServer

tls stateTLSDecrypt

created at2026_01_02

cveCVE-2025-32731

deploymentSSLDecrypt

performance impactLow

confidenceHigh

signature severityMajor

updated at2026_01_02

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!