ATTACK [PTsecurity] Magento < 2.0.6 Arbitrary write file

SID: 10000042Rev: 351 views
History
Sourceptrules/open
CreatedJuly 24, 2025
UpdatedJuly 24, 2025
Classificationattempted-admin
alert http any any -> any any (msg:"ATTACK [PTsecurity] Magento < 2.0.6 Arbitrary write file"; content:"rest/V1/guest-carts/"; http_raw_uri; content:"set-payment-information"; http_raw_uri; fast_pattern; http.request_body; content:"|5C 75 30 30 30 30|"; content:"Magento\\\\Sales\\\\Model\\\\Order\\\\Payment\\\\Transaction"; reference:cve, 2016-4010; reference:url, netanelrub.in/2016/05/17/magento-unauthenticated-remote-code-execution; reference:url, rules.ptsecurity.com; classtype:attempted-admin; sid:10000042; rev:3;)

References

cve2016-4010
urlnetanelrub.in/2016/05/17/magento-unauthenticated-remote-code-execution
urlrules.ptsecurity.com

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!