[Emerging-Sigs] Signature for Pre Projects E-Smart Cart 'embadmin/login.asp' SQL Injection Vulnerabilities

dave richards dave.richards0319 at gmail.com
Fri Oct 15 07:05:35 EDT 2010


Hi Matt,

Please find the signature for the following,

Pre Projects E-Smart Cart 'embadmin/login.asp' SQL Injection Vulnerabilities
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"WEB-PHP
Pre Projects E-Smart Cart login.asp Arbitrary SQL Command Injection
Attempt"; flow:established,to_server; content:"POST"; depth:5;
uricontent:"/embadmin/login.asp"; nocase; content:"%27"; distance:0;
classtype:web-application-attack;
reference:url,juniper-federal.org/security/auto/vulnerabilities/vuln37418.html;
reference:url,exploit-db.com/exploits/14376; sid:20101024; rev:1;)
-- 
Regards,
Dave


More information about the Emerging-sigs mailing list