Network Content Inspection Rules
Default Rule:
Enable
Disable
| Rule ID | Rule Description | Confidence Level | DDI Default Rule | Network Content Inspection Pattern Release Date | ||
|---|---|---|---|---|---|---|
| DDI RULE 5838 | CVE-2025-6978 - Artista NG Firewall Command Injection Exploit - HTTP(Request) | 2026/05/28 | DDI RULE 5838 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5838 | ||
| DDI RULE 5843 | CVE-2025-30208 - ViteJS Traversal Exploit - HTTP(Request) | 2026/05/28 | DDI RULE 5843 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5843 | ||
| DDI RULE 5844 | Apache RCE Exploit - HTTP(Request) | 2026/05/28 | DDI RULE 5844 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5844 | ||
| DDI RULE 5845 | CVE-2025-32813 - Inflobox RCE Exploit - HTTP(Request) | 2026/05/28 | DDI RULE 5845 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5845 | ||
| DDI RULE 5836 | CVE-2026-42945 - F5 NGINX Buffer Overflow Exploit - HTTP(Request) | 2026/05/26 | DDI RULE 5836 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5836 | ||
| DDI RULE 5837 | CVE-2026-3838 - Unraid Update and Authentication Request Path Traversal Exploit - HTTP (Request) | 2026/05/26 | DDI RULE 5837 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5837 | ||
| DDI RULE 5839 | CVE-2025-6979 - Artista NG Firewall Authentication Bypass Exploit - HTTP(Request) | 2026/05/26 | DDI RULE 5839 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5839 | ||
| DDI RULE 5840 | CVE-2025-6980 - Artista NG Firewall RCE Exploit - HTTP(Request) | 2026/05/26 | DDI RULE 5840 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5840 | ||
| DDI RULE 5841 | CVE-2026-20029 - Cisco ISE XXE Exploit - HTTP(Request) | 2026/05/26 | DDI RULE 5841 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5841 | ||
| DDI RULE 5842 | CVE-2024-20439 - CISCO CSLU RCE EXPLOIT - HTTP(Response) | 2026/05/26 | DDI RULE 5842 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5842 | ||
| DDI RULE 5829 | CVE-2026-20186 - UnrealIRCd RCE Exploit - TCP(Request) | 2026/05/25 | DDI RULE 5829 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5829 | ||
| DDI RULE 5832 | CVE-2020-24949 - PHPFusion RCE Exploit - HTTP(Request) | 2026/05/25 | DDI RULE 5832 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5832 | ||
| DDI RULE 5833 | CVE-2025-5777 - Citrix Buffer Exploit - HTTP(Request) | 2026/05/25 | DDI RULE 5833 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5833 | ||
| DDI RULE 5834 | CVE-2026-20186 - Cisco Traversal Exploit - HTTP(Request) | 2026/05/25 | DDI RULE 5834 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5834 | ||
| DDI RULE 5835 | CVE-2024-7029 - AVTech CMD Injection - HTTP(Request) | 2026/05/25 | DDI RULE 5835 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5835 | ||
| DDI RULE 5817 | REMUS STEALER - HTTP(Response) | 2026/05/18 | DDI RULE 5817 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5817 | ||
| DDI RULE 5823 | Oracle RCE Exploit - HTTP(Request) | 2026/05/18 | DDI RULE 5823 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5823 | ||
| DDI RULE 5824 | CVE-2025-27240 - Zabbix SQL Injection Exploit - HTTP(Request) | 2026/05/18 | DDI RULE 5824 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5824 | ||
| DDI RULE 5825 | CVE-2021-36260 - Hikvision CMD Injection Exploit - HTTP(Request) | 2026/05/18 | DDI RULE 5825 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5825 | ||
| DDI RULE 5826 | CVE-2026-3342 - WatchGuard Fireware OS Stack Buffer Overflow Exploit - HTTP(Request) | 2026/05/18 | DDI RULE 5826 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5826 | ||
| DDI RULE 5827 | CVE-2026-42897 - Microsoft Exchange Server OWA - HTTP (Response) | 2026/05/18 | DDI RULE 5827 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5827 | ||
| DDI RULE 5819 | CVE-2026-27876 - Grafana Labs Grafana SQL Expressions Exploit - HTTP(Request) | 2026/05/13 | DDI RULE 5819 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5819 | ||
| DDI RULE 5821 | Windows NetLogon Buffer Overflow Exploit - UDP (Request) | 2026/05/13 | DDI RULE 5821 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5821 | ||
| DDI RULE 5822 | Microsoft Office LineServices Layout Engine RCE Exploit - SMTP (Request) | 2026/05/13 | DDI RULE 5822 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5822 | ||
| DDI RULE 5801 | SHULUD GitHub Repository Exfiltration - HTTP (Request) | 2026/05/12 | DDI RULE 5801 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5801 | ||
| DDI RULE 5802 | Bun Package GitHub Download Sensor - HTTP (Request) | 2026/05/12 | DDI RULE 5802 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5802 | ||
| DDI RULE 5803 | Exfiltration via Dead Drop C2 - HTTP (Response) | 2026/05/12 | DDI RULE 5803 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5803 | ||
| DDI RULE 5806 | CVE-2023-51833 - TrendNet CMD Injection Exploit - HTTP(Response) | 2026/05/12 | DDI RULE 5806 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5806 | ||
| DDI RULE 5810 | CVE-2025-7769 - Tigo CMD Injection - HTTP(Request) | 2026/05/12 | DDI RULE 5810 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5810 | ||
| DDI RULE 5811 | CVE-2026-0768 - LANGFLOW RCE EXPLOIT - HTTP(Request) | 2026/05/12 | DDI RULE 5811 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5811 | ||
| DDI RULE 5818 | CVE-2026-20180 - Cisco Identity Services Engine Directory Traversal Exploit - HTTP(Request) | 2026/05/12 | DDI RULE 5818 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5818 | ||
| DDI RULE 5820 | CVE-2026-0300 - PAN OS Buffer Overflow Exploit - HTTP(Request) | 2026/05/12 | DDI RULE 5820 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5820 | ||
| DDI RULE 5794 | CVE-2018-1171 - TPLink CMD INJ Exploit - HTTP(Response) | 2026/05/11 | DDI RULE 5794 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5794 | ||
| DDI RULE 5808 | CVE-2026-25654 - Siemens SINEC NMS Privilege Escalation Exploit - HTTP (Request) | 2026/05/11 | DDI RULE 5808 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5808 | ||
| DDI RULE 5809 | Tenda Router CMD Injection - HTTP(Request) | 2026/05/11 | DDI RULE 5809 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5809 | ||
| DDI RULE 5812 | CVE-2026-0773 - UPSONIC RCE EXPLOIT - HTTP(Request) | 2026/05/11 | DDI RULE 5812 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5812 | ||
| DDI RULE 5813 | CVE-2026-0757 - MCP Command Injection Exploit - HTTP(Response) | 2026/05/11 | DDI RULE 5813 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5813 | ||
| DDI RULE 5814 | CVE-2025-67685 - FORTINET SSRF RCE EXPLOIT - HTTP(Request) | 2026/05/11 | DDI RULE 5814 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5814 | ||
| DDI RULE 5815 | CVE-2026-0763 - GPT ACADEMIC RCE EXPLOIT - HTTP(Request) | 2026/05/11 | DDI RULE 5815 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5815 | ||
| DDI RULE 5816 | CVE-2025-15063 - OLLAMA MCP RCE EXPLOIT - HTTP(Request) | 2026/05/11 | DDI RULE 5816 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5816 | ||
| DDI RULE 5807 | CVE-2026-34197 - Apache RCE Exploit - HTTP(Request) | 2026/05/07 | DDI RULE 5807 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5807 | ||
| DDI RULE 5797 | Belkin Edimax CMD Injection Exploit - HTTP(Request) | 2026/05/06 | DDI RULE 5797 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5797 | ||
| DDI RULE 5804 | CVE-2025-40598 - SonicWall XSS Exploit - HTTP(Request) | 2026/05/06 | DDI RULE 5804 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5804 | ||
| DDI RULE 5805 | CVE-2025-68614 - LibreNMS XSS Exploit - HTTP(Request) | 2026/05/06 | DDI RULE 5805 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5805 | ||
| DDI RULE 5786 | CVE-2025-15060 - Claude-Hovercraft executeClaudeCode RCE Exploit - HTTP (Request) | 2026/05/05 | DDI RULE 5786 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5786 | ||
| DDI RULE 5798 | CVE-2026-0764 - GPT RCE EXPLOIT - HTTP(Request) | 2026/05/05 | DDI RULE 5798 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5798 | ||
| DDI RULE 5799 | CVE-2026-0762 - GPT RCE EXPLOIT - HTTP(Request) | 2026/05/05 | DDI RULE 5799 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5799 | ||
| DDI RULE 5800 | CVE-2026-0774 - LAN RCE EXPLOIT - HTTP(Request) | 2026/05/05 | DDI RULE 5800 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5800 | ||
| DDI RULE 1586 | Bitcoin Mining - TCP(Request) | 2026/05/04 | DDI RULE 1586 | /vinfo/us/threat-encyclopedia/network/ddi-rule-1586 | ||
| DDI RULE 5795 | CVE-2025-54353 - FORTINET XSS EXPLOIT - HTTP(Request) | 2026/05/04 | DDI RULE 5795 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5795 | ||
| DDI RULE 5796 | CVE-2026-2033 - MLFLOW TRAVERSAL EXPLOIT - HTTP(Request) | 2026/05/04 | DDI RULE 5796 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5796 | ||
| DDI RULE 5792 | cPanel and WHM Authentication Bypass Exploit - HTTP (Request) | 2026/04/30 | DDI RULE 5792 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5792 | ||
| DDI RULE 5763 | Use or Access of Dynamic DNS Services - DNS (Response) | 2026/04/29 | DDI RULE 5763 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5763 | ||
| DDI RULE 5785 | CVE-2025-40536 - SolarWinds Web Help Desk checkCsrfTokenWo Authentication Bypass Exploit - HTTP(Response) | 2026/04/29 | DDI RULE 5785 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5785 | ||
| DDI RULE 5791 | Access to a Resource or Site using Dynamic DNS Service - HTTPS (Request) | 2026/04/29 | DDI RULE 5791 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5791 | ||
| DDI RULE 5784 | CVE-2025-61812 - Adobe ColdFusion _storeCFSettingFile Directory Traversal Exploit - HTTP(Response) | 2026/04/28 | DDI RULE 5784 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5784 | ||
| DDI RULE 5787 | CVE-2026-2635 - MLflow Use of Default Password Authentication Bypass Exploit - HTTP(Request) | 2026/04/28 | DDI RULE 5787 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5787 | ||
| DDI RULE 5788 | CVE-2026-5491 - DriveLock Directory Traversal Exploit - HTTP (Request) | 2026/04/28 | DDI RULE 5788 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5788 | ||
| DDI RULE 5789 | CVE-2026-5490 - DriveLock SQL Injection Exploit - HTTP (Request) | 2026/04/28 | DDI RULE 5789 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5789 | ||
| DDI RULE 5790 | CVE-2026-5487 - DriveLock Directory Traversal Exploit - HTTP (Request) | 2026/04/28 | DDI RULE 5790 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5790 | ||
| DDI RULE 5781 | CVE-2025-66034 - FONTTOOLS XML EXPLOIT - HTTP(Request) | 2026/04/27 | DDI RULE 5781 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5781 | ||
| DDI RULE 5782 | CVE-2026-20079 - CISCO AUTHBYPASS EXPLOIT - HTTP(Request) | 2026/04/27 | DDI RULE 5782 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5782 | ||
| DDI RULE 5783 | CVE-2026-20133 - CISCO TRAVERSAL EXPLOIT - HTTP(Request) | 2026/04/27 | DDI RULE 5783 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5783 | ||
| DDI RULE 5778 | AXIOSRAT BACKDOOR - HTTP(REQUEST) | 2026/04/23 | DDI RULE 5778 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5778 | ||
| DDI RULE 5779 | CVE-2024-1781 - Totolink CMD Injection Exploit - HTTP(Request) | 2026/04/23 | DDI RULE 5779 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5779 | ||
| DDI RULE 5780 | CVE-2025-5504 - Totolink CMD INJ Exploit - HTTP(Request) | 2026/04/23 | DDI RULE 5780 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5780 | ||
| DDI RULE 5768 | SERVER ERROR CODE - HTTP(Response) | 2026/04/22 | DDI RULE 5768 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5768 | ||
| DDI RULE 5777 | CVE-2025-9816 - WORDPRESS XSS EXPLOIT - HTTP(Request) | 2026/04/22 | DDI RULE 5777 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5777 | ||
| DDI RULE 5771 | Dlink TRENDnet CMD Injection Exploit - HTTP(Request) | 2026/04/21 | DDI RULE 5771 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5771 | ||
| DDI RULE 5772 | CVE-2025-13444 - Progress CMD Injection Exploit - HTTP(Request) | 2026/04/21 | DDI RULE 5772 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5772 | ||
| DDI RULE 5773 | Hytec Inter CMD Injection Exploit - HTTP(Request) | 2026/04/21 | DDI RULE 5773 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5773 | ||
| DDI RULE 5774 | CVE-2020-10987 - Tenda CMD Injection Exploit - HTTP(Request) | 2026/04/21 | DDI RULE 5774 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5774 | ||
| DDI RULE 5775 | CVE-2025-13447 - Progress CMD Injection Exploit - HTTP(Request) | 2026/04/21 | DDI RULE 5775 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5775 | ||
| DDI RULE 5776 | CVE-2025-46704 - Advantech Traversal Exploit - HTTP(Request) | 2026/04/21 | DDI RULE 5776 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5776 | ||
| DDI RULE 5769 | CVE-2026-26988 - LibreNMS ajax_table SQL Injection Exploit - HTTP(Request) | 2026/04/20 | DDI RULE 5769 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5769 | ||
| DDI RULE 5770 | CVE-2026-25623 -Arista NG Firewall ExecManager Command Injection Exploit - HTTP(Request) | 2026/04/20 | DDI RULE 5770 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5770 | ||
| DDI RULE 5766 | SQL INJECT EXPLOIT - HTTP2(Request) | 2026/04/16 | DDI RULE 5766 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5766 | ||
| DDI RULE 5767 | OFFICESCAN TRAVERSAL EXPLOIT - HTTP(Request) | 2026/04/16 | DDI RULE 5767 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5767 | ||
| DDI RULE 5765 | CVE-2026-32201 - Sharepoint Auth Bypass EXPLOIT - HTTP (Request) | 2026/04/15 | DDI RULE 5765 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5765 | ||
| DDI RULE 5747 | Netgate pfSense Directory Traversal Exploit - HTTP(Request) | 2026/04/14 | DDI RULE 5747 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5747 | ||
| DDI RULE 5755 | CVE-2026-20122 - CISCO TRAVERSAL EXPLOIT - HTTP(Request) | 2026/04/14 | DDI RULE 5755 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5755 | ||
| DDI RULE 5756 | CVE-2025-68165 - JETBRAINS EXPLOIT - HTTP(Request) | 2026/04/14 | DDI RULE 5756 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5756 | ||
| DDI RULE 5757 | CVE-2026-28292 - NODEJS EXPLOIT - HTTP(Request) | 2026/04/14 | DDI RULE 5757 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5757 | ||
| DDI RULE 5758 | CVE-2026-25620 - NG FIREWALL EXPLOIT - HTTP(Request) | 2026/04/14 | DDI RULE 5758 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5758 | ||
| DDI RULE 5764 | CVE-2026-24848 - OpenEMR EtherFaxActions.php Traversal Exploit - HTTP(Request) | 2026/04/14 | DDI RULE 5764 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5764 | ||
| DDI RULE 5748 | CVE-2026-26990 - LIBRENMS SQL EXPLOIT - HTTP(Request) | 2026/04/13 | DDI RULE 5748 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5748 | ||
| DDI RULE 5754 | CVE-2026-25746 - OPENEMR SQL EXPLOIT - HTTP(Request) | 2026/04/13 | DDI RULE 5754 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5754 | ||
| DDI RULE 5759 | CVE-2025-53679 - FORTINET RCE EXPLOIT - HTTP(Request) | 2026/04/13 | DDI RULE 5759 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5759 | ||
| DDI RULE 5760 | CVE-2025-8518 - VVVEB RCE EXPLOIT - HTTP(Request) | 2026/04/13 | DDI RULE 5760 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5760 | ||
| DDI RULE 5761 | Github Repository Code Injection Exploit - HTTP (Response) | 2026/04/13 | DDI RULE 5761 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5761 | ||
| DDI RULE 5762 | OpenAI Codex Code Injection Exploit - HTTP (Response) | 2026/04/13 | DDI RULE 5762 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5762 | ||
| DDI RULE 5750 | Active Directory Enumeration Tool - LDAP (Request) | 2026/04/10 | DDI RULE 5750 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5750 | ||
| DDI RULE 5751 | Primary Domain Controller Sensor - DNS (Response) | 2026/04/10 | DDI RULE 5751 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5751 | ||
| DDI RULE 5752 | Global Catalog Server Sensor - DNS (Response) | 2026/04/10 | DDI RULE 5752 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5752 | ||
| DDI RULE 5753 | Kerberos Key Distribution Center Sensor - DNS (Response) | 2026/04/10 | DDI RULE 5753 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5753 | ||
| DDI RULE 5749 | CVE-2025-71243 - SPIP RCE EXPLOIT - HTTP(Request) | 2026/04/08 | DDI RULE 5749 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5749 | ||
| DDI RULE 5848 | CVE-2026-26990 - LIBRENMS SQL EXPLOIT - HTTP(Request) | 2026/04/08 | DDI RULE 5848 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5848 | ||
| DDI RULE 5744 | CVE-2025-8311 - DOTCMS SQL Injection Exploit - HTTP(Request) | 2026/04/07 | DDI RULE 5744 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5744 | ||
| DDI RULE 5745 | CVE-2016-6277 - NetGear CMD Injection Exploit - HTTP(Request) | 2026/04/07 | DDI RULE 5745 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5745 | ||
| DDI RULE 5743 | CVE-2026-4747 - FreeBSD RCE EXPLOIT - TCP(REQUEST) | 2026/04/06 | DDI RULE 5743 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5743 | ||
| DDI RULE 5746 | CVE-2025-8110 - Gogs RCE Exploit - HTTP(Request) | 2026/04/06 | DDI RULE 5746 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5746 | ||
| DDI RULE 5706 | CVE-2026-1603 - Ivanti Endpoint Manager Authentication Bypass Exploit - HTTP(Response) | 2026/04/01 | DDI RULE 5706 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5706 | ||
| DDI RULE 5728 | CVE-2025-69516 - Tactical RRM RCE Exploit - HTTP(Response) | 2026/04/01 | DDI RULE 5728 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5728 | ||
| DDI RULE 5740 | CVE-2024-36985 - Splunk RCE Exploit - HTTP(Request) | 2026/03/31 | DDI RULE 5740 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5740 | ||
| DDI RULE 5741 | CVE-2025-52691 - SmarterMail Arbitrary File Upload Exploit - HTTP(Request) | 2026/03/31 | DDI RULE 5741 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5741 | ||
| DDI RULE 5742 | CVE-2025-62168 - Squid Authentication Bypass Exploit - HTTP (Response) | 2026/03/31 | DDI RULE 5742 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5742 | ||
| DDI RULE 5731 | CVE-2026-1357 - WORDPRESS WPVIVID EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5731 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5731 | ||
| DDI RULE 5732 | CVE-2020-13756 - SABBERWORM EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5732 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5732 | ||
| DDI RULE 5733 | CVE-2025-55752 - APACHE TRAVERSAL EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5733 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5733 | ||
| DDI RULE 5734 | CVE-2022-36553 - HYTEC CMD INJ EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5734 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5734 | ||
| DDI RULE 5735 | CVE-2025-69231 - OPENEMR EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5735 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5735 | ||
| DDI RULE 5736 | CVE-2025-68163 - JETBRAINS EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5736 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5736 | ||
| DDI RULE 5737 | CVE-2025-59775 - APACHE NTLM EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5737 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5737 | ||
| DDI RULE 5738 | CVE-2026-25622 - NG FIREWALL EXPLOIT - HTTP(Request) | 2026/03/30 | DDI RULE 5738 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5738 | ||
| DDI RULE 5739 | CVE-2026-25253 - Openclaw RCE Exploit - HTTP(Request) | 2026/03/30 | DDI RULE 5739 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5739 | ||
| DDI RULE 5729 | CVE-2025-7441 - WORDPRESS RCE EXPLOIT - HTTP(Request) | 2026/03/26 | DDI RULE 5729 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5729 | ||
| DDI RULE 5730 | CVE-2025-55184 - REACT SERVER DOS EXPLOIT - HTTP(Request) | 2026/03/26 | DDI RULE 5730 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5730 | ||
| DDI RULE 5727 | DNS Query to Public Paste Service Domain - DNS (Response) | 2026/03/24 | DDI RULE 5727 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5727 | ||
| DDI RULE 5720 | CVE-2023-7311 - BYTEVALUE CMD INJ Exploit - HTTP(Request) | 2026/03/23 | DDI RULE 5720 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5720 | ||
| DDI RULE 5725 | CVE-2026-27180 - MajorDoMo RCE Exploit - HTTP(Request) | 2026/03/23 | DDI RULE 5725 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5725 | ||
| DDI RULE 5726 | CVE-2025-59922 - Fortinet SQL Injection Exploit - HTTP(Request) | 2026/03/23 | DDI RULE 5726 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5726 | ||
| DDI RULE 5718 | Totolink CMD Injection Exploit - HTTP(Request) | 2026/03/19 | DDI RULE 5718 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5718 | ||
| DDI RULE 5710 | XLL File Download - HTTP (Request) | 2026/03/18 | DDI RULE 5710 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5710 | ||
| DDI RULE 5711 | CVE-2026-2329 - GrandStream GXP1600 Buffer Overflow Exploit - HTTP(Request) | 2026/03/18 | DDI RULE 5711 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5711 | ||
| DDI RULE 5717 | CVE-2026-1367 - Zoho Engine SQL INJ Exploit - HTTP(Request) | 2026/03/18 | DDI RULE 5717 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5717 | ||
| DDI RULE 5719 | Suspicious Upload/Download to a Public Paste Service - HTTP (Request) | 2026/03/18 | DDI RULE 5719 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5719 | ||
| DDI RULE 5721 | CVE-2025-15467 - OpenSSL CMS Buffer Overflow Exploit - HTTP(Response) | 2026/03/18 | DDI RULE 5721 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5721 | ||
| DDI RULE 5722 | CVE-2026-1731 - BeyondTrust Remote Support Command Injection Exploit - HTTP(Request) | 2026/03/18 | DDI RULE 5722 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5722 | ||
| DDI RULE 5723 | CVE-2026-25763 - OPENPROJECT EXPLOIT - HTTP(Request) | 2026/03/18 | DDI RULE 5723 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5723 | ||
| DDI RULE 5724 | CVE-2025-54236 - MAGENTO EXPLOIT - HTTP(Request) | 2026/03/18 | DDI RULE 5724 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5724 | ||
| DDI RULE 5712 | CVE-2025-0341 - CAMPCODES EXPLOIT - HTTP(Request) | 2026/03/16 | DDI RULE 5712 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5712 | ||
| DDI RULE 5713 | CVE-2007-1036 - JBOSS JMXCONSOLE EXPLOIT - HTTP(Request) | 2026/03/16 | DDI RULE 5713 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5713 | ||
| DDI RULE 5714 | CVE-2025-68645 - ZIMBRA EXPLOIT - HTTP(Request) | 2026/03/16 | DDI RULE 5714 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5714 | ||
| DDI RULE 5715 | CVE-2026-26190 - MILVUS EXPLOIT - HTTP(Request) | 2026/03/16 | DDI RULE 5715 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5715 | ||
| DDI RULE 5716 | CVE-2026-26216 - CRAWL4AI RCE Exploit - HTTP(Request) | 2026/03/16 | DDI RULE 5716 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5716 | ||
| DDI RULE 5708 | CVE-2025-0232 - CODEZIPS BLOODBANK EXPLOIT - HTTP(Request) | 2026/03/12 | DDI RULE 5708 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5708 | ||
| DDI RULE 5709 | CVE-2024-20439 - CISCO CSLU EXPLOIT - HTTP(Request) | 2026/03/12 | DDI RULE 5709 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5709 | ||
| DDI RULE 5672 | CVE-2025-68613 - N8N RCE EXPLOIT - HTTP(Request) | 2026/03/10 | DDI RULE 5672 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5672 | ||
| DDI RULE 5673 | CVE-2026-1281 - IVANTI APPSTORE EXPLOIT - HTTP (Request) | 2026/03/10 | DDI RULE 5673 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5673 | ||
| DDI RULE 5707 | CVE-2025-62521 - CHURCHCRM SETUP EXPLOIT - HTTP(Request) | 2026/03/10 | DDI RULE 5707 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5707 | ||
| DDI RULE 5705 | CVE-2025-10242 - Ivanti Endpoint Manager Mobile CMD Injection Exploit- HTTP(Request) | 2026/03/09 | DDI RULE 5705 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5705 | ||
| DDI RULE 5662 | CVE-2025-23970 - WORDPRESS AOT AUTHBYPASS EXPLOIT - HTTP(Request) | 2026/03/05 | DDI RULE 5662 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5662 | ||
| DDI RULE 5698 | CVE-2025-40551 - SolarWinds Web Help Desk RCE Exploit - HTTP(Request) | 2026/03/05 | DDI RULE 5698 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5698 | ||
| DDI RULE 5699 | CVE-2023-23752 - JOOMLA API EXPLOIT - HTTP(Request) | 2026/03/05 | DDI RULE 5699 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5699 | ||
| DDI RULE 5700 | CVE-2023-45852 - Vitogate CMD Injection Exploit - HTTP(Request) | 2026/03/05 | DDI RULE 5700 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5700 | ||
| DDI RULE 5701 | CVE-2025-68705 - HTTP2 RUSTFS DIRECTORY TRAVERSAL EXPLOIT - TCP(REQUEST) | 2026/03/05 | DDI RULE 5701 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5701 | ||
| DDI RULE 5702 | CVE-2025-52694 - IOTSUITE SQL INJECTION EXPLOIT - HTTP(Request) | 2026/03/05 | DDI RULE 5702 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5702 | ||
| DDI RULE 5703 | CVE-2025-14094 - EDIMAX CMD INJECTION EXPLOIT - HTTP(Request) | 2026/03/05 | DDI RULE 5703 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5703 | ||
| DDI RULE 5704 | CVE-2024-9932 - WUXBLOG CMD INJECTION EXPLOIT - HTTP(Request) | 2026/03/05 | DDI RULE 5704 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5704 | ||
| DDI RULE 5683 | ASHX Webshell Tunneling - HTTP(Response) | 2026/03/04 | DDI RULE 5683 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5683 | ||
| DDI RULE 5697 | CVE-2024-3721 - TBK DVR RCE - HTTP (Response) | 2026/03/04 | DDI RULE 5697 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5697 | ||
| DDI RULE 5667 | CVE-2025-64328 - FREEPBX RCE EXPLOIT - HTTP(Request) | 2026/03/03 | DDI RULE 5667 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5667 | ||
| DDI RULE 5696 | CVE-2025-34043 - Vacron NVR CMD Injection Exploit - HTTP(Request) | 2026/03/03 | DDI RULE 5696 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5696 | ||
| DDI RULE 5686 | CVE-2020-8813 - Cacti CMD INJ Exploit - HTTP(Request) | 2026/03/02 | DDI RULE 5686 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5686 | ||
| DDI RULE 5692 | CVE-2025-68926 - RustFS gRPC Exploit - HTTP2(Request) | 2026/03/02 | DDI RULE 5692 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5692 | ||
| DDI RULE 5694 | CVE-2021-42071 - Visual Tool DVR CMD INJ Exploit - HTTP(Request) | 2026/03/02 | DDI RULE 5694 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5694 | ||
| DDI RULE 5695 | CVE-2025-3125 - WSO2 CarbonAppUploader Directory Traversal Exploit - HTTP (Request) | 2026/03/02 | DDI RULE 5695 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5695 | ||
| DDI RULE 5666 | CVE-2025-43989 - Shenzhen Tuoshi NR500-EA Command Injection Exploit - HTTP (Request) | 2026/02/26 | DDI RULE 5666 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5666 | ||
| DDI RULE 5682 | CVE-2024-53944 - Tuoshi/Dionlink Command Injection Exploit - HTTP (Request) | 2026/02/26 | DDI RULE 5682 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5682 | ||
| DDI RULE 5684 | CVE-2026-1340 - Ivanti Endpoint Manager Mobile Code Injection Exploit - HTTP(Request) | 2026/02/26 | DDI RULE 5684 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5684 | ||
| DDI RULE 5685 | CVE-2023-41011 - China Gateway CMD INJ Exploit - HTTP(Request) | 2026/02/26 | DDI RULE 5685 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5685 | ||
| DDI RULE 5687 | CVE-2025-15097 - ALTERYX SERVER EXPLOIT - HTTP(Request) | 2026/02/26 | DDI RULE 5687 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5687 | ||
| DDI RULE 5688 | CVE-2025-15029 - CENTREON SQL EXPLOIT - HTTP(Request) | 2026/02/26 | DDI RULE 5688 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5688 | ||
| DDI RULE 5689 | CVE-2025-10985 - IVANTI CONFIG EXPLOIT - HTTP(Request) | 2026/02/26 | DDI RULE 5689 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5689 | ||
| DDI RULE 5690 | CVE-2025-34176 - PFSENSE SURICATA EXPLOIT - HTTP(Request) | 2026/02/26 | DDI RULE 5690 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5690 | ||
| DDI RULE 5691 | CVE-2026-23550 - WORDPRESS AUTHBYPASS - HTTP(Request) | 2026/02/26 | DDI RULE 5691 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5691 | ||
| DDI RULE 5660 | CVE-2026-0920 - WORDPRESS PRIVELEGE ESCALATION - HTTP (Request) | 2026/02/25 | DDI RULE 5660 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5660 | ||
| DDI RULE 5681 | CVE-2023-35885 - CloudPanel Authentication Bypass - HTTP (Request) | 2026/02/25 | DDI RULE 5681 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5681 | ||
| DDI RULE 5657 | CVE-2025-59934 - Formbricks JWT Signature Auth Bypass Exploit - HTTP(Request) | 2026/02/24 | DDI RULE 5657 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5657 | ||
| DDI RULE 5659 | CVE-2025-67888 - CWB ADMIN EXPLOIT - HTTP(Request) | 2026/02/24 | DDI RULE 5659 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5659 | ||
| DDI RULE 5661 | CVE-2026-23760 - SMARTMAIL BYPASS EXPLOIT - HTTP(Request) | 2026/02/24 | DDI RULE 5661 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5661 | ||
| DDI RULE 5663 | CVE-2026-21858 - N8N WEBHOOK CMD INJECTION EXPLOIT - HTTP(Request) | 2026/02/24 | DDI RULE 5663 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5663 | ||
| DDI RULE 5664 | CVE-2025-70974 - FASTJSON CMD INJECTION EXPLOIT - HTTP(Request) | 2026/02/24 | DDI RULE 5664 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5664 | ||
| DDI RULE 5680 | CVE-2021-29003 - Genexis CMD Injection Exploit - HTTP(Request) | 2026/02/24 | DDI RULE 5680 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5680 | ||
| DDI RULE 5656 | CVE-2026-20026 - Cisco Snort RCE Exploit - SMB(Request) | 2026/02/23 | DDI RULE 5656 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5656 | ||
| DDI RULE 5665 | Anydesk Variant 2 - HTTPS (Request) | 2026/02/23 | DDI RULE 5665 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5665 | ||
| DDI RULE 5677 | OPENCLAW WEBSOCKET CONTROLCHANNEL ACTIVITY - HTTP (Response) | 2026/02/23 | DDI RULE 5677 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5677 | ||
| DDI RULE 5678 | OPENCLAW GATEWAY - HTTP (Response) | 2026/02/23 | DDI RULE 5678 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5678 | ||
| DDI RULE 5679 | CVE-2026-0767 - Open WebUI Cleartext Transmission of Credentials Information Disclosure Exploit - HTTP(Request) | 2026/02/23 | DDI RULE 5679 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5679 | ||
| DDI RULE 5655 | CVE-2025-8943 - Flowise CustomMCP RCE Exploit - HTTP(Request) | 2026/02/18 | DDI RULE 5655 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5655 | ||
| DDI RULE 5653 | CVE-2020-9374 - TPLink RCE Exploit - HTTP (Request) - Variant 2 | 2026/02/16 | DDI RULE 5653 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5653 | ||
| DDI RULE 5654 | CVE-2025-62368 - Taiga Insecure Deserialization Exploit - HTTP (Request) | 2026/02/16 | DDI RULE 5654 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5654 | ||
| DDI RULE 5651 | CVE-2025-3616 - WordPress Greenshift Plugin Exploit - HTTP (Request) | 2026/02/11 | DDI RULE 5651 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5651 | ||
| DDI RULE 5648 | CVE-2025-10243 - Ivanti CMD Injection Exploit - HTTP(Request) | 2026/02/10 | DDI RULE 5648 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5648 | ||
| DDI RULE 5649 | CVE-2025-59284 - Windows NTLM Spoofing Exploit - HTTP (Response) | 2026/02/10 | DDI RULE 5649 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5649 | ||
| DDI RULE 5650 | CVE-2022-31199 - Netwrix Auditor RCE Exploit - TCP (Request) | 2026/02/10 | DDI RULE 5650 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5650 | ||
| DDI RULE 5644 | CVE-2025-64720 - LIBPNG Buffer Overflow Exploit - HTTP (Response) | 2026/02/09 | DDI RULE 5644 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5644 | ||
| DDI RULE 5645 | CVE-2025-69258 - Trend Micro Apex Central LoadLibraryEX RCE Exploit - TCP (Request) | 2026/02/09 | DDI RULE 5645 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5645 | ||
| DDI RULE 5646 | CVE-2025-41115 - Grafana Enterprise SCIM Exploit - HTTP(Request) | 2026/02/09 | DDI RULE 5646 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5646 | ||
| DDI RULE 5647 | CVE-2025-34299 - Monsta FTP RCE EXPLOIT - HTTP(Request) | 2026/02/09 | DDI RULE 5647 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5647 | ||
| DDI RULE 5643 | CVE-2025-55183 - React Server Information Leak Exploit - HTTP(Request) | 2026/02/05 | DDI RULE 5643 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5643 | ||
| DDI RULE 5640 | CVE-2025-12197 - EVENTS URILIB EXPLOIT - HTTP(Request) | 2026/02/04 | DDI RULE 5640 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5640 | ||
| DDI RULE 5641 | CVE-2025-13661 - LOCALHOST CAB TRAVERSAL EXPLOIT - HTTP(Response) | 2026/02/04 | DDI RULE 5641 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5641 | ||
| DDI RULE 5642 | CVE-2025-68614 - API GENERIC SCRIPTINJECT EXPLOIT - HTTP(Request) | 2026/02/04 | DDI RULE 5642 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5642 | ||
| DDI RULE 5604 | CVE-2025-58360 - OSGeo GeoServer SSRF Exploit - HTTP (Response) | 2026/02/03 | DDI RULE 5604 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5604 | ||
| DDI RULE 5636 | CVE-2025-37164 - HPE OneView RCE Exploit - HTTP (Request) | 2026/02/03 | DDI RULE 5636 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5636 | ||
| DDI RULE 5637 | CVE-2025-13486 - WordPress RCE Exploit - HTTP (Request) | 2026/02/03 | DDI RULE 5637 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5637 | ||
| DDI RULE 5635 | GoBuster - HTTP (Request) | 2026/01/29 | DDI RULE 5635 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5635 | ||
| DDI RULE 5630 | CVE-2023-52163 - Digiever Command Injection Exploit - HTTP (Request) | 2026/01/28 | DDI RULE 5630 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5630 | ||
| DDI RULE 5631 | CVE-2018-10561 - Dasan GPON RCE Exploit - HTTP(Request) | 2026/01/28 | DDI RULE 5631 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5631 | ||
| DDI RULE 5632 | CVE-2018-4063 - Sierra Wireless AirLink Remote Code Execution Exploit - HTTP (Request) | 2026/01/28 | DDI RULE 5632 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5632 | ||
| DDI RULE 5633 | CVE-2017-18369 - Billion router Command Injection Exploit - HTTP (Request) | 2026/01/28 | DDI RULE 5633 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5633 | ||
| DDI RULE 5634 | CVE-2025-7414 -Tenda O3V2 Router Command Injection Vulnerability Exploit - HTTP(Request) | 2026/01/28 | DDI RULE 5634 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5634 | ||
| DDI RULE 5618 | CVE-2025-9900 - TIFF File Upload Large Image Length Exploit - HTTP (Response) | 2026/01/27 | DDI RULE 5618 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5618 | ||
| DDI RULE 5625 | CVE-2023-35813 - Sitecore Remote Code Execution Exploit - HTTP (Request) | 2026/01/27 | DDI RULE 5625 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5625 | ||
| DDI RULE 5629 | CVE-2026-24061 - GNU InetUtils telnetd AuthBypass Exploit - TCP (Request) | 2026/01/27 | DDI RULE 5629 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5629 | ||
| DDI RULE 5616 | NTLM Relay via WebDAV PropFind Method - HTTP(Response) | 2026/01/26 | DDI RULE 5616 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5616 | ||
| DDI RULE 5622 | CVE-2026-0759 - Katana Network Development Starter Kit RCE Exploit - HTTP (Request) | 2026/01/21 | DDI RULE 5622 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5622 | ||
| DDI RULE 5623 | CVE-2026-0756 - github-kanban-mcp-server execAsync RCE Exploit - HTTP(Request) | 2026/01/21 | DDI RULE 5623 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5623 | ||
| DDI RULE 5624 | CVE-2026-0772 - Langflow Disk Cache Deserialization RCE Exploit - HTTP(Request) | 2026/01/21 | DDI RULE 5624 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5624 | ||
| DDI RULE 5626 | CVE-2026-0766 - NOpen WebUI load_tool_module_by_id RCE Exploit - HTTP(Request) | 2026/01/21 | DDI RULE 5626 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5626 | ||
| DDI RULE 5627 | CVE-2026-0761 - Foundation Agents MetaGPT Mapping RCE Exploit - HTTP(Request) | 2026/01/21 | DDI RULE 5627 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5627 | ||
| DDI RULE 5619 | CVE-2025-53645 - Zimbra DOS Exploit - HTTP (Request) | 2026/01/19 | DDI RULE 5619 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5619 | ||
| DDI RULE 5620 | CVE-2025-8088 - WinRAR Directory Traversal Exploit - HTTP (Response) | 2026/01/19 | DDI RULE 5620 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5620 | ||
| DDI RULE 5617 | CVE-2025-55182 - RSC NEXTJS Unicode RCE Exploit - HTTP (Request) | 2026/01/15 | DDI RULE 5617 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5617 | ||
| DDI RULE 5615 | CVE-2025-15061 - Framelink Figma MCP Server fetchWithRetry RCE Exploit - HTTP(Request) | 2026/01/14 | DDI RULE 5615 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5615 | ||
| DDI RULE 5594 | CVE-2025-53417 - DIAview Directory Traversal Exploit AG - HTTP(Response) | 2026/01/13 | DDI RULE 5594 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5594 | ||
| DDI RULE 5613 | CVE-2025-14931 - Hugging Face smolagents Remote Python Executor RCE Exploit - HTTP (Request) | 2026/01/12 | DDI RULE 5613 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5613 | ||
| DDI RULE 5614 | CVE-2025-64447 - Fortinet FortiWeb ApacheCookie_parse Auth Bypass Exploit - HTTP(Request) | 2026/01/12 | DDI RULE 5614 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5614 | ||
| DDI RULE 5605 | CVE-2025-59718 - Fortinet FortiOS Authentication Bypass Exploit - HTTP (Response) | 2026/01/07 | DDI RULE 5605 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5605 | ||
| DDI RULE 5603 | CVE-2021-26828 - Mismatch File Upload leading to RCE Exploit - HTTP (Response) | 2026/01/06 | DDI RULE 5603 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5603 | ||
| DDI RULE 5612 | CVE-2025-14500 - IceWarp14 X-File-Operation RCE Exploit - HTTP (Request) | 2026/01/06 | DDI RULE 5612 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5612 | ||
| DDI RULE 5592 | CVE-2025-12490 - Netgate pfSense Directory Traversal Exploit - HTTP (Request) | 2026/01/05 | DDI RULE 5592 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5592 | ||
| DDI RULE 5610 | CVE-2025-61734 - Apache Kylin downloadMetadataBackTmpFile Exploit Request - HTTP(Request) | 2025/12/29 | DDI RULE 5610 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5610 | ||
| DDI RULE 5609 | CVE-2023-50291 - Apache Solr Insecure Endpoint Exploit - HTTP (Request) | 2025/12/22 | DDI RULE 5609 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5609 | ||
| DDI RULE 5587 | PNIO-CM Profinet Sensor - UDP(Request) | 2025/12/18 | DDI RULE 5587 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5587 | ||
| DDI RULE 5599 | CVE-2025-5946 - Centreon Authenticated Remote Code Execution - HTTP (Response) | 2025/12/18 | DDI RULE 5599 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5599 | ||
| DDI RULE 5601 | IEC61850 MMS SENSOR - TCP (Request) | 2025/12/18 | DDI RULE 5601 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5601 | ||
| DDI RULE 5606 | CVE-2025-62391 - Ivanti Endpoint Manager PatchHistory SQL Inj RCE Exploit - HTTP (Request) | 2025/12/18 | DDI RULE 5606 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5606 | ||
| DDI RULE 5607 | CGI CHANGE PASSWORD EXPLOIT - HTTP(Request) | 2025/12/18 | DDI RULE 5607 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5607 | ||
| DDI RULE 5583 | CVE-2025-59538 - Argo CD DOS Exploit - HTTP(Response) | 2025/12/16 | DDI RULE 5583 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5583 | ||
| DDI RULE 5602 | CVE-2025-12686 - Synology auth_info Overflow Exploit - HTTP(Request) | 2025/12/16 | DDI RULE 5602 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5602 | ||
| DDI RULE 5593 | CVE-2025-64163 - DataEase Server SSRF Exploit - HTTP(Request) | 2025/12/15 | DDI RULE 5593 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5593 | ||
| DDI RULE 5600 | CVE-2025-34175 - Netgate pfSense XSS Exploit - HTTP (Request) | 2025/12/15 | DDI RULE 5600 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5600 | ||
| DDI RULE 5591 | Apache Tomcat Improper Encoding Exploit - HTTP (Response) | 2025/12/10 | DDI RULE 5591 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5591 | ||
| DDI RULE 5596 | (0Day) Microsoft SharePoint GetTransformer Unsafe Reflection Denial-of-Service Vulnerability - HTTP (Request) | 2025/12/10 | DDI RULE 5596 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5596 | ||
| DDI RULE 5597 | CVE-2025-61733 - Apache Kylin Authentication Bypass - HTTP(Request) | 2025/12/10 | DDI RULE 5597 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5597 | ||
| DDI RULE 5595 | CVE-2025-55182 - RSC NEXTJS RCE Exploit - HTTP (Request) | 2025/12/06 | DDI RULE 5595 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5595 | ||
| DDI RULE 5584 | CVE-2025-62411 - LibreNMS Alert Transport Stored Cross-Site Scripting Exploit - HTTP(Response) | 2025/12/04 | DDI RULE 5584 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5584 | ||
| DDI RULE 5582 | MSSQL Successful Logon - TCP(Response) | 2025/12/03 | DDI RULE 5582 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5582 | ||
| DDI RULE 5585 | Microsoft SharePoint IsAuthorizedType Deserialization of Untrusted Data DoS Exploit - HTTP (Request) | 2025/12/03 | DDI RULE 5585 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5585 | ||
| DDI RULE 5589 | CVE-2025-40755 - Siemens SINEC NMS System Monitoring SQL Injection Exploit - HTTP(Request) | 2025/12/03 | DDI RULE 5589 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5589 | ||
| DDI RULE 5590 | NETGEAR DGN1000 Unauthenticated Remote Code Execution - HTTP (Request) | 2025/12/02 | DDI RULE 5590 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5590 | ||
| DDI RULE 5586 | CVE-2025-61757 - Oracle Fusion Authentication Bypass Exploit - HTTP (Response) | 2025/12/01 | DDI RULE 5586 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5586 | ||
| DDI RULE 5576 | LUMMASTEALER TRAVERSAL - HTTP(Response) | 2025/11/27 | DDI RULE 5576 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5576 | ||
| DDI RULE 5558 | CVE-2025-54447 - Samsung MagicINFO 9 Server RCE Exploit - HTTP (Request) | 2025/11/26 | DDI RULE 5558 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5558 | ||
| DDI RULE 5574 | Possible CVE-2025-64446 - FortiWeb Path Traversal Exploit - HTTP (Response) | 2025/11/26 | DDI RULE 5574 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5574 | ||
| DDI RULE 5575 | Possible CVE-2025-12480 - Gladinet Triofox Authentication Bypass Exploit - HTTP (Response) | 2025/11/26 | DDI RULE 5575 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5575 | ||
| DDI RULE 5588 | SHULUD GIT - HTTP(REQUEST) | 2025/11/26 | DDI RULE 5588 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5588 | ||
| DDI RULE 5581 | CVE-2025-9242 - WatchGuard Firebox Authentication Bypass Exploit - HTTP (Request) | 2025/11/24 | DDI RULE 5581 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5581 | ||
| DDI RULE 5580 | CVE-2025-53378 - Trend Micro Worry-Free Business Security Missing Authentication Exploit - HTTP (Response) | 2025/11/20 | DDI RULE 5580 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5580 | ||
| DDI RULE 5563 | CVE-2025-12489 - Evernote openBrowser Command Injection Privilege Escalation Exploit - HTTP(Response) | 2025/11/19 | DDI RULE 5563 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5563 | ||
| DDI RULE 5577 | CVE-2025-6023 - Grafana Labs Cross-Site Scripting Exploit - HTTP (Request) | 2025/11/19 | DDI RULE 5577 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5577 | ||
| DDI RULE 5578 | CVE-2025-37106 - Hewlett AutoPass License Server Hardcoded Credentials Exploit - TCP (Request) | 2025/11/19 | DDI RULE 5578 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5578 | ||
| DDI RULE 5579 | CVE-2025-27225 - TRUfusion Enterprise Unauthenticated Information-Disclosure Exploit - HTTP(Response) | 2025/11/19 | DDI RULE 5579 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5579 | ||
| DDI RULE 5531 | SUSPICIOUS LOGIN SUCCESS - HTTP(Request) | 2025/11/18 | DDI RULE 5531 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5531 | ||
| DDI RULE 5532 | WEBSOCKET SSH TUNNEL - HTTP(Request) | 2025/11/18 | DDI RULE 5532 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5532 | ||
| DDI RULE 5561 | CVE-2025-12488 - oobabooga Reliance on Untrusted Inputs Remote Code Execution Exploit - HTTP(Request) | 2025/11/17 | DDI RULE 5561 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5561 | ||
| DDI RULE 5565 | CVE-2025-48703 - CentOS Web Panel Command Injection Exploit - HTTP (Request) | 2025/11/13 | DDI RULE 5565 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5565 | ||
| DDI RULE 5571 | Suspicious HASSH Client - SSH (Request) | 2025/11/12 | DDI RULE 5571 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5571 | ||
| DDI RULE 5567 | PromptLock AI Ransomware - HTTP (Request) | 2025/11/11 | DDI RULE 5567 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5567 | ||
| DDI RULE 5568 | Microsoft Exchange PowerShell NTLM Relay Exploit - HTTP(Request) | 2025/11/11 | DDI RULE 5568 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5568 | ||
| DDI RULE 5569 | CVE-2025-62383 - Ivanti Endpoint Manager SQL Injection Exploit - HTTP (Request) | 2025/11/11 | DDI RULE 5569 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5569 | ||
| DDI RULE 5570 | CVE-2025-62389 - Ivanti Endpoint Manager SQL Injection Exploit - HTTP (Request) | 2025/11/11 | DDI RULE 5570 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5570 | ||
| DDI RULE 5564 | CVE-2025-10203 - Digilent WaveForms DWF3WORK File Traversal Exploit - HTTP(Response) | 2025/11/10 | DDI RULE 5564 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5564 | ||
| DDI RULE 5566 | MSSQL Unsuccessful Logon - TCP(Response) | 2025/11/06 | DDI RULE 5566 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5566 | ||
| DDI RULE 5562 | CVE-2025-24893 - XWiki SolrSearchMacros text Code Injection Exploit - HTTP(Response) | 2025/11/05 | DDI RULE 5562 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5562 | ||
| DDI RULE 5557 | CVE-2025-37107 - Hewlett AutoPass License Server Authentication Bypass Exploit - TCP (Request) | 2025/11/04 | DDI RULE 5557 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5557 | ||
| DDI RULE 5559 | LLMNR Query Response - Variant 2 | 2025/10/30 | DDI RULE 5559 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5559 | ||
| DDI RULE 5547 | CVE-2025-6806 - Marvell QConvergeConsole decryptFile Directory Traversal Exploit - HTTP(Response) | 2025/10/29 | DDI RULE 5547 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5547 | ||
| DDI RULE 5551 | CVE-2025-25271 - Phoenix Contact CHARX SEC-3150 OCPP Authentication Bypass Exploit - HTTP(Response) | 2025/10/29 | DDI RULE 5551 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5551 | ||
| DDI RULE 5560 | CVE-2025-54926 - Ecostruxure Traversal Exploit - HTTP(Request) | 2025/10/29 | DDI RULE 5560 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5560 | ||
| DDI RULE 5544 | CVE-2025-6801 - Marvell QConvergeConsole Directory Traversal Exploit - HTTP(Response) | 2025/10/28 | DDI RULE 5544 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5544 | ||
| DDI RULE 5556 | QNAP TS-464 Authentication Bypass Vulnerability - HTTP (Request) | 2025/10/28 | DDI RULE 5556 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5556 | ||
| DDI RULE 5545 | CVE-2025-6805 - Marvell QConvergeConsole Directory Traversal Exploit - HTTP(Response) | 2025/10/27 | DDI RULE 5545 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5545 | ||
| DDI RULE 5553 | Oracle E-Business Remote Code Execution Exploit Sensor - HTTP(Response) | 2025/10/27 | DDI RULE 5553 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5553 | ||
| DDI RULE 5554 | CVE-2025-5947 - WordPress Authentication Bypass Exploit- HTTP(Request) | 2025/10/27 | DDI RULE 5554 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5554 | ||
| DDI RULE 5555 | CVE-2025-8426 - Marvell QConvergeConsole Directory Traversal Exploit - HTTP (Request) | 2025/10/27 | DDI RULE 5555 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5555 | ||
| DDI RULE 5540 | CVE-2025-5961 - AJAX EXPLOIT - HTTP(Response) | 2025/10/22 | DDI RULE 5540 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5540 | ||
| DDI RULE 5552 | CVE-2025-8297 - Ivanti Avalanche RCE Exploit - HTTP(Request) | 2025/10/22 | DDI RULE 5552 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5552 | ||
| DDI RULE 5550 | CVE-2025-40775 - ISC Bind DOS Exploit - DNS(Request) | 2025/10/21 | DDI RULE 5550 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5550 | ||
| DDI RULE 5516 | CVE-2019-12526 - SQUID EXPLOIT - HTTP(Response) | 2025/10/16 | DDI RULE 5516 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5516 | ||
| DDI RULE 5534 | Samsung MagicINFO 9 Traversal RCE Exploit - HTTP(Request) | 2025/10/16 | DDI RULE 5534 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5534 | ||
| DDI RULE 5542 | CVE-2025-54466 - RCE APACHE EXPLOIT - HTTP(Request) | 2025/10/16 | DDI RULE 5542 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5542 | ||
| DDI RULE 5548 | CVE-2025-53609 - Fortinet FortiWeb Directory Traversal Exploit - HTTP(Response) | 2025/10/16 | DDI RULE 5548 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5548 | ||
| DDI RULE 5546 | POSSIBLE WSUS RCE EXPLOIT - HTTP(Request) | 2025/10/15 | DDI RULE 5546 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5546 | ||
| DDI RULE 5521 | CVE-2025-10035 - Fortra GoAnywhere MFT Deserialization Exploit - HTTP (Response) | 2025/10/14 | DDI RULE 5521 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5521 | ||
| DDI RULE 5515 | Matchboil Downloader- HTTP (Request) | 2025/10/13 | DDI RULE 5515 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5515 | ||
| DDI RULE 5526 | SPOOLSS Enumeration via Endpoint Mapper Sensor - DCE-RPC (Request) | 2025/10/13 | DDI RULE 5526 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5526 | ||
| DDI RULE 5530 | DNS Query for SOA Record Sensor - DNS (Response) | 2025/10/13 | DDI RULE 5530 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5530 | ||
| DDI RULE 5541 | Machine requested TGS for Administrator - Kerberos (Request) | 2025/10/13 | DDI RULE 5541 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5541 | ||
| DDI RULE 5543 | Suspicious SAMR Enumeration via Endpoint Mapper Sensor - DCE-RPC (Request) | 2025/10/13 | DDI RULE 5543 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5543 | ||
| DDI RULE 5511 | CVE-2025-26319 - FlowiseAI Flowise attachments Directory Traversal Exploit - HTTP(Response) | 2025/10/09 | DDI RULE 5511 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5511 | ||
| DDI RULE 5519 | CVE-2025-53417 - DIAview Directory Traversal Exploit - HTTP(Response) | 2025/10/09 | DDI RULE 5519 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5519 | ||
| DDI RULE 5535 | CVE-2025-7913 - TOTOLINK Buffer Overflow Exploit - TCP(Request) | 2025/10/09 | DDI RULE 5535 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5535 | ||
| DDI RULE 5537 | CVE-2025-52367 - PivotX CMS Cross Site Scripting Exploit- HTTP(Request) | 2025/10/09 | DDI RULE 5537 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5537 | ||
| DDI RULE 5539 | CVE-2025-7912 - TOTOLINK Buffer Overflow Exploit - TCP(Request) | 2025/10/09 | DDI RULE 5539 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5539 | ||
| DDI RULE 5522 | CVE-2025-1829 - TOTOLINK Command Injection Exploit - HTTP(Request) | 2025/10/08 | DDI RULE 5522 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5522 | ||
| DDI RULE 5524 | NetExec PetitPotam RCE Attempt - HTTP (Request) | 2025/10/08 | DDI RULE 5524 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5524 | ||
| DDI RULE 5527 | Suspicious Search DNS Node Object Query - LDAP (Request) | 2025/10/08 | DDI RULE 5527 | /vinfo/us/threat-encyclopedia/network/ddi-rule-5527 |