24-018 (April 2, 2024)

* indicates a new version of an existing rule

Deep Packet Inspection Rules:

Ivanti Avalanche
1011863* - Ivanti Avalanche Authentication Bypass Vulnerability (CVE-2021-22962 & CVE-2023-32566)


Web Application PHP Based
1011999 - BoidCMS Command Injection Vulnerability (CVE-2023-38836)
1012005 - WordPress 'Popup Builder' Plugin Cross-Site Scripting Vulnerability (CVE-2023-6000)


Web Server HTTPS
1011881* - GitLab Stored Cross-Site Scripting Vulnerability (CVE-2023-2164)
1011892* - Microsoft Exchange Server-Side Request Forgery Vulnerability (ZDI-CAN-22101)
1011886* - Qlik Sense Enterprise HTTP Request Smuggling Vulnerability (CVE-2023-41265)


Web Server Miscellaneous
1012009 - Jenkins 'Build Monitor View' Plugin Stored Cross-Site Scripting Vulnerability (CVE-2024-28156)


Web Server Nagios
1012004 - Nagios XI Directory Traversal Vulnerability (CVE-2023-48085)


pgAdmin
1012010 - pgAdmin Directory Traversal Vulnerability (CVE-2024-2044)


Integrity Monitoring Rules:

There are no new or updated Integrity Monitoring Rules in this Security Update.


Log Inspection Rules:

There are no new or updated Log Inspection Rules in this Security Update.