vpatch-CVE-2023-0600 AppSec Rule

« vpatch-CVE-2023-0600 »
v0.1 by crowdsecurity
AppSec rule

WP Visitor Statistics - SQL Injection (CVE-2023-0600)

Installation

cscli appsec-rules install crowdsecurity/vpatch-CVE-2023-0600

YAML Configuration

1name: crowdsecurity/vpatch-CVE-2023-0600
2description: "WP Visitor Statistics - SQL Injection (CVE-2023-0600)"
3rules:
4  - and:
5    - zones:
6      - METHOD
7      match:
8        type: equals
9        value: GET
10    - zones:
11      - ARGS
12      variables:
13      - visitorId
14      match:
15        type: libinjectionSQL
16
17labels:
18  type: exploit
19  service: http
20  confidence: 3
21  spoofable: 0
22  behavior: "http:exploit"
23  label: "WP Visitor Statistics - SQL Injection"
24  classification:
25   - cve.CVE-2023-0600
26   - attack.T1595
27   - attack.T1190
28   - cwe.CWE-89

Hub Appsec rule

« vpatch-CVE-2023-0600 »v0.1 by crowdsecurityAppSec rule

« vpatch-CVE-2023-0600 »
v0.1 by crowdsecurity
AppSec rule