Intrusion PreventionJquery.min.php.Script.Injection.Malicious.Redirect
Description
This indicates detection of a Malicious Redirect vulnerability in Multiple CMS.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the server leading to malicious script being injected onto certain pages. A remote attacker may be able to exploit this to redirect users to malicious site leading to further attacks.
Affected Products
All unprotected connections to Wordpress or Joomla! servers
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.
It is recommended for webpages to be reviewed and passwords to be changed if such an attack is detected.
Monitor the traffic from that network for any suspicious activity.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-01-09 | 14.520 | Sig Added |
| ID | 42015 |
| Created | Feb 05, 2016 |
| Updated | Jan 08, 2019 |
| Risk |
|
| Default Action | drop |
| Active | |
| Affected OS | Windows, Linux, BSD, Solaris, MacOS |
| Affected App | PHP_app |