alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Possible Cookie Based BackDoor? Used in Drupal Attacks"; flow:established,to_server; content:"preg_replace"; http_cookie; nocase; metadata: former_category WEB_SERVER; reference:url,www.kahusecurity.com/posts/drupal_7_sql_injection_info.html; classtype:attempted-user; sid:2019627; rev:3; metadata:created_at 2014_11_03, updated_at 2014_11_03;)

Added 2018-12-05 18:39:00 UTC


alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Possible Cookie Based BackDoor? Used in Drupal Attacks"; flow:established,to_server; content:"preg_replace"; http_cookie; nocase; reference:url,www.kahusecurity.com/2014/drupal-7-sql-injection-info/; classtype:attempted-user; sid:2019627; rev:2; metadata:created_at 2014_11_03, updated_at 2014_11_03;)

Added 2018-09-13 19:49:43 UTC


Added 2018-09-13 17:59:15 UTC


alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Possible Cookie Based BackDoor? Used in Drupal Attacks"; flow:established,to_server; content:"preg_replace"; http_cookie; nocase; reference:url,www.kahusecurity.com/2014/drupal-7-sql-injection-info/; classtype:attempted-user; sid:2019627; rev:2; metadata:created_at 2014_11_03, updated_at 2014_11_03;)

Added 2017-08-07 21:13:55 UTC


alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SERVER Possible Cookie Based BackDoor? Used in Drupal Attacks"; flow:established,to_server; content:"preg_replace"; http_cookie; nocase; reference:url,www.kahusecurity.com/2014/drupal-7-sql-injection-info/; classtype:attempted-user; sid:2019627; rev:2;)

Added 2014-11-03 22:29:19 UTC


Topic revision: r1 - 2018-12-05 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats