Rule Update
24-024 (May 14, 2024)
DESCRIPTION
* indicates a new version of an existing rule
Deep Packet Inspection Rules:
Apache Pulsar
1012032 - Apache Pulsar Directory Traversal Vulnerability (CVE-2024-27317)
PaperCut
1012041 - PaperCut NG And MF Reflected Cross-Site Scripting Vulnerability (CVE-2024-1883)
Solr Service
1012028* - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)
Web Application PHP Based
1012021 - Grav CMS Directory Traversal Vulnerability (CVE-2024-27921)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
Web Server HTTPS
1011982* - Centreon SQL Injection Vulnerability (CVE-2024-23117)
1011981* - Centreon SQL Injection Vulnerability (CVE-2024-23118)
1011980* - Centreon SQL Injection Vulnerability (CVE-2024-23119)
Web Server Miscellaneous
1012038 - CrushFTP Server-Side Template Injection Vulnerability (CVE-2024-4040)
1012031 - GitLab Denial Of Service Vulnerability (CVE-2024-2818)
1012033 - XWiki Code Injection Vulnerability (CVE-2024-31465)
Web Server SharePoint
1012044 - Microsoft SharePoint Server Information Disclosure Vulnerability (CVE-2024-30043)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.
Deep Packet Inspection Rules:
Apache Pulsar
1012032 - Apache Pulsar Directory Traversal Vulnerability (CVE-2024-27317)
PaperCut
1012041 - PaperCut NG And MF Reflected Cross-Site Scripting Vulnerability (CVE-2024-1883)
Solr Service
1012028* - Apache Solr Arbitrary File Upload Vulnerability (CVE-2023-50386)
Web Application PHP Based
1012021 - Grav CMS Directory Traversal Vulnerability (CVE-2024-27921)
1012007* - WordPress 'Ultimate Member' Plugin SQL Injection Vulnerability (CVE-2024-1071)
Web Server HTTPS
1011982* - Centreon SQL Injection Vulnerability (CVE-2024-23117)
1011981* - Centreon SQL Injection Vulnerability (CVE-2024-23118)
1011980* - Centreon SQL Injection Vulnerability (CVE-2024-23119)
Web Server Miscellaneous
1012038 - CrushFTP Server-Side Template Injection Vulnerability (CVE-2024-4040)
1012031 - GitLab Denial Of Service Vulnerability (CVE-2024-2818)
1012033 - XWiki Code Injection Vulnerability (CVE-2024-31465)
Web Server SharePoint
1012044 - Microsoft SharePoint Server Information Disclosure Vulnerability (CVE-2024-30043)
Integrity Monitoring Rules:
There are no new or updated Integrity Monitoring Rules in this Security Update.
Log Inspection Rules:
There are no new or updated Log Inspection Rules in this Security Update.