25-038 (September 16, 2025)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

CyberPanel
1012196* - CyberPanel Remote Code Execution Vulnerability (CVE-2024-51567)


HPE Insight Remote Support
1012317* - HPE Insight Remote Support XML External Entity Injection Vulnerability (CVE-2024-53675)


JetBrains TeamCity
1012443 - JetBrains TeamCity Cross-Site Scripting Vulnerability (CVE-2025-52879)


WSO2
1012342* - WSO2 API Manager Documentation Arbitrary File Upload Vulnerability


Web Application PHP Based
1012361* - LibreNMS Stored Cross-Site Scripting Vulnerability (CVE-2022-4068)
1012339* - WordPress 'WP Shortcodes' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2025-0370)
1012343* - WordPress 'WP Umbrella' Plugin Local File Inclusion Vulnerability (CVE-2024-12209)


Web Server HTTPS
1012445 - FreePBX SQL Injection Vulnerability (CVE-2025-57819)


Web Server SharePoint
1012390* - Microsoft SharePoint Server Spoofing Vulnerability (CVE-2025-49706 and CVE-2025-53771)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

1011453* - Microsoft Windows WMI Events - 1