alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB Possible Wordpress Administrative Password Reset Vulnerability"; flow:to_server,established; uricontent:"/wp-login.php?action=rp&key[]="; nocase; classtype:web-application-attack; reference:url,www.securitytracker.com/alerts/2009/Aug/1022707.html; reference:url,doc.emergingthreats.net/2009748; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Wordpress; sid:2009748; rev:2;)
Added 2009-08-14 13:30:38 UTC
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB Possible Wordpress Administrative Password Reset Vulnerability"; flow:to_server,established; uricontent:"/wp-login.php?action=rp&key[]="; nocase; classtype:web-application-attack; reference:url,www.securitytracker.com/alerts/2009/Aug/1022707.html; reference:url,doc.emergingthreats.net/2009748; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB/WEB_Wordpress; sid:2009748; rev:2;)
Added 2009-08-14 13:30:38 UTC
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB Possible Wordpress Administrative Password Reset Vulnerability"; flow:to_server,established; uricontent:"/wp-login.php?action=rp&key[]="; nocase; classtype:web-application-attack; reference:url,www.securitytracker.com/alerts/2009/Aug/1022707.html; sid:2009748; rev:1;)
Added 2009-08-11 09:30:39 UTC