24-043 (September 17, 2024)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

SolarWinds Dameware Web Help Desk
1012127* - SolarWinds Dameware Web Help Desk Deserialization Remote Code Execution Vulnerability (CVE-2024-28986)


Web Application PHP Based
1012121* - LibreNMS SQL Injection Vulnerability (CVE-2024-32480)
1012106 - WordPress 'Hash Form' Plugin Arbitrary File Upload Vulnerability (CVE-2024-5084)
1012146 - WordPress 'Porto' Theme Local File Inclusion Vulnerability (CVE-2024-3806 and CVE-2024-3807)


Web Server HTTPS
1012131 - Dolibarr ERP And CRM Reflected Cross-Site Scripting Vulnerability (CVE-2024-34051)
1012139 - Progress WhatsUp Gold SQL Injection Vulnerability (CVE-2024-6672)


Web Server Miscellaneous
1012132* - XWiki Cross-Site Scripting Vulnerability (CVE-2024-37900)
1012138 - XWiki Server-Side Template Injection Vulnerability (CVE-2024-37901)


Web Server SharePoint BDC
1012113* - Microsoft SharePoint Server Remote Code Execution Vulnerability (CVE-2024-38023)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.