DESCRIPTION

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Mail Server Common
1012173* - Roundcube Webmail Stored Cross-Site Scripting Vulnerability (CVE-2024-42009)


NodeBB
1012382 - NodeBB Stored Cross-Site Scripting Vulnerability (CVE-2024-57041)
1012378 - NodeBB Stored Cross-Site Scripting Vulnerability (CVE-2025-29513)


Spring Cloud Skipper Server
1012171* - VMware Spring Cloud Skipper Server Directory Traversal Vulnerability (CVE-2024-22263)


Web Application Common
1012364 - Web Application Possible Brute Force Attempt-XFF (ATT&CK T1110)


Web Application PHP Based
1012157* - SPIP 'BigUp' Plugin Remote Code Execution Vulnerability (CVE-2024-8517)
1012180* - WordPress 'Feed Them Social' Plugin Cross-Site Scripting Vulnerability (CVE-2022-2383)
1012366 - WordPress 'OttoKit: All-in-One Automation Platform (Formerly SureTriggers)' Plugin Authentication Bypass Vulnerability (CVE-2025-3102)
1012363 - WordPress 'Return Refund and Exchange For WooCommerce' Plugin Arbitrary File Upload Vulnerability (CVE-2022-4047)


Web Application Ruby Based
1012189* - Grafana 'duckdb' Remote Code Execution Vulnerability (CVE-2024-9264)


Web Server Common
1006540* - Enable X-Forwarded-For HTTP Header Logging


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.