EmergingThreats> Main Web>2005252 (revision 1)EditAttach

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-18 15:04:11 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-18 02:31:37 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-16 04:19:27 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 23:01:56 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 07:02:41 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 05:07:25 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 04:40:22 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 03:32:10 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 03:20:16 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 03:14:52 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 02:47:39 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 01:31:40 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-15 01:16:22 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 23:16:23 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 23:02:23 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 13:46:24 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 03:02:15 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 02:56:50 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 02:16:34 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 02:02:48 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 01:38:38 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 01:02:21 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-14 00:03:26 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-13 10:35:33 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-13 04:20:36 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID INSERT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; uricontent:"INSERT"; nocase; pcre:"/INSERT.+INTO/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:2;)

Added 2007-08-13 04:14:02 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID UNION SELECT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; pcre:"/UNION\s+SELECT/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:1;)

Added 2007-06-13 01:20:16 UTC


alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB webSPELL SQL Injection Attempt -- gallery.php galleryID UNION SELECT"; flow:established,to_server; uricontent:"/gallery.php?"; nocase; uricontent:"galleryID="; nocase; pcre:"/UNION\s+SELECT/Ui"; classtype:web-application-attack; reference:cve,CVE-2007-0492; reference:url,www.frsirt.com/english/advisories/2007/0270; sid:2005252; rev:1;)

Added 2007-06-13 01:20:16 UTC


Edit | Attach | Print version | History: r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions...
Topic revision: r1 - 2007-08-18 - MattJonkman
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats