Rule Category

POLICY-OTHER --

Alert Message

POLICY-OTHER WordPress Easy WP SMTP plugin config settings import attempt

Rule Explanation

This event is generated when an attempt is made to deserialize arbitrary PHP via the Easy WP SMTP plugin. Impact: Web Application Attack Details: This rule checks for attempts to deserialize arbitrary PHP via the Easy WP SMTP plugin. Ease of Attack:

What To Look For

Known Usage

No public information

False Positives

Known false positives, with the described conditions

This rule will alert on all attempts to deserialize arbitrary PHP via the Easy WP SMTP plugin.

Contributors

Cisco Talos Intelligence Group

MITRE ATT&CK Framework

Tactic:

Technique:

For reference, see the MITRE ATT&CK vulnerability types here: https://attack.mitre.org

Additional Links

Rule Vulnerability

CVE Additional Information