Hub Appsec rule

More info

vpatch-CVE-2022-38627 AppSec Rule

« vpatch-CVE-2022-38627 »
v0.1 by crowdsecurity
AppSec rule

Detects SQL injection vulnerability in Linear eMerge E3-Series via idt parameter

Installation

cscli appsec-rules install crowdsecurity/vpatch-CVE-2022-38627

YAML Configuration

1## autogenerated on 2025-10-01 14:02:41
2name: crowdsecurity/vpatch-CVE-2022-38627
3description: 'Detects SQL injection vulnerability in Linear eMerge E3-Series via idt parameter'
4rules:
5  - and:
6      - zones:
7          - URI
8        transform:
9          - lowercase
10          - urldecode
11        match:
12          type: contains
13          value: '/badging/badge_template_print.php'
14      - zones:
15          - ARGS
16        variables:
17          - idt
18        match:
19          type: regex
20          value: '[^0-9]'
21
22labels:
23  type: exploit
24  service: http
25  confidence: 3
26  spoofable: 0
27  behavior: 'http:exploit'
28  label: 'Linear eMerge E3-Series - SQLI'
29  classification:
30    - cve.CVE-2022-38627
31    - attack.T1190
32    - cwe.CWE-89
33

Hub Appsec rule

« vpatch-CVE-2022-38627 »v0.1 by crowdsecurityAppSec rule

« vpatch-CVE-2022-38627 »
v0.1 by crowdsecurity
AppSec rule