Update #3817 - (06/18/2025)

New Signatures

Signature Name	Severity	Description
HTTP:STC:DL:GNU-GIMP-DDS-IMG-IO	major	This signature detects attempts to exploit a known vulnerability against GNU Image Manipulation Program. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.
HTTP:STC:DELTA-DFAX-STCK-BO	major	This signature detects attempts to exploit a known vulnerability against Delta Electronics CNCSoft-G2 DOPSoft DPAX File. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the Delta Electronics.
HTTP:CTS:CODER-CODE-SER-PROXY	major	This signature detects attempts to exploit a known vulnerability against Coder code-server. A successful attack can lead to access control bypass, spoofing conditions, or the attacker obtaining the victim's session token.
HTTP:DOS:DJANGO-FILTER-DOS	major	This signature detects attempts to exploit a known vulnerability against Django. A successful attack can result in a denial-of-service condition.
HTTP:CTS:MS-SHAREPNT-GPA-INJ	major	This signature detects attempts to exploit a known vulnerability against Microsoft SharePoint Server. A successful attack can lead to command injection and arbitrary code execution.
HTTP:CTS:FORTINT-SANDBX-CMD-INJ	major	This signature detects attempts to exploit a known vulnerability against Fortinet. A successful attack can lead to command injection and arbitrary code execution.
HTTP:CTS:IVANTI-WLDCRD-NTLM-RL	major	This signature detects attempts to exploit a known vulnerability against Ivanti. A successful attack can lead to sensitive information disclosure.

Updated Signatures

Signature Name	Severity	Description
HTTP:DIR:IVANTI-ENDPT-EFILE	major	This signature detects attempts to exploit a known vulnerability against Ivanti. A successful attack can lead to directory traversal and arbitrary code execution.
HTTP:XSS:MYBB-VEDITOR-SVG	minor	This signature detects Web pages containing dangerous script . A malicious Web site can exploit a known vulnerability in MyBB visual editor and gain control of the client browser.
DNS:ISC-BIND-PACKAGE-DOS	major	This signature detects attempts to exploit a known vulnerability against BIND DNS package bind9. A successful exploit can lead to denial of service.
HTTP:CTS:IVANTI-AVL-AUTH-BYPASS	major	This signature detects attempts to exploit a known vulnerability against Ivanti Avalanche. A successful attack can lead to sensitive information disclosure.