PHP : RFI attack attempt on a vulnerable application


Description   This signature is designed to fight against Remote File Inclusion attacks on known applications.
It is similar to the already existing one [http:url:decoded.117] which implements a generic way to detect RFI.
But as this signature only detects RFI on vulnerable applications it can be enabled without causing false-positives.
     
Default
configuration 		 
Profiles High Medium Low Internet
Action Block Block Pass Block
Alarm Level Minor Minor Minor Minor
     
References  
     
Available since   ASQ v5.0.0
     
Protects   Wordpress Multiple Third Party Plugins Multiple Vulnerabilities
Wordpress Multiple Third Party Plugins Multiple Vulnerabilities
Wordpress Multiple Third Party Plugins Multiple Vulnerabilities
100 last CVE  


 
 
 
 
 Risk level 
Moderate