Think you have a false positive on this rule?

Sid 1-48448

Message

SERVER-WEBAPP Drupal open redirect external URL injection attempt

Summary

This event is generated when Drupal open redirect external URL injection attempt.

Impact

Attempted Administrator Privilege Gain

Detailed information

Affected systems

Ease of attack

False positives

False negatives

Corrective action

Contributors

  • Cisco's Talos Intelligence Group

Additional References

  • www.drupal.org/sa-core-2018-006