cscli appsec-rules install crowdsecurity/vpatch-CVE-2023-2009
1name: crowdsecurity/vpatch-CVE-2023-20092description: "Pretty Url - XSS (CVE-2023-2009)"3rules:4 - and:5 - zones:6 - METHOD7 match:8 type: equals9 value: POST10 - zones:11 - URI12 transform:13 - lowercase14 match:15 type: contains16 value: /wp-admin/admin.php17 - zones:18 - ARGS19 variables:20 - page21 transform:22 - lowercase23 match:24 type: equals25 value: prettyurls26 - zones:27 - BODY_ARGS28 variables:29 - url30 match:31 type: libinjectionXSS3233labels:34 type: exploit35 service: http36 confidence: 337 spoofable: 038 behavior: "http:exploit"39 label: "Pretty Url - XSS"40 classification:41 - cve.CVE-2023-200942 - attack.T159543 - attack.T119044 - cwe.CWE-89