SERVER-WEBAPP -- Snort has detected traffic exploiting vulnerabilities in web based applications on servers.
SERVER-WEBAPP PHP .phar cross site scripting attempt
This event is generated when a cross site scripting attempt against PHP .phar pages is detected Impact: Attempted User Privilege Gain Details: PHP is prone to a cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks. Ease of Attack: Simple, A proof of concept exploit exists.
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups