2004904 < Main < EmergingThreats

EmergingThreats>

Main Web>2004904 (2020-08-05, TWikiGuest)

EditAttach

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; content:"/nickpage.php?"; http_uri; nocase; content:"npid="; http_uri; nocase; content:"UPDATE"; http_uri; nocase; pcre:"/UPDATE.+SET/Ui"; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; classtype:web-application-attack; sid:2004904; rev:7; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, signature_severity Major, tag SQL_Injection, updated_at 2019_09_26;)

Added 2020-08-05 19:02:46 UTC

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; content:"/nickpage.php?"; http_uri; nocase; content:"npid="; http_uri; nocase; content:"UPDATE"; http_uri; nocase; pcre:"/UPDATE.+SET/Ui"; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; classtype:web-application-attack; sid:2004904; rev:7; metadata:affected_product Web_Server_Applications, attack_target Web_Server, deployment Datacenter, tag SQL_Injection, signature_severity Major, created_at 2010_07_30, updated_at 2019_09_26;)

Added 2019-09-26 19:55:13 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; content:"/nickpage.php?"; http_uri; nocase; content:"npid="; http_uri; nocase; content:"UPDATE"; http_uri; nocase; pcre:"/UPDATE.+SET/Ui"; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; classtype:web-application-attack; sid:2004904; rev:6; metadata:affected_product Web_Server_Applications, attack_target Web_Server, deployment Datacenter, tag SQL_Injection, signature_severity Major, created_at 2010_07_30, updated_at 2019_08_22;)

Added 2019-08-22 20:11:39 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; classtype:web-application-attack; sid:2004904; rev:5; metadata:affected_product Web_Server_Applications, attack_target Web_Server, deployment Datacenter, tag SQL_Injection, signature_severity Major, created_at 2010_07_30, updated_at 2016_07_01;)

Added 2017-08-07 20:58:05 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; classtype:web-application-attack; sid:2004904; rev:5;)

Added 2011-10-12 19:16:57 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; sid:2004904; rev:5;)

Added 2011-09-14 22:29:54 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2011-02-04 17:23:47 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2009-10-06 14:40:03 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC_APPS phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2009-10-06 14:40:03 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2009-10-06 14:20:36 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2009-10-06 14:20:36 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2009-10-06 14:17:12 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SPECIFIC_APPS/WEB_phpCC; sid:2004904; rev:5;)

Added 2009-10-06 14:17:12 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_phpCC; sid:2004904; rev:4;)

Added 2009-03-01 16:18:50 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_phpCC; sid:2004904; rev:4;)

Added 2009-03-01 16:18:50 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_phpCC; sid:2004904; rev:4;)

Added 2009-03-01 16:15:26 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; reference:url,doc.emergingthreats.net/2004904; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/WEB_SQL_INJECTION/WEB_phpCC; sid:2004904; rev:4;)

Added 2009-03-01 16:15:26 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:3;)

Added 2008-02-01 10:47:13 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"ET WEB_SPECIFIC phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:3;)

Added 2008-02-01 10:47:13 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-29 09:47:47 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-29 05:17:09 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-29 04:04:42 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-29 03:49:19 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 12:56:18 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 10:32:56 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 05:35:23 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 05:09:53 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 04:39:38 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 03:49:14 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-27 02:40:47 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-26 23:05:59 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-25 14:28:07 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-25 01:35:29 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-25 00:52:30 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-24 23:48:40 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-24 16:04:34 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-24 14:40:10 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-24 03:17:18 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-24 02:57:49 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-23 08:46:36 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-22 23:04:57 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-22 22:47:31 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-22 12:04:44 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-21 22:06:19 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-21 00:31:18 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-20 10:04:42 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-20 04:17:23 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-19 22:43:37 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-19 20:53:47 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-19 01:37:26 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-19 01:23:35 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-18 11:47:32 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-18 11:40:33 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-18 15:04:10 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-18 02:31:37 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-16 04:19:25 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 23:01:55 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 07:02:41 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 05:07:24 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 04:40:21 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 03:32:10 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 03:20:15 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 03:14:50 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 02:47:37 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 01:31:40 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-15 01:16:21 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 23:16:23 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 23:02:21 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 13:46:24 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 03:02:14 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 02:56:49 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 02:16:33 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 02:02:45 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 01:38:36 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 01:02:20 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-14 00:03:25 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-13 10:35:31 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-13 04:20:34 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; uricontent:"UPDATE"; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:2;)

Added 2007-08-13 04:14:01 UTC

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB phpCC SQL Injection Attempt -- nickpage.php npid UPDATE"; flow:established,to_server; uricontent:"/nickpage.php?"; nocase; uricontent:"npid="; nocase; pcre:"/UPDATE.+SET/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0985; reference:url,www.milw0rm.com/exploits/3299; sid:2004904; rev:1;)

Added 2007-06-10 20:30:39 UTC

Topic revision: r1 - 2020-08-05 - TWikiGuest

Main

User Reference
ATasteOfTWiki
TextFormattingRules

Signature Reference
WebRss Feed
EmergingFAQ