SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP Adobe Commerce and Magento Open Source XML external entity injection attempt
This rule looks for XXE injection patterns included in a "sourceData.data" JSON key in requests sent to Adobe Commerce and Magento Open Source web applications.
This rule fires on attempts to exploit an external entity injection vulnerability in the Adobe Commerce and Magento Open Source web applications.
Attacks/Scans seen in the wild
No known false positives
Cisco Talos Intelligence Group
Rule Categories::Server::Web Applications
MITRE::ATT&CK Framework::Enterprise::Initial Access::Exploit Public-Facing Application
Insecure Deserialization
Insecure Deserialization relates to web application security. Applications turn an object into data through serialization; the reverse of that process, deserialization, can be vulnerable to attacks when the application trusts the data that is being deserialized. Serialized data is machine readable and not encrypted; serialized user-supplied data should not be trusted. Deserialization attacks can lead to remote code execution.
CVE-2024-34102 |
Loading description
|