Changeset 3384410
- Timestamp:
- 10/25/2025 10:42:38 AM (7 weeks ago)
- Location:
- ninjafirewall
- Files:
-
- 8 edited
-
trunk/lib/class-coupon.php (modified) (2 diffs)
-
trunk/lib/class_mail.php (modified) (1 diff)
-
trunk/lib/dashboard.php (modified) (2 diffs)
-
trunk/lib/firewall.php (modified) (4 diffs)
-
trunk/ninjafirewall.php (modified) (4 diffs)
-
trunk/readme.txt (modified) (2 diffs)
-
updates/rules4.txt (modified) (1 diff)
-
updates/version3.txt (modified) (1 diff)
Legend:
- Unmodified
- Added
- Removed
-
ninjafirewall/trunk/lib/class-coupon.php
r3367537 r3384410 72 72 */ 73 73 if (! is_main_site() ) { 74 return ['error' => 'child site']; ;74 return ['error' => 'child site']; 75 75 } 76 76 … … 100 100 NFW_ENGINE_VERSION ."; WordPress/$wp_version)", 101 101 'sslverify' => true, 102 'ntn-plugin' => 'nf' 102 'headers' => [ 103 'ntn-plugin' => 'nf', 104 'ntn-cache' => md5( network_site_url() ) 105 ] 103 106 ] 104 107 ); -
ninjafirewall/trunk/lib/class_mail.php
r3286483 r3384410 142 142 * Send an email using PHP mail(). 143 143 * Used by the firewall part that loads before WordPress. 144 * Note: multiple comma-separated email addresses can be present in the "To:" field. 144 145 */ 145 146 public static function PHPsend( $to, $tpl, $s_values = [], $c_values = [], -
ninjafirewall/trunk/lib/dashboard.php
r3367537 r3384410 294 294 * Don't display info about the session if we're using the NinjaFirewall's built-in session. 295 295 */ 296 if ( ! is_file( NFW_LOG_DIR .'/nfwlog/ninjasession') ) {296 if ( is_file( NFW_LOG_DIR .'/nfwlog/phpsession') ) { 297 297 ?> 298 298 <tr> 299 299 <th scope="row" class="row-med"><?php esc_html_e('User session', 'ninjafirewall') ?></th> 300 <?php 301 if ( defined('NFWSESSION') ) { 302 ?> 303 <td><?php 304 printf( 305 /* Translators: <a> and </a> anchor tags */ 306 esc_html__('You are using NinjaFirewall sessions. If you want to switch to PHP sessions, please %sconsult our blog%s.', 'ninjafirewall'), 307 '<a href="https://blog.nintechnet.com/ninjafirewall-wp-edition-the-htninja-configuration-file/#user_session" target="_blank" rel="noreferrer noopener">', '</a>' 308 ); ?> 309 </td> 310 <?php 311 } else { 312 ?> 313 <td><?php 314 printf( 315 /* Translators: <a> and </a> anchor tags */ 316 esc_html__('You are using PHP sessions. If you want to switch to NinjaFirewall sessions, please %sconsult our blog%s.', 'ninjafirewall'), 317 '<a href="https://blog.nintechnet.com/ninjafirewall-wp-edition-the-htninja-configuration-file/#user_session" target="_blank" rel="noreferrer noopener">', '</a>' 318 ); ?> 319 </td> 320 <?php 321 } 322 ?> 300 <td><?php 301 printf( 302 /* Translators: path to the file */ 303 esc_html__('You are using PHP sessions. If you want to switch to NinjaFirewall sessions, please delete the following file: %s.', 'nfwplus'), 304 '<code>'. esc_html( NFW_LOG_DIR .'/nfwlog/phpsession') .'</code>' 305 ); ?> 306 </td> 323 307 </tr> 324 308 <?php … … 552 536 // the WordPress's API 553 537 @file_get_contents( $url, false, $context ); 538 /** 539 * $http_response_header is deprecated in PHP 8.5, hence we use the 540 * http_get_last_response_headers() function instead (PHP >= 8.4). 541 */ 542 if ( function_exists('http_get_last_response_headers') ) { 543 $http_response_header = http_get_last_response_headers(); 544 } 554 545 if ( empty( $http_response_header ) ) { 555 546 return false; -
ninjafirewall/trunk/lib/firewall.php
r3367537 r3384410 78 78 79 79 /** 80 * 2025-09-03: We temporarily force NinjaFirewall session on all new installs.80 * Select whether we want to use PHP or NF (default since v4.8.1) sessions. 81 81 */ 82 if ( is_file( "{$nfw_['log_dir']}/ninjasession" ) && ! defined('NFWSESSION') ) { 83 define('NFWSESSION', true ); 84 } 85 /** 86 * Select whether we want to use PHP or NinjaFirewall session. 87 */ 88 if ( defined('NFWSESSION') ) { 82 if ( is_file( "{$nfw_['log_dir']}/phpsession" ) ) { 83 require_once __DIR__ .'/class-php-session.php'; 84 } else { 89 85 if (! defined('NFWSESSION_DIR') ) { 90 86 /** … … 94 90 } 95 91 require_once __DIR__ .'/class-nfw-session.php'; 96 } else {97 require_once __DIR__ .'/class-php-session.php';98 92 } 99 93 … … 1896 1890 $img_content = ob_get_contents(); 1897 1891 ob_end_clean(); 1898 imagedestroy( $image );1899 1892 1900 1893 $res = '<img src="data:image/png;base64,'. base64_encode( $img_content ) .'" />'; … … 1905 1898 } 1906 1899 1907 // ===================================================================== 2023-05-161900 // ===================================================================== 1908 1901 // From WP db_connect() 1909 1902 -
ninjafirewall/trunk/ninjafirewall.php
r3367537 r3384410 4 4 Plugin URI: https://nintechnet.com/ 5 5 Description: A true Web Application Firewall to protect and secure WordPress. 6 Version: 4.8 6 Version: 4.8.1 7 7 Author: The Ninja Technologies Network 8 8 Author URI: https://nintechnet.com/ … … 12 12 Domain Path: /languages 13 13 */ 14 define('NFW_ENGINE_VERSION', '4.8 ');14 define('NFW_ENGINE_VERSION', '4.8.1'); 15 15 /* 16 16 +=====================================================================+ … … 60 60 61 61 /** 62 * 2025-09-03: We temporarily force NinjaFirewall session on all new installs.62 * Select whether we want to use PHP or NF (default since v4.8.1) sessions. 63 63 */ 64 if ( is_file( NFW_LOG_DIR .'/nfwlog/ninjasession') && ! defined('NFWSESSION') ) { 65 define('NFWSESSION', true ); 66 } 67 /** 68 * Select whether we want to use PHP or NF session. 69 */ 70 if ( defined('NFWSESSION') ) { 64 if ( is_file( NFW_LOG_DIR .'/nfwlog/phpsession') ) { 65 require_once __DIR__ .'/lib/class-php-session.php'; 66 } else { 71 67 if (! defined('NFWSESSION_DIR') ) { 72 68 /** … … 76 72 } 77 73 require_once __DIR__ .'/lib/class-nfw-session.php'; 78 } else {79 require_once __DIR__ .'/lib/class-php-session.php';80 74 } 81 75 -
ninjafirewall/trunk/readme.txt
r3367537 r3384410 4 4 Requires at least: 4.9 5 5 Tested up to: 6.8 6 Stable tag: 4.8 6 Stable tag: 4.8.1 7 7 Requires PHP: 7.1 8 8 License: GPLv3 or later … … 209 209 Need more security? Take the time to explore our supercharged Premium edition: [NinjaFirewall WP+ Edition](https://nintechnet.com/ninjafirewall/wp-edition/?comparison) 210 210 211 = 4.8.1 = 212 213 * All active installations will now use NinjaFirewall sessions instead of PHP's. 214 * Added compatibility with PHP 8.5, which will be released in a few weeks. 215 211 216 = 4.8 = 212 217 -
ninjafirewall/updates/rules4.txt
r3367530 r3384410 1 2025 0918.1|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|a:280:{i:1;a:4:{s:3:"why";s:22:"Directory traversal #1";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_USER_AGENT|PHP_SELF|PATH_INFO";s:3:"wha";s:26:"(?:\.{2}[\\/]+){2}[a-zA-Z]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:2;a:4:{s:3:"why";s:32:"ASCII character 0x00 (NULL byte)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:88:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER|REQUEST_URI|PHP_SELF|PATH_INFO|FILES";s:3:"wha";s:3:"\x0";s:3:"ope";i:5;s:3:"noc";i:1;}}}i:3;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:29:"\b(?:proc/self/|etc/passwd)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:4;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:13:"\betc/passwd$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:5;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}\s*sys_get_temp_dir\b";s:3:"ope";i:5;}}}i:6;a:4:{s:3:"why";s:22:"Directory traversal #2";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:36:"^(?:\.{2}[\\/]+){2,}[-\w/\s.]+\.php$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:7;a:4:{s:3:"why";s:19:"XML External Entity";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:51:"<!ENTITY[\s+]+(?:%[\s+]+)?\w+[\s+]+SYSTEM[\s+]+["']";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:8;a:5:{s:3:"why";s:15:"Suspicious file";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}s:3:"cpb";s:17:"unfiltered_upload";}i:50;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"GET|POST|HTTP_USER_AGENT";s:3:"wha";s:34:"^(?i:https?|ftp)://.+/[^&/\s@]+\?$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:51;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"^(?i)https?://(?:[hp]astebin\.com|textbin\.net)/raw/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:52;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}["'](?:https?|ftp)://";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:53;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:33:"^(?i:ftp)://(?:.+?:.+?\@)?[^/]+/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:100;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:60:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES|HTTP_FORWARDED";s:3:"wha";s:107:"<(?i:applet|embed|form|i?frame(?:set)?|i(?:mg|sindex)|link|m(?:eta|arquee)|object|script|textarea)\b.*=.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:101;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:78:"\W(?:background(-image)?|-moz-binding)\s*:[^}]*?\burl\s*\([^)]+?(https?:)?//\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:102;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:32:"GET|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:134:"<.+?(?i)\b(?:href|(?:form)?action|background|code|data|location|name|poster|src|value)\s*=\s*\\?['"]?(?:(?:f|ht)tps?:)?\\?/\\?/\w+\.\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:104;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?:alert|confirm|eval|expression|prompt|set(?:Timeout|Interval)|String\s*\.\s*fromCharCode|\.\s*substr)\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:105;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:69:"\bdocument\s*\.\s*(?:body|cookie|domain|location|open|write(?:ln)?)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:106;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:36:"\blocation\s*\.\s*(?:href|replace)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:107;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:35:"\bwindow\s*\.\s*(?:open|location)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:108;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"(?i)<style\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:109;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:50:"\beval\s*\(\s*String\s*\.\s*fromCharCode\s*\(\s*\d";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:110;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:2764:"(?i)<[a-z].+?\bon(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)\s*=.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:111;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:2767:"(?i)<[a-z].+?\bon(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)\s*=\s*.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:112;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:113;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:42:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:114;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:64:"QUERY_STRING|GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:14:"(?i)<script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:115;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:14:"(?i)<script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:116;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:48:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|RAW";s:3:"wha";s:12:"<x:script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:117;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"[{}+[\]\s]\+\s*\[\s*]\s*\)\s*\[[{!}+[\]\s]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:118;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:38:"\+A(?:Dw|ACIAPgA8)-.+?\+AD4(?:APAAi)?-";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:119;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:43:"POST|GET|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:349:"(?i)[\s"'\x60;,\/0-9=\x0B\x09\x0C(]+on(?:abort|blur|change|click|close|dblclick|dragdrop|endevent|error|exit|focus(?:in|out)?|formchange|form(?:data|input)|input|key(?:down|press|statuschange|up)|load[a-z]{0,10}|(?:mouse|pointer)[a-z]{2,10}|move|move(?:end|start)|reset|resize|noupdate|scroll|select|submit|success|svgload|timeout|unload)\s*[=;,|'"]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:120;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"(?i)<[a-z]+\\?/[a-z]+.+?=.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:121;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:67:"\batob\s*(?:['"\x60]\s*\]\s*)?\(\s*(['"\x60])[a-zA-Z0-9/+=]+\1\s*\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:122;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:90:"\[\s*\]\s*\[\s*['"\x60]filter['"\x60]\s*\]\s*\[\s*['"\x60]constructor['"\x60]\s*\]\s*\(\s*";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:123;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:3:"GET";s:3:"wha";s:44:"\b(?:document|window|this)\s*\[.+?\]\s*[\[(]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}}i:125;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:167:"(?:(?:\b(?:self|this|top|window)\s*\[.+?\]|\(\s*(?:alert|confirm|eval|expression|prompt)\s*\)|\[.*?\]\s*\.\s*find)|(?:\.\s*(?:re(?:ject|place)|constructor)))\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:126;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:73:"\b(\w+)\s*=\s*(?:alert|confirm|eval|expression|prompt)\s*[;,]\1\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:127;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:115:"\bFunction\s*[({].*?[})]\s*\(.*?\)|\bfunction\s*\(.+?\)\s*{.+?}|(?:\[|new)\s*class\s*extends\b|\bArray\s*.\s*from\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:128;a:5:{s:3:"why";s:22:"Attribute JS injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"POST|GET|SERVER:HTTP_REFERER|SERVER:HTTP_USER_AGENT";s:3:"wha";s:37:"(?i)(?:\W|^)javascript:(?!void\().{8}";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:150;a:4:{s:3:"why";s:21:"Mail header injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"\x0A\b(?i:(?:reply-)?to|b?cc|content-[td]\w)\s*:.*?\@";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"noc";i:1;}}}i:153;a:4:{s:3:"why";s:21:"SSI command injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:56:"<!--#(?:config|echo|exec|flastmod|fsize|include)\b.+?-->";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:154;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:35:"COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:31:"(?s:<\?.+)|#!/(?:usr|bin)/.+?\s";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:155;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:405:"(?:<\?(?![Xx][Mm][Ll]).*?(?:\$_?(?:COOKIE|ENV|FILES|GLOBALS|(?:GE|POS|REQUES)T|SE(RVER|SSION))\s*[=\[)]|\b(?i:array_map|assert|base64_(?:de|en)code|curl_exec|eval|(?:ex|im)plode|file(?:_get_contents)?|fsockopen|function_exists|gzinflate|move_uploaded_file|passthru|[ep]reg_replace|phpinfo|stripslashes|strrev|substr|system|(?:shell_)?exec)\s*(?:/\*.+?\*/\s*)?\())|#!/(?:usr|bin)/.+?\s|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:156;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?i:eval)\s*\(\s*(?i:base64_decode|exec|file_get_contents|gzinflate|passthru|shell_exec|stripslashes|system)\s*\(";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:157;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:12:"CONTENT_TYPE";s:3:"wha";s:16:"application/json";s:3:"ope";i:4;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:6:"<?php ";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:160;a:4:{s:3:"why";s:40:"Shellshock vulnerability (CVE-2014-6271)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:10:"GET|SERVER";s:3:"wha";s:16:"^\s*\(\s*\)\s*\{";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:250;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:14:"GET|POST|FILES";s:3:"wha";s:43:"^[-\d';].+\w.+(?:--[\x00-\x20\x7f]*|#|/\*)$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:266:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|select|(?:pg_)?sleep|substring|table|truncate|union|update)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:251;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:49:"(?i)(?:\b|\d)(?:ceil|concat|conv|floor|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:35:"(?i)(?:\b|\d)(?:pi\s*\(.*?\).+?){3}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:253;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"GET|POST|COOKIE";s:3:"wha";s:43:"^(?i:admin(?:istrator)?)['"].*?(?:--|#|/\*)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:254;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:84:"(?i)\b[-\w]+@(?:[-a-z0-9]+\.)+[a-z]{2,8}'.{0,20}[^a-z](?:\band\b|&&).{0,20}=[\s/*]*'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:255;a:4:{s:3:"why";s:32:"SQL injection (JSON obfuscation)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:102:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|).{0,250}\b(?:(?:\w+)\s*(?:@>|<@)\s*'{"|'{"\s*(?:@>|<@)\s*(?:\w+))";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:256;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:96:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|)\s*(?:\d+\s*)+(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)(?:\s*\d)+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:257;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:107:"(?:\band\b|\bor\b|\bhaving\b|&&|[^|]\|\|[^|]).{0,250}\b(\w+)\b\s*(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)\s*\1\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:258;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:15:"GET|POST|SERVER";s:3:"wha";s:65:".{5}\bfrom\b.{1,30}\b(?:information|performance)_schema\s*\.\s*\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:259;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:53:"^-?\d+.{0,30}(?:\band\b.{0,30})?\b(?i:union|select)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:261:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:260;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|POST|FILES";s:3:"wha";s:63:"^(?:\b(?:null|and|or)\b|\|\||&&)?\s*union\s+(?:all\s+)?select\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:261;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:44:"GET|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:52:"(?:\b(?:null|and|or)\b|\|\||&&)\s*.{0,50}\bselect\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:267:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:262;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:36:"^.{0,10}\bselect\b\s.{1,50}\bfrom\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:273:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:263;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:16:"union all select";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:264;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"select concat";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:265;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:48:"^.{0,15}\bunion\s+select\b.{1,100}(from|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:267;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:179:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\balter\s+(?:(?:database|schema)\b|table\s+.{1,70}\s+rename\b|(?:ignore\s+)?table\b|user\b(?:\s+if\s+exists\s)?.{1,38}@).{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:268;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:187:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bcreate\s+(?:(?:database|schema|(?:temporary\s+)?table)\s+(?:if\s+not\s+exists\b)?.{1,70}|user\s+.{1,38}@.{1,38}\s+identified\s+by\s+)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:269;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:186:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bdrop\s+(?:(?:table\b|index\b.{1,60}\son\b|(?:database|schema)\s+(?:if\s+exists\b)?).{1,70}|user\s+(?:if\s+exists\b)?.{1,38}@.{1,38})";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:270;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:92:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\brename\s+table\s+.{1,70}\s+to\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:271;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:151:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bload\s+data\s+(?:(?:low_priority\s+|concurrent\s+)?local\s+)?infile\b.{1,500}\binto\s+table\b.{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:272;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:79:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\btruncate\s+table\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:273;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:110:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bselect\b.{1,200}\binto\s+(?:(?:dump|out)file\s|@\w).{10}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:274;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:77:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bload_file\s+/.{3,15}/\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:275;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:113:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bdelete\b.{1,100}\bfrom\b.{1,100}\bwhere\b.{1,100}(?:=|null)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:276;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:124:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bset\s+password\b(?:\s+for\s.{1,38}@.{1,60}=|\s*=.+?\bwhere\s+user\s*=)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:277;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:74:"(?i)(?:\b|\d)insert\b.+?(?:\b|\d)into\b.{1,150}(?:\b|\d)values\b.*?\(.+?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:278;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:86:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bupdate\s.{1,100}\bset\s.{1,50}=.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:279;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:60:"\bgroup\s+\bby\s.{1,200}\bhaving\s.{1,50}(?:[!<]?=|=>?|[<>])";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:280;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:25:"^.{0,10}\border\s+by\s+\d";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:281;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"^.{0,10}\band\s+extractvalue\s+\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:282;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"\bbenchmark\s+\d{5,10}\s+[a-z]{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:283;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"\bfloor\s+rand\s+(?:\d+\s*)?\*\s*\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:284;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"\bcase\b.+?\bwhen\b.+?\bthen\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:285;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"^.{0,100}\s(?:pg_)?sleep\s\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:286;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"(?i)\d\s+procedure\s+analyse\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:287;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:59:"waitfor\s+delay\s*\d+(?:\.\d+)?:\d+(?:\.\d+)?:\d+(?:\.\d+)?";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:300;a:4:{s:3:"why";s:13:"Leading quote";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"GET";s:3:"wha";s:2:"^'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:301;a:4:{s:3:"why";s:41:"Potential reflected file download attempt";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:31:"(?i)^[^?]*\.(?:bat|cmd)(?:\W|$)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:302;a:4:{s:3:"why";s:12:"PHP variable";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:22:"QUERY_STRING|PATH_INFO";s:3:"wha";s:44:"\bHTTP_RAW_POST_DATA|HTTP_(?:POS|GE)T_VARS\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:303;a:4:{s:3:"why";s:18:"phpinfo.php access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:11:"phpinfo.php";s:3:"ope";i:4;}}}i:304;a:4:{s:3:"why";s:21:"Malformed Host header";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:9:"HTTP_HOST";s:3:"wha";s:20:"[^-a-zA-Z0-9._:\[\]]";s:3:"ope";i:5;}}}i:305;a:4:{s:3:"why";s:23:"PHP handler obfuscation";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:51:"[^/]\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b\.";s:3:"ope";i:5;}}}i:306;a:4:{s:3:"why";s:26:"Bogus user-agent signature";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:50:"\b(?:compatible; MSIE [1-6]|(?i)Mozilla/[0-3])\.\d";s:3:"ope";i:5;}}}i:307;a:4:{s:3:"why";s:52:"Excessive user-agent string length (400+ characters)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:7:"^.{500}";s:3:"ope";i:5;}}}i:309;a:4:{s:3:"why";s:24:"PHP predefined variables";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:65:"QUERY_STRING|PATH_INFO|COOKIE|SERVER:HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:141:"\b(?:\$?_(COOKIE|ENV|FILES|(?:GE|POS|REQUES)T|SE(RVER|SSION))|HTTP_(?:(?:POST|GET)_VARS|RAW_POST_DATA)|GLOBALS)\s*[=\[)]|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:310;a:4:{s:3:"why";s:30:"Access to a configuration file";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"SCRIPT_NAME|GET";s:3:"wha";s:81:"\b(?i:(?:conf(?:ig(?:ur(?:e|ation)|\.inc|_global)?)?)|settings?(?:\.?inc)?)\.php$";s:3:"ope";i:5;}}}i:311;a:4:{s:3:"why";s:27:"Large set of Hex characters";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:23:"(?i:\\x[a-f0-9]{2}){25}";s:3:"ope";i:5;}}}i:312;a:4:{s:3:"why";s:16:"Non-compliant IP";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:177:"HTTP_X_FORWARDED_FOR|HTTP_CF_CONNECTING_IP|HTTP_CLIENT_IP|HTTP_FORWARDED_FOR|HTTP_INCAP_CLIENT_IP|HTTP_X_CLUSTER_CLIENT_IP|HTTP_X_FORWARDED|HTTP_X_REAL_IP|HTTP_X_SUCURI_CLIENTIP";s:3:"wha";s:30:"[^.0-9a-fA-F:\x20,unixkow\[\]]";s:3:"ope";i:5;}}}i:313;a:4:{s:3:"why";s:31:"PHP-CGI exploit (CVE-2012-1823)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:19:"^-[bcndfiswzT].{20}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:315;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:61:">.*?/[./]*dev/[./]*(?:tc|ud)p/[./]*[^/]{5,255}/[./]*\d{1,5}\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:316;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:72:"\bnc\s+(?:\d+(\.\d+){3}\s+\d+|-\w+\s+(?:\d+|/[\w/]+\s+\d+(\.\d+){3}\s+))";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:317;a:4:{s:3:"why";s:17:"Hidden PHP script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:53:"/\.[^/]+\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:318;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"(?i:\bchr\s*\(\s*\d{1,3}\s*\).+?){4}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:319;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:52:"(?i)concat|select|database|insert|update|union|table";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:4:{s:3:"wha";s:75:"\bchar\b\s(?:\d{1,3}\s){3}|(?:\bchar\b\s\d{1,3}\s(?:\|\||or|&&|and)?\s?){3}";s:3:"ope";i:5;s:3:"tra";i:1;s:3:"nor";i:1;}}}i:320;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:22:"(?i:\\x[a-f0-9]{2}){4}";s:3:"ope";i:5;}}}i:321;a:4:{s:3:"why";s:14:"Adminer script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:47:"/_?adminer(?:(?:-\d\.\d.\d)(?:-[\w-]+)?)?\.php$";s:3:"ope";i:5;}}}i:322;a:4:{s:3:"why";s:40:"Attempt to modify NinjaFirewall settings";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"(^|\S['"])nfw_(?:options|rules)\b";s:3:"ope";i:5;}}}i:323;a:4:{s:3:"why";s:13:"Proxy attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:19:"^/%EF%BB%BFhttps?:/";s:3:"ope";i:5;}}}i:351;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"REQUEST:nixpasswd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:352;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:16:"\bact=img&img=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:353;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:15:"\bc=img&name=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:354;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:36:"^image=(?:arrow|file|folder|smiley)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:355;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:21:"\buname=.+?;\ssysctl=";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:356;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"REQUEST:sql_passwd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:357;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nowpath";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:358;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"POST:view_writable";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:359;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:11:"phpspypass=";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:360;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"POST:a";s:3:"wha";s:90:"^(?:Bruteforce|Console|Files(?:Man|Tools)|Network|Php|SecInfo|SelfRemove|Sql|StringTools)$";s:3:"ope";i:5;}}}i:361;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nst_cmd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:362;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"POST:cmd";s:3:"wha";s:206:"^(?:c(?:h_|URL)|db_query|echo\s\\.*|(?:edit|download|save)_file|find(?:_text|\s.+)|ftp_(?:brute|file_(?:down|up))|mail_file|mk|mysql(?:b|_dump)|php_eval|ps\s.*|search_text|safe_dir|sym[1-2]|test[1-8]|zend)$";s:3:"ope";i:5;}}}i:363;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"GET:p";s:3:"wha";s:65:"^(?:chmod|cmd|edit|eval|delete|headers|md5|mysql|phpinfo|rename)$";s:3:"ope";i:5;}}}i:364;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:137:"^act=(?:bind|cmd|encoder|eval|feedback|ftpquickbrute|gofile|ls|mkdir|mkfile|processes|ps_aux|search|security|sql|tools|update|upload)&d=/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:365;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"SERVER";s:3:"wha";s:36:"\b(?i)(eval|base64_decode)\s*\(.+?\)";s:3:"ope";i:5;}}}i:500;a:4:{s:3:"why";s:40:"ASCII control characters (1-8 and 14-31)";s:3:"lev";i:2;s:3:"ena";i:0;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:20:"[\x01-\x08\x0e-\x1f]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:510;a:4:{s:3:"why";s:38:"DOCUMENT_ROOT variable in HTTP request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:20:"GET|POST|REQUEST_URI";s:3:"wha";s:11:"/nothingyet";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:520;a:4:{s:3:"why";s:31:"Data URI scheme or PHP wrappers";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:58:"GET|POST|COOKIE|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:108:"^(?i:(?:expect|file|ph(?:ar|p)|zip)://.|.{0,90}\bdata:(?!image/(?:jpe?g|png|gif|svg\+xml)).*?;\s*base64.*?,)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:525;a:4:{s:3:"why";s:21:"Serialized PHP object";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:77:"^.{0,25}[;{}]?\b[OC]:\d+:"[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*":\d+:{.*?}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:531;a:4:{s:3:"why";s:24:"Suspicious bots/scanners";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:328:"(?i:acunetix|backdoor|bandit|blackwidow|BOT for JCE|core-project|dts agent|emailmagnet|ex(ploit|tract)|flood|grabber|harvest|httrack|havij|hunter|indy library|LoadTimeBot|mfibot|Microsoft URL Control|Miami Style|morfeus|nessus|NetLyzer|pmafind|scanner|Scrapy|siphon|spbot|sqlmap|survey|teleport|updown_tester|xovibot|zgrap|zmap)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:540;a:4:{s:3:"why";s:32:"Localhost IP in GET/POST request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"^(?i:127\.0\.0\.1|localhost|::1)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1007;a:4:{s:3:"why";s:26:"phpMyAdmin hacking attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/scripts/(?:setup|signon)\.php";s:3:"ope";i:5;}}}i:1011;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:14:"/uploadify.php";s:3:"ope";i:3;}}}i:1350;a:4:{s:3:"why";s:21:"Arbitrary File Upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/fckeditor/editor/filemanager/";s:3:"ope";i:3;}}}i:1351;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:15:"/wp-config.php$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1352;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"houzez_register";s:3:"ope";i:1;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:9:"POST:role";s:3:"wha";s:56:"^(?:houzez_(?:agency|agent|buyer|seller|owner|manager))$";s:3:"ope";i:6;}}s:3:"cpb";s:14:"manage_options";}i:1353;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:36:"houzez_register_user_with_membership";s:3:"ope";i:1;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:14:"POST:user_role";s:3:"wha";s:56:"^(?:houzez_(?:agency|agent|buyer|seller|owner|manager))$";s:3:"ope";i:6;}}s:3:"cpb";s:14:"manage_options";}i:1356;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:36:"litho_remove_font_family_action_data";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1357;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:32:"alone_import_pack_install_plugin";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1359;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:28:"POST:wpda_role|GET:wpda_role";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:13:"promote_users";}i:1360;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:18:"/am-member/license";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:blowf";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1361;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"shortcode_addons_data";s:3:"ope";i:1;}}}i:1362;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:blowfish";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:blowf";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1363;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"GET:yrc_nuke";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1364;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"GET:yrc_clear_cache";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1365;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"um_get_members";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:sorting";s:3:"wha";s:2:"\W";s:3:"ope";i:5;}}}i:1366;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:21:"/wp-admin/install.php";s:3:"ope";i:3;}}}i:1367;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:26:"uielem/v1/prepare_template";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1369;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:13:"GET:post_type";s:3:"wha";s:15:"acf-field-group";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:post_status";s:3:"wha";s:1:""";s:3:"ope";i:3;}}}i:1370;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:form_request";s:3:"wha";s:15:"jssupportticket";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"REQUEST:task";s:3:"wha";s:9:"savetheme";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1371;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"bit_fm_connector";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"REQUEST:cmd";s:3:"wha";s:3:"put";s:3:"ope";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1374;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"themify_plupload";s:3:"ope";i:1;}}s:3:"cpb";s:12:"upload_files";}i:1375;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"themify_plupload_customizer";s:3:"ope";i:1;}}s:3:"cpb";s:18:"edit_theme_options";}i:1376;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"tbuilder_plupload_layout";s:3:"ope";i:1;}}s:3:"cpb";s:9:"edit_post";}i:1377;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:22:"tb_update_global_style";s:3:"ope";i:1;}}s:3:"cpb";s:9:"edit_post";}i:1378;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"gsf_upload_fonts";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1379;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:option";s:3:"wha";s:23:"mo_wpns_change_password";s:3:"ope";i:1;}}}i:1380;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"save_footer_text";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1385;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"atbdp_plugins_bulk_action";s:3:"ope";i:1;}}}i:1386;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:21:"POST:stm_new_password";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"GET:hash_check";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1399;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"save_config";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:config";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1401;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"wpt_admin_update_notice_option";s:3:"ope";i:1;}}}i:1404;a:4:{s:3:"why";s:11:"WP backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:12:"wp_is_mobile";s:3:"ope";i:1;}}}i:1409;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:32:"elementor_upload_and_install_pro";s:3:"ope";i:1;}}}i:1410;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"install_requirements";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:plugin";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1412;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"^(?:zip_(ngg_)?upload)$";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:13:"FILES:zipFile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1414;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:68:"^(antihacker|cardealer|stopbadbots|wpmemory|wptools)_install_plugin$";s:3:"ope";i:5;}}}i:1417;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/payu/v1/generate-user-token";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:email";s:3:"wha";s:20:"[email protected]";s:3:"ope";i:1;}}}i:1419;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"updraft_central_ajax";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1421;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:27:"/frm-admin/v1/install-addon";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:31:"manage_options|activate_plugins";}i:1422;a:4:{s:3:"why";s:25:"Unauthorized file edition";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"GET:action|POST:action";s:3:"wha";s:35:"^(?:update|edit-theme-plugin-file)$";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:9:"POST:file";s:3:"wha";s:27:"^(?:ninjafirewall|nfwplus)/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1423;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"POST:wcuf_file_name";s:3:"wha";s:4:".php";s:3:"ope";i:3;}}}i:1424;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"do_button_job_later";s:3:"ope";i:1;}}}i:1425;a:4:{s:3:"why";s:10:"Stored XSS";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:4:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:121:"<(?i)(?:(?:a|abbr|acronym)\b.+?title|(?:blockquote|q)\b.+?cite|del\b.+?datetime)\s*=\s*['"][^>]+?on[a-z]{3,18}\s*=\s*.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1426;a:4:{s:3:"why";s:22:"Excessive payload size";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:13:"^(?s).{65000}";s:3:"ope";i:5;}}}i:1427;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:29:"/getwid/v1/get_remote_content";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:10:"edit_posts";}i:1429;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"woosea_save_adwords_conversion_id";s:3:"ope";i:1;}}}i:1430;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^b2bking(?:downloadpricelist|_price_import|rejectuser|approveuser|_approve_order)$";s:3:"ope";i:5;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1434;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:47:"SERVER:HTTP_CONTENT_DIR|SERVER:HTTP_CONTENT_ABS";s:3:"wha";s:4:"php:";s:3:"ope";i:4;}}}i:1435;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:31:"wpas_import_product_from_amazon";s:3:"ope";i:1;}}s:3:"cpb";s:6:"import";}i:1437;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"POST:sgpb-is-preview";s:3:"wha";s:1:"1";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:post_ID";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1438;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"GOTMLS_load_update";s:3:"ope";i:1;}}s:3:"cpb";s:16:"activate_plugins";}i:1440;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:34:"user_registration_form_save_action";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1441;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"wsal-setup";s:3:"ope";i:1;}}}i:1442;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:94:"^((user|coupon|product_(reviews|comments))_csv|woocommerce_(csv|xml)(_order)?)_import_request$";s:3:"ope";i:5;}}}i:1443;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"gmwd_setup";s:3:"ope";i:1;}}}i:1444;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"aj_steps";s:3:"ope";i:1;}}}i:1445;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"REQUEST:cstu_set_token";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:token";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1446;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:32:"SERVER:HTTP_X_WORDABLE_SIGNATURE";s:3:"wha";s:17:"^([^=]+|.*?=\s*)$";s:3:"ope";i:5;}}}i:1447;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:41:"^wps_ic_save_(?:popup|excludes)_settings$";s:3:"ope";i:5;}}}i:1448;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"responsive-ready-sites-";s:3:"ope";i:3;}}}i:1449;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"^cfp-(?:new-post|connect)$";s:3:"ope";i:5;}}}i:1450;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:kds_password";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:21:"REQUEST:__kds_docImgs";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:1451;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:27:"POST:lang_default|POST:lang";s:3:"wha";s:10:"^[\w\d-]+$";s:3:"ope";i:6;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"add_to_wishlist";s:3:"ope";i:1;}}}i:1452;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wcfm_ajax_controller";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:34:"REQUEST:wcfm_customers_manage_form";s:3:"wha";s:11:"customer_id";s:3:"ope";i:3;}}s:3:"cpb";s:14:"manage_options";}i:1453;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"wfu_ajax_action_ask_server";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:17:"REQUEST:filenames";s:3:"wha";s:1:"/";s:3:"ope";i:3;}}}i:1454;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/hc/v1/themehunk-import";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1455;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"handle_import";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"POST:template_id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:15:"install_plugins";}i:1456;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"thegem_theme_options_api";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1457;a:4:{s:3:"why";s:20:"Suspicious shortcode";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"parse-media-shortcode";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:14:"POST:shortcode";s:3:"wha";s:39:"^\[(audio|embed|playlist|video|gallery)";s:3:"ope";i:6;s:3:"nor";i:1;}}}i:1458;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"svx_ajax_factory";s:3:"ope";i:1;}}s:3:"cpb";s:18:"manage_woocommerce";}i:1459;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:31:"mk_check_filemanager_php_syntax";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1460;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:27:"/eventin/v2/speakers/import";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:37:"etn_manage_organizer|etn_manage_event";}i:1461;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:36:"FILES:wp_advanced_search_file_import";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1462;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:38:"bookingpress_save_lite_wizard_settings";s:3:"ope";i:1;}}}i:1463;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:16:"/mcp/v1/messages";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1464;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:84:"^(?:tutor_add_instructor|instructor_approval_action|tutor_option_save|setup_action)$";s:3:"ope";i:5;}}}i:1465;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:gf_api_token";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1466;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:294:"POST:ghazale-sds-submit-field-name|POST:ghazale_sds_edit_field|POST:submit-update-single-entry|POST:sds-submit-upload-csv-file|GET:sds-total-del-form-table|GET:sds-total-del-input-table-and-corresponding-form|GET:sds-delete-field-id|GET:sds-del-data-input-table|GET:sds-del-entry-first-entry-id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1467;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^(epsilon_framework_ajax_action|(welcome_screen|epsilon_dashboard)_ajax_callback)$";s:3:"ope";i:5;}}}i:1468;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:10:"dmm_export";s:3:"ope";i:1;}}}i:1469;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:29:"/api/flutter_user/apple_login";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:21:"SERVER:REQUEST_METHOD";s:3:"wha";s:3:"GET";s:3:"ope";i:1;}}}i:1471;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:12:"/readme.html";s:3:"ope";i:3;}}}i:1472;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:23:"GET:SuperSocializerAuth";s:3:"wha";s:11:"LiveJournal";s:3:"ope";i:1;}}}i:1474;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"elementor_ajax";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:34:"pro_woocommerce_update_page_option";s:3:"ope";i:3;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1475;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"sgpb_autosave";s:3:"ope";i:1;}}}i:1481;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"GET:Action|GET:OTPAction";s:3:"wha";s:99:"^(?:EWD_OTP_AddOrder|EWD_UASP_AddAppointment|UPCP_AddProduct|EWD_URP_ImportReviewsFrom)Spreadsheet$";s:3:"ope";i:5;}}}i:1482;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:19:"^{"save_builder":{"";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:93:""url":"[^"]*?(?i:javascript)|"(?:custom)?_attributes":"(?:(?![^\\]").)*?\b(?i)on[a-z]{3,29}\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1483;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:39:"GET:switch_user|COOKIE:original_user_id";s:3:"wha";s:3:"^\d";s:3:"ope";i:5;}}}i:1484;a:4:{s:3:"why";s:16:"Suspicious login";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:13:"/wp-login.php";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:8:"POST:log";s:3:"wha";s:122:"^(wpsecuritypatch|wpnew_|server_admin|foxilitrix|system_not_delete_|admin_sweet|AnonymousFox|adminlin|cron-.{40}$)|['"<>;]";s:3:"ope";i:5;}}}i:1485;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:35:"HTTP_X_WCPAY_PLATFORM_CHECKOUT_USER";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1486;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:rp_key";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:24:"/wp-admin/admin-ajax.php";s:3:"ope";i:3;}}}i:1487;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/rankmath/v1/updateMeta";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:3:"RAW";s:3:"wha";s:28:"capabilities][administrator]";s:3:"ope";i:3;}}}i:1488;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"export_admin_table";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"REQUEST:filename";s:3:"wha";s:6:"\.csv$";s:3:"ope";i:6;}}}i:1489;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:foobar";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:93:"^TotalSoftPoll_(Clone(?:_Set)?|Del(?:_Set)?|Edit(?:_Q_M|_Ans|_Set)?|Theme_(?:Clone|Edit1?)?)$";s:3:"ope";i:5;}}}i:1490;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:45:"GET:edd_action|GET:edd-action|POST:edd-action";s:3:"wha";s:19:"user_reset_password";s:3:"ope";i:1;}}}i:1491;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:security";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"update_options";s:3:"ope";i:1;}}}i:1492;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"htmega_ajax_register";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:reg_role";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1493;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"nf_download_all_subs";s:3:"ope";i:1;}}}i:1494;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"googlesitekit_proxy_setup";s:3:"ope";i:1;}}}i:1495;a:4:{s:3:"why";s:50:"ThemeREX Addons unauthenticated function injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/trx_addons/v2/get/sc_layout";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:1496;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:30:"/rankmath/v1/updateRedirection";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:22:"REQUEST:redirectionUrl";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1497;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"POST:bbp-forums-role";s:3:"wha";s:13:"bbp_keymaster";s:3:"ope";i:1;}}}i:1498;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"_ning_upload_image";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1499;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"st_filter_tour_ajax_location";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:id_location";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1500;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"change_klarna_addon_status";s:3:"ope";i:1;}}}i:1501;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"gdlr_lms_cancel_booking";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:7:"POST:id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1502;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:rm_slug";s:3:"wha";s:12:"rm_user_edit";s:3:"ope";i:1;}}}i:1503;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:81:"^(rm_save_form_view_sett|set_default_form|import_first|rm_admin_upload_template)$";s:3:"ope";i:5;}}}i:1504;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"qsm_upload_image_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:10:"FILES:file";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1505;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"qsm_remove_file_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:file_url";s:3:"wha";s:15:"^qsmfileupload_";s:3:"ope";i:6;}}}i:1506;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:28:"GET:alg_wc_pif_download_file";s:3:"wha";s:7:"\.[\\/]";s:3:"ope";i:5;s:3:"tra";i:3;}}}i:1507;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:35:"kaliforms_form_delete_uploaded_file";s:3:"ope";i:1;}}}i:1508;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"kaliforms_update_option_ajax";s:3:"ope";i:1;}}}i:1509;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1510;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"iconset_uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1511;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"wmuUploadFiles";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1512;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"iva_bh_import_ajax_action";s:3:"ope";i:1;}}}i:1513;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"stm_listing_register";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:23:""role":"(?!user|agency)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1514;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:16:"/1/api/ulisting-";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:163:"/1/api/ulisting-(?:builder/listing-(?:single-layout|type-layout/(?:save_layout|delete-layout)|item-card-layout|single-page)|user/(?:search|role/save)|email|import)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1515;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:26:"GET:listing_id|GET:user_id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:39:"/1/api/ulisting-page-statistics/listing";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1516;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"backup_guard_importBackup";s:3:"ope";i:1;}}}i:1517;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:133:"POST:ct-ultimate-gdpr-export|POST:ct-ultimate-gdpr-import|POST:ct-ultimate-gdpr-export-services|POST:ct-ultimate-gdpr-import-services";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1518;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:148:"^(?:wpcf7r_migrate_all_forms|wpcf7r_reset_settings|import_from_debug|wpcf7r_extension_update|deactivate_wpcf7r_extension|activate_wpcf7r_extension)$";s:3:"ope";i:5;}}}i:1519;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"ninja_forms_sendwp_remote_install";s:3:"ope";i:1;}}}i:1520;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"^kiwi_social_share_[sg]et_option$";s:3:"ope";i:5;}}}i:1521;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"GET:backup-migration";s:3:"wha";s:13:"PROGRESS_LOGS";s:3:"ope";i:1;}}}i:1522;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"superpwa_splashscreen_uploader";s:3:"ope";i:1;}}}i:1523;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:4:"POST";s:3:"wha";s:27:"\bpagepath=['"]?\.\./\.\./.";s:3:"ope";i:5;}}}i:1524;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"usces_download_system_information";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1525;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:42:"REQUEST:member_action|REQUEST:order_action";s:3:"wha";s:35:"^dl(?:order|product|member)newlist$";s:3:"ope";i:5;}}s:3:"cpb";s:14:"manage_options";}i:1526;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"cn_save_config";s:3:"ope";i:1;}}}i:1527;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:56:"FILES:rp_wcdpd_settings|REQUEST:rp_wcdpd_export_settings";s:3:"wha";s:2:"^.";s:3:"ope";i:5;}}s:3:"cpb";s:15:"manage_rp_wcdpd";}i:1528;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wmc_bulk_fixed_price";s:3:"ope";i:1;}}s:3:"cpb";s:13:"edit_products";}i:1529;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:wp_automatic";s:3:"wha";s:8:"download";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:link";s:3:"wha";s:55:"httpz://[a-zA-Z0-9]+\.[a-zA-Z0-9]+\.hop\.clickbank\.net";s:3:"ope";i:6;}}}i:1530;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:58:"SERVER:LSCACHE_VARY_VALUE|SERVER:HTTP_X_LSCACHE_VARY_VALUE";s:3:"wha";s:1:"<";s:3:"ope";i:3;}}}i:1531;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"upload_file";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:38:"FILES:bfdc641563b7bdb53a7b7fb0e49cf9f1";s:3:"tmp";s:0:"";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1532;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"POST:social_site";s:3:"wha";s:4:"true";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:24:"POST:user_id_social_site";s:3:"wha";s:2:"^.";s:3:"ope";i:5;}}s:3:"cpb";s:10:"edit_users";}i:1533;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:33:"redux/v1/templates/plugin-install";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1534;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:38:"jobsearch_job_integrations_settin_save";s:3:"ope";i:1;}}}i:1535;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:34:"POST:jobsearch_allocs_setingsubmit";s:3:"wha";s:1:"1";s:3:"ope";i:1;}}}i:1536;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:import";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"301options";s:3:"ope";i:1;}}}i:1537;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:action";s:3:"wha";s:11:"omgf-update";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1538;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:27:"POST:plugin|POST:ajax_nonce";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"install_plugin";s:3:"ope";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1539;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"woo_product_pagination_product";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:20:"REQUEST:templateInfo";s:3:"wha";s:2:"..";s:3:"ope";i:3;}}}i:1540;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"duplicator_download";s:3:"ope";i:1;}}}i:1541;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"^bulk301(?:export|clearlist)$";s:3:"ope";i:5;}}}i:1542;a:5:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"FILES:301_bulk_redirects";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1543;a:5:{s:3:"why";s:33:"WP vulnerability (CVE-2019-15858)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:27:"FILES:wbcr_inp_import_files";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1544;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:5:"close";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:post";s:3:"wha";s:5:"^\d+$";s:3:"ope";i:5;}}}i:1545;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:43:"/ShortCodeAddonsUltimate/v2/addons_settings";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1546;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:35:"/oxilabtabsultimate/v1/oxi_settings";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1547;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"POST:php_everywhere_code";s:3:"wha";s:5:"<?php";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1548;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST:cmb";s:3:"wha";s:4:"user";s:3:"ope";i:1;}}}i:999;a:3:{i:118;i:1;i:123;i:1;i:1422;i:1;}s:7:"dropins";s:7768:"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";}1 20251024.1|vtDDRZ8qRoAdOVdQu2oyyj8LFHzdB6ac3f8lAOox4JFeYkkRjaEXnRApyaJCUMtvt36iEQz8nIcSiU2gWHaYy1l0d1l8X3nBwrt1yvnQ3WhJnTTqSFJ3zxj2xDojtIPjtreqZH0fIFbOH0+MKi6373qiRaFtIzvplQ2cdV13+eDRawczIZL13EgJqCilYAstrpBQ/7arHEaVOblBPKFrydM7OhvoM+Zl4yplSI1dMXR/un93eVclV616M/a8APlpTZne5NOPRpZzRD/TwtEklDnRXawmQ/oWw5ZEotfQE7poVjwdIF0sW5vimFZ5ZzG0KFzoTcuFqWbT47jU3VX2wDswEPUUn4CcXCLZWUSS52YTQBhWG68gRIaZSgGjbSr1kIJWriOqYk4aZLVsK+4RRb/rHqaowQ6tDhVlM9eehoZw7iZweQewRSWzpwxxnX6ECq+xFUoJcflRtZB/h4Dj0zzXYyTYoMP6StZXiA6neuJflrU56QJZk8WwjZ9lqEEcU1DdkZYNWL+PRwkAj3dTg5Rc1y0lJlSeG8/qqZxuRs0GYF6E0jc3icv2LFQajx3+jJhTcI08JPHy1UgdsMdemD2Y5N/wbN/LOsOHbONSmIL5I5Cy0PtMm1C49p5aH5yh7g2ly0qaXEM75uwAi0IGoUQqVb5SmC1vb+8g3gJ6aFE=|a:278:{i:1;a:4:{s:3:"why";s:22:"Directory traversal #1";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_USER_AGENT|PHP_SELF|PATH_INFO";s:3:"wha";s:26:"(?:\.{2}[\\/]+){2}[a-zA-Z]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:2;a:4:{s:3:"why";s:32:"ASCII character 0x00 (NULL byte)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:88:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER|REQUEST_URI|PHP_SELF|PATH_INFO|FILES";s:3:"wha";s:3:"\x0";s:3:"ope";i:5;s:3:"noc";i:1;}}}i:3;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:29:"\b(?:proc/self/|etc/passwd)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:4;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:13:"\betc/passwd$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:5;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}\s*sys_get_temp_dir\b";s:3:"ope";i:5;}}}i:6;a:4:{s:3:"why";s:22:"Directory traversal #2";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:36:"^(?:\.{2}[\\/]+){2,}[-\w/\s.]+\.php$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:7;a:4:{s:3:"why";s:19:"XML External Entity";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:51:"<!ENTITY[\s+]+(?:%[\s+]+)?\w+[\s+]+SYSTEM[\s+]+["']";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:8;a:5:{s:3:"why";s:15:"Suspicious file";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}s:3:"cpb";s:17:"unfiltered_upload";}i:50;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"GET|POST|HTTP_USER_AGENT";s:3:"wha";s:34:"^(?i:https?|ftp)://.+/[^&/\s@]+\?$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:51;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"^(?i)https?://(?:[hp]astebin\.com|textbin\.net)/raw/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:52;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}["'](?:https?|ftp)://";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:53;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:33:"^(?i:ftp)://(?:.+?:.+?\@)?[^/]+/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:100;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:60:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES|HTTP_FORWARDED";s:3:"wha";s:107:"<(?i:applet|embed|form|i?frame(?:set)?|i(?:mg|sindex)|link|m(?:eta|arquee)|object|script|textarea)\b.*=.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:101;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:78:"\W(?:background(-image)?|-moz-binding)\s*:[^}]*?\burl\s*\([^)]+?(https?:)?//\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:102;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:32:"GET|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:134:"<.+?(?i)\b(?:href|(?:form)?action|background|code|data|location|name|poster|src|value)\s*=\s*\\?['"]?(?:(?:f|ht)tps?:)?\\?/\\?/\w+\.\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:104;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?:alert|confirm|eval|expression|prompt|set(?:Timeout|Interval)|String\s*\.\s*fromCharCode|\.\s*substr)\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:105;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:69:"\bdocument\s*\.\s*(?:body|cookie|domain|location|open|write(?:ln)?)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:106;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:36:"\blocation\s*\.\s*(?:href|replace)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:107;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:35:"\bwindow\s*\.\s*(?:open|location)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:108;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"(?i)<style\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:109;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:50:"\beval\s*\(\s*String\s*\.\s*fromCharCode\s*\(\s*\d";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:110;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:2764:"(?i)<[a-z].+?\bon(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)\s*=.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:111;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:2767:"(?i)<[a-z].+?\bon(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)\s*=\s*.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:112;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:113;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:42:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:114;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:64:"QUERY_STRING|GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:14:"(?i)<script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:115;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:14:"(?i)<script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:116;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:48:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|RAW";s:3:"wha";s:12:"<x:script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:117;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"[{}+[\]\s]\+\s*\[\s*]\s*\)\s*\[[{!}+[\]\s]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:118;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:38:"\+A(?:Dw|ACIAPgA8)-.+?\+AD4(?:APAAi)?-";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:119;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:43:"POST|GET|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:349:"(?i)[\s"'\x60;,\/0-9=\x0B\x09\x0C(]+on(?:abort|blur|change|click|close|dblclick|dragdrop|endevent|error|exit|focus(?:in|out)?|formchange|form(?:data|input)|input|key(?:down|press|statuschange|up)|load[a-z]{0,10}|(?:mouse|pointer)[a-z]{2,10}|move|move(?:end|start)|reset|resize|noupdate|scroll|select|submit|success|svgload|timeout|unload)\s*[=;,|'"]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:120;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"(?i)<[a-z]+\\?/[a-z]+.+?=.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:121;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:67:"\batob\s*(?:['"\x60]\s*\]\s*)?\(\s*(['"\x60])[a-zA-Z0-9/+=]+\1\s*\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:122;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:90:"\[\s*\]\s*\[\s*['"\x60]filter['"\x60]\s*\]\s*\[\s*['"\x60]constructor['"\x60]\s*\]\s*\(\s*";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:123;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:3:"GET";s:3:"wha";s:44:"\b(?:document|window|this)\s*\[.+?\]\s*[\[(]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}}i:125;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:167:"(?:(?:\b(?:self|this|top|window)\s*\[.+?\]|\(\s*(?:alert|confirm|eval|expression|prompt)\s*\)|\[.*?\]\s*\.\s*find)|(?:\.\s*(?:re(?:ject|place)|constructor)))\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:126;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:73:"\b(\w+)\s*=\s*(?:alert|confirm|eval|expression|prompt)\s*[;,]\1\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:127;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:115:"\bFunction\s*[({].*?[})]\s*\(.*?\)|\bfunction\s*\(.+?\)\s*{.+?}|(?:\[|new)\s*class\s*extends\b|\bArray\s*.\s*from\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:128;a:5:{s:3:"why";s:22:"Attribute JS injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"POST|GET|SERVER:HTTP_REFERER|SERVER:HTTP_USER_AGENT";s:3:"wha";s:37:"(?i)(?:\W|^)javascript:(?!void\().{8}";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:150;a:4:{s:3:"why";s:21:"Mail header injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"\x0A\b(?i:(?:reply-)?to|b?cc|content-[td]\w)\s*:.*?\@";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"noc";i:1;}}}i:153;a:4:{s:3:"why";s:21:"SSI command injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:56:"<!--#(?:config|echo|exec|flastmod|fsize|include)\b.+?-->";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:154;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:35:"COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:31:"(?s:<\?.+)|#!/(?:usr|bin)/.+?\s";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:155;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:405:"(?:<\?(?![Xx][Mm][Ll]).*?(?:\$_?(?:COOKIE|ENV|FILES|GLOBALS|(?:GE|POS|REQUES)T|SE(RVER|SSION))\s*[=\[)]|\b(?i:array_map|assert|base64_(?:de|en)code|curl_exec|eval|(?:ex|im)plode|file(?:_get_contents)?|fsockopen|function_exists|gzinflate|move_uploaded_file|passthru|[ep]reg_replace|phpinfo|stripslashes|strrev|substr|system|(?:shell_)?exec)\s*(?:/\*.+?\*/\s*)?\())|#!/(?:usr|bin)/.+?\s|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:156;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?i:eval)\s*\(\s*(?i:base64_decode|exec|file_get_contents|gzinflate|passthru|shell_exec|stripslashes|system)\s*\(";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:157;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:12:"CONTENT_TYPE";s:3:"wha";s:16:"application/json";s:3:"ope";i:4;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:6:"<?php ";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:160;a:4:{s:3:"why";s:40:"Shellshock vulnerability (CVE-2014-6271)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:10:"GET|SERVER";s:3:"wha";s:16:"^\s*\(\s*\)\s*\{";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:250;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:14:"GET|POST|FILES";s:3:"wha";s:43:"^[-\d';].+\w.+(?:--[\x00-\x20\x7f]*|#|/\*)$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:266:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|select|(?:pg_)?sleep|substring|table|truncate|union|update)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:251;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:49:"(?i)(?:\b|\d)(?:ceil|concat|conv|floor|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:35:"(?i)(?:\b|\d)(?:pi\s*\(.*?\).+?){3}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:253;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"GET|POST|COOKIE";s:3:"wha";s:43:"^(?i:admin(?:istrator)?)['"].*?(?:--|#|/\*)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:254;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:84:"(?i)\b[-\w]+@(?:[-a-z0-9]+\.)+[a-z]{2,8}'.{0,20}[^a-z](?:\band\b|&&).{0,20}=[\s/*]*'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:255;a:4:{s:3:"why";s:32:"SQL injection (JSON obfuscation)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:102:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|).{0,250}\b(?:(?:\w+)\s*(?:@>|<@)\s*'{"|'{"\s*(?:@>|<@)\s*(?:\w+))";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:256;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:96:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|)\s*(?:\d+\s*)+(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)(?:\s*\d)+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:257;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:107:"(?:\band\b|\bor\b|\bhaving\b|&&|[^|]\|\|[^|]).{0,250}\b(\w+)\b\s*(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)\s*\1\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:258;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:15:"GET|POST|SERVER";s:3:"wha";s:65:".{5}\bfrom\b.{1,30}\b(?:information|performance)_schema\s*\.\s*\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:259;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:53:"^-?\d+.{0,30}(?:\band\b.{0,30})?\b(?i:union|select)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:261:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:260;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|POST|FILES";s:3:"wha";s:63:"^(?:\b(?:null|and|or)\b|\|\||&&)?\s*union\s+(?:all\s+)?select\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:261;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:44:"GET|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:52:"(?:\b(?:null|and|or)\b|\|\||&&)\s*.{0,50}\bselect\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:267:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:262;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:36:"^.{0,10}\bselect\b\s.{1,50}\bfrom\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:273:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:263;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:16:"union all select";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:264;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"select concat";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:265;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:48:"^.{0,15}\bunion\s+select\b.{1,100}(from|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:267;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:179:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\balter\s+(?:(?:database|schema)\b|table\s+.{1,70}\s+rename\b|(?:ignore\s+)?table\b|user\b(?:\s+if\s+exists\s)?.{1,38}@).{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:268;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:187:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bcreate\s+(?:(?:database|schema|(?:temporary\s+)?table)\s+(?:if\s+not\s+exists\b)?.{1,70}|user\s+.{1,38}@.{1,38}\s+identified\s+by\s+)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:269;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:186:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bdrop\s+(?:(?:table\b|index\b.{1,60}\son\b|(?:database|schema)\s+(?:if\s+exists\b)?).{1,70}|user\s+(?:if\s+exists\b)?.{1,38}@.{1,38})";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:270;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:92:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\brename\s+table\s+.{1,70}\s+to\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:271;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:151:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bload\s+data\s+(?:(?:low_priority\s+|concurrent\s+)?local\s+)?infile\b.{1,500}\binto\s+table\b.{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:272;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:79:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\btruncate\s+table\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:273;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:110:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bselect\b.{1,200}\binto\s+(?:(?:dump|out)file\s|@\w).{10}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:274;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:77:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bload_file\s+/.{3,15}/\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:275;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:113:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bdelete\b.{1,100}\bfrom\b.{1,100}\bwhere\b.{1,100}(?:=|null)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:276;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:124:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bset\s+password\b(?:\s+for\s.{1,38}@.{1,60}=|\s*=.+?\bwhere\s+user\s*=)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:277;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:74:"(?i)(?:\b|\d)insert\b.+?(?:\b|\d)into\b.{1,150}(?:\b|\d)values\b.*?\(.+?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:278;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:86:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bupdate\s.{1,100}\bset\s.{1,50}=.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:279;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:60:"\bgroup\s+\bby\s.{1,200}\bhaving\s.{1,50}(?:[!<]?=|=>?|[<>])";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:280;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:25:"^.{0,10}\border\s+by\s+\d";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:281;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"^.{0,10}\band\s+extractvalue\s+\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:282;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"\bbenchmark\s+\d{5,10}\s+[a-z]{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:283;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"\bfloor\s+rand\s+(?:\d+\s*)?\*\s*\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:284;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"\bcase\b.+?\bwhen\b.+?\bthen\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:285;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"^.{0,100}\s(?:pg_)?sleep\s\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:286;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"(?i)\d\s+procedure\s+analyse\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:287;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:59:"waitfor\s+delay\s*\d+(?:\.\d+)?:\d+(?:\.\d+)?:\d+(?:\.\d+)?";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:300;a:4:{s:3:"why";s:13:"Leading quote";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"GET";s:3:"wha";s:2:"^'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:301;a:4:{s:3:"why";s:41:"Potential reflected file download attempt";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:31:"(?i)^[^?]*\.(?:bat|cmd)(?:\W|$)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:302;a:4:{s:3:"why";s:12:"PHP variable";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:22:"QUERY_STRING|PATH_INFO";s:3:"wha";s:44:"\bHTTP_RAW_POST_DATA|HTTP_(?:POS|GE)T_VARS\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:303;a:4:{s:3:"why";s:18:"phpinfo.php access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:11:"phpinfo.php";s:3:"ope";i:4;}}}i:304;a:4:{s:3:"why";s:21:"Malformed Host header";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:9:"HTTP_HOST";s:3:"wha";s:20:"[^-a-zA-Z0-9._:\[\]]";s:3:"ope";i:5;}}}i:305;a:4:{s:3:"why";s:23:"PHP handler obfuscation";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:51:"[^/]\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b\.";s:3:"ope";i:5;}}}i:306;a:4:{s:3:"why";s:26:"Bogus user-agent signature";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:50:"\b(?:compatible; MSIE [1-6]|(?i)Mozilla/[0-3])\.\d";s:3:"ope";i:5;}}}i:307;a:4:{s:3:"why";s:52:"Excessive user-agent string length (400+ characters)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:7:"^.{500}";s:3:"ope";i:5;}}}i:309;a:4:{s:3:"why";s:24:"PHP predefined variables";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:65:"QUERY_STRING|PATH_INFO|COOKIE|SERVER:HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:141:"\b(?:\$?_(COOKIE|ENV|FILES|(?:GE|POS|REQUES)T|SE(RVER|SSION))|HTTP_(?:(?:POST|GET)_VARS|RAW_POST_DATA)|GLOBALS)\s*[=\[)]|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:310;a:4:{s:3:"why";s:30:"Access to a configuration file";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"SCRIPT_NAME|GET";s:3:"wha";s:81:"\b(?i:(?:conf(?:ig(?:ur(?:e|ation)|\.inc|_global)?)?)|settings?(?:\.?inc)?)\.php$";s:3:"ope";i:5;}}}i:311;a:4:{s:3:"why";s:27:"Large set of Hex characters";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:23:"(?i:\\x[a-f0-9]{2}){25}";s:3:"ope";i:5;}}}i:312;a:4:{s:3:"why";s:16:"Non-compliant IP";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:177:"HTTP_X_FORWARDED_FOR|HTTP_CF_CONNECTING_IP|HTTP_CLIENT_IP|HTTP_FORWARDED_FOR|HTTP_INCAP_CLIENT_IP|HTTP_X_CLUSTER_CLIENT_IP|HTTP_X_FORWARDED|HTTP_X_REAL_IP|HTTP_X_SUCURI_CLIENTIP";s:3:"wha";s:30:"[^.0-9a-fA-F:\x20,unixkow\[\]]";s:3:"ope";i:5;}}}i:313;a:4:{s:3:"why";s:31:"PHP-CGI exploit (CVE-2012-1823)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:19:"^-[bcndfiswzT].{20}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:315;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:61:">.*?/[./]*dev/[./]*(?:tc|ud)p/[./]*[^/]{5,255}/[./]*\d{1,5}\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:316;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:72:"\bnc\s+(?:\d+(\.\d+){3}\s+\d+|-\w+\s+(?:\d+|/[\w/]+\s+\d+(\.\d+){3}\s+))";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:317;a:4:{s:3:"why";s:17:"Hidden PHP script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:53:"/\.[^/]+\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:318;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"(?i:\bchr\s*\(\s*\d{1,3}\s*\).+?){4}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:319;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:52:"(?i)concat|select|database|insert|update|union|table";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:4:{s:3:"wha";s:75:"\bchar\b\s(?:\d{1,3}\s){3}|(?:\bchar\b\s\d{1,3}\s(?:\|\||or|&&|and)?\s?){3}";s:3:"ope";i:5;s:3:"tra";i:1;s:3:"nor";i:1;}}}i:320;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:22:"(?i:\\x[a-f0-9]{2}){4}";s:3:"ope";i:5;}}}i:321;a:4:{s:3:"why";s:14:"Adminer script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:47:"/_?adminer(?:(?:-\d\.\d.\d)(?:-[\w-]+)?)?\.php$";s:3:"ope";i:5;}}}i:322;a:4:{s:3:"why";s:40:"Attempt to modify NinjaFirewall settings";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"(^|\S['"])nfw_(?:options|rules)\b";s:3:"ope";i:5;}}}i:323;a:4:{s:3:"why";s:13:"Proxy attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:19:"^/%EF%BB%BFhttps?:/";s:3:"ope";i:5;}}}i:351;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"REQUEST:nixpasswd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:352;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:16:"\bact=img&img=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:353;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:15:"\bc=img&name=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:354;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:36:"^image=(?:arrow|file|folder|smiley)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:355;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:21:"\buname=.+?;\ssysctl=";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:356;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"REQUEST:sql_passwd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:357;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nowpath";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:358;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"POST:view_writable";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:359;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:11:"phpspypass=";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:360;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"POST:a";s:3:"wha";s:90:"^(?:Bruteforce|Console|Files(?:Man|Tools)|Network|Php|SecInfo|SelfRemove|Sql|StringTools)$";s:3:"ope";i:5;}}}i:361;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nst_cmd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:362;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"POST:cmd";s:3:"wha";s:206:"^(?:c(?:h_|URL)|db_query|echo\s\\.*|(?:edit|download|save)_file|find(?:_text|\s.+)|ftp_(?:brute|file_(?:down|up))|mail_file|mk|mysql(?:b|_dump)|php_eval|ps\s.*|search_text|safe_dir|sym[1-2]|test[1-8]|zend)$";s:3:"ope";i:5;}}}i:363;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"GET:p";s:3:"wha";s:65:"^(?:chmod|cmd|edit|eval|delete|headers|md5|mysql|phpinfo|rename)$";s:3:"ope";i:5;}}}i:364;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:137:"^act=(?:bind|cmd|encoder|eval|feedback|ftpquickbrute|gofile|ls|mkdir|mkfile|processes|ps_aux|search|security|sql|tools|update|upload)&d=/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:365;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"SERVER";s:3:"wha";s:36:"\b(?i)(eval|base64_decode)\s*\(.+?\)";s:3:"ope";i:5;}}}i:500;a:4:{s:3:"why";s:40:"ASCII control characters (1-8 and 14-31)";s:3:"lev";i:2;s:3:"ena";i:0;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:20:"[\x01-\x08\x0e-\x1f]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:510;a:4:{s:3:"why";s:38:"DOCUMENT_ROOT variable in HTTP request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:20:"GET|POST|REQUEST_URI";s:3:"wha";s:11:"/nothingyet";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:520;a:4:{s:3:"why";s:31:"Data URI scheme or PHP wrappers";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:58:"GET|POST|COOKIE|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:108:"^(?i:(?:expect|file|ph(?:ar|p)|zip)://.|.{0,90}\bdata:(?!image/(?:jpe?g|png|gif|svg\+xml)).*?;\s*base64.*?,)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:525;a:4:{s:3:"why";s:21:"Serialized PHP object";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:77:"^.{0,25}[;{}]?\b[OC]:\d+:"[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*":\d+:{.*?}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:531;a:4:{s:3:"why";s:24:"Suspicious bots/scanners";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:328:"(?i:acunetix|backdoor|bandit|blackwidow|BOT for JCE|core-project|dts agent|emailmagnet|ex(ploit|tract)|flood|grabber|harvest|httrack|havij|hunter|indy library|LoadTimeBot|mfibot|Microsoft URL Control|Miami Style|morfeus|nessus|NetLyzer|pmafind|scanner|Scrapy|siphon|spbot|sqlmap|survey|teleport|updown_tester|xovibot|zgrap|zmap)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:540;a:4:{s:3:"why";s:32:"Localhost IP in GET/POST request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"^(?i:127\.0\.0\.1|localhost|::1)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1011;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:14:"/uploadify.php";s:3:"ope";i:3;}}}i:1350;a:4:{s:3:"why";s:21:"Arbitrary File Upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/fckeditor/editor/filemanager/";s:3:"ope";i:3;}}}i:1351;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:15:"/wp-config.php$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1352;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"houzez_register";s:3:"ope";i:1;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:9:"POST:role";s:3:"wha";s:56:"^(?:houzez_(?:agency|agent|buyer|seller|owner|manager))$";s:3:"ope";i:6;}}s:3:"cpb";s:14:"manage_options";}i:1353;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:36:"houzez_register_user_with_membership";s:3:"ope";i:1;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:14:"POST:user_role";s:3:"wha";s:56:"^(?:houzez_(?:agency|agent|buyer|seller|owner|manager))$";s:3:"ope";i:6;}}s:3:"cpb";s:14:"manage_options";}i:1356;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:36:"litho_remove_font_family_action_data";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1357;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:32:"alone_import_pack_install_plugin";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1359;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:28:"POST:wpda_role|GET:wpda_role";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:13:"promote_users";}i:1360;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:18:"/am-member/license";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:blowf";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1361;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"shortcode_addons_data";s:3:"ope";i:1;}}}i:1362;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:blowfish";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:blowf";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1363;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"GET:yrc_nuke";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1364;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"GET:yrc_clear_cache";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1365;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"um_get_members";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:sorting";s:3:"wha";s:2:"\W";s:3:"ope";i:5;}}}i:1366;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:21:"/wp-admin/install.php";s:3:"ope";i:3;}}}i:1367;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:26:"uielem/v1/prepare_template";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1369;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:13:"GET:post_type";s:3:"wha";s:15:"acf-field-group";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:post_status";s:3:"wha";s:1:""";s:3:"ope";i:3;}}}i:1370;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:form_request";s:3:"wha";s:15:"jssupportticket";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"REQUEST:task";s:3:"wha";s:9:"savetheme";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1371;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"bit_fm_connector";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"REQUEST:cmd";s:3:"wha";s:3:"put";s:3:"ope";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1374;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"themify_plupload";s:3:"ope";i:1;}}s:3:"cpb";s:12:"upload_files";}i:1375;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"themify_plupload_customizer";s:3:"ope";i:1;}}s:3:"cpb";s:18:"edit_theme_options";}i:1376;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"tbuilder_plupload_layout";s:3:"ope";i:1;}}s:3:"cpb";s:9:"edit_post";}i:1377;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:22:"tb_update_global_style";s:3:"ope";i:1;}}s:3:"cpb";s:9:"edit_post";}i:1378;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"gsf_upload_fonts";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1379;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:option";s:3:"wha";s:23:"mo_wpns_change_password";s:3:"ope";i:1;}}}i:1380;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"save_footer_text";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1385;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"atbdp_plugins_bulk_action";s:3:"ope";i:1;}}}i:1386;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:21:"POST:stm_new_password";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"GET:hash_check";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1399;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"save_config";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:config";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1401;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"wpt_admin_update_notice_option";s:3:"ope";i:1;}}}i:1404;a:4:{s:3:"why";s:11:"WP backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:12:"wp_is_mobile";s:3:"ope";i:1;}}}i:1409;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:32:"elementor_upload_and_install_pro";s:3:"ope";i:1;}}}i:1410;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"install_requirements";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:plugin";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1412;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"^(?:zip_(ngg_)?upload)$";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:13:"FILES:zipFile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1414;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:68:"^(antihacker|cardealer|stopbadbots|wpmemory|wptools)_install_plugin$";s:3:"ope";i:5;}}}i:1417;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/payu/v1/generate-user-token";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:email";s:3:"wha";s:20:"[email protected]";s:3:"ope";i:1;}}}i:1419;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"updraft_central_ajax";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1421;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:27:"/frm-admin/v1/install-addon";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:31:"manage_options|activate_plugins";}i:1422;a:4:{s:3:"why";s:25:"Unauthorized file edition";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"GET:action|POST:action";s:3:"wha";s:35:"^(?:update|edit-theme-plugin-file)$";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:9:"POST:file";s:3:"wha";s:27:"^(?:ninjafirewall|nfwplus)/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1423;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"POST:wcuf_file_name";s:3:"wha";s:4:".php";s:3:"ope";i:3;}}}i:1424;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"do_button_job_later";s:3:"ope";i:1;}}}i:1425;a:4:{s:3:"why";s:10:"Stored XSS";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:4:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:121:"<(?i)(?:(?:a|abbr|acronym)\b.+?title|(?:blockquote|q)\b.+?cite|del\b.+?datetime)\s*=\s*['"][^>]+?on[a-z]{3,18}\s*=\s*.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1426;a:4:{s:3:"why";s:22:"Excessive payload size";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:13:"^(?s).{65000}";s:3:"ope";i:5;}}}i:1427;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:29:"/getwid/v1/get_remote_content";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:10:"edit_posts";}i:1429;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"woosea_save_adwords_conversion_id";s:3:"ope";i:1;}}}i:1430;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^b2bking(?:downloadpricelist|_price_import|rejectuser|approveuser|_approve_order)$";s:3:"ope";i:5;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1434;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:47:"SERVER:HTTP_CONTENT_DIR|SERVER:HTTP_CONTENT_ABS";s:3:"wha";s:4:"php:";s:3:"ope";i:4;}}}i:1435;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:31:"wpas_import_product_from_amazon";s:3:"ope";i:1;}}s:3:"cpb";s:6:"import";}i:1437;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"POST:sgpb-is-preview";s:3:"wha";s:1:"1";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:post_ID";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1438;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"GOTMLS_load_update";s:3:"ope";i:1;}}s:3:"cpb";s:16:"activate_plugins";}i:1440;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:34:"user_registration_form_save_action";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1442;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/hc/v1/install-active-plugin";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1443;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"gmwd_setup";s:3:"ope";i:1;}}}i:1444;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"aj_steps";s:3:"ope";i:1;}}}i:1445;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"REQUEST:cstu_set_token";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:token";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1446;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:32:"SERVER:HTTP_X_WORDABLE_SIGNATURE";s:3:"wha";s:17:"^([^=]+|.*?=\s*)$";s:3:"ope";i:5;}}}i:1447;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:41:"^wps_ic_save_(?:popup|excludes)_settings$";s:3:"ope";i:5;}}}i:1448;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"responsive-ready-sites-";s:3:"ope";i:3;}}}i:1449;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"^cfp-(?:new-post|connect)$";s:3:"ope";i:5;}}}i:1450;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:kds_password";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:21:"REQUEST:__kds_docImgs";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:1451;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:27:"POST:lang_default|POST:lang";s:3:"wha";s:10:"^[\w\d-]+$";s:3:"ope";i:6;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"add_to_wishlist";s:3:"ope";i:1;}}}i:1452;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wcfm_ajax_controller";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:34:"REQUEST:wcfm_customers_manage_form";s:3:"wha";s:11:"customer_id";s:3:"ope";i:3;}}s:3:"cpb";s:14:"manage_options";}i:1453;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"wfu_ajax_action_ask_server";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:17:"REQUEST:filenames";s:3:"wha";s:1:"/";s:3:"ope";i:3;}}}i:1454;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/hc/v1/themehunk-import";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1455;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"handle_import";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"POST:template_id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:15:"install_plugins";}i:1456;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"thegem_theme_options_api";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1457;a:4:{s:3:"why";s:20:"Suspicious shortcode";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"parse-media-shortcode";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:14:"POST:shortcode";s:3:"wha";s:39:"^\[(audio|embed|playlist|video|gallery)";s:3:"ope";i:6;s:3:"nor";i:1;}}}i:1458;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"svx_ajax_factory";s:3:"ope";i:1;}}s:3:"cpb";s:18:"manage_woocommerce";}i:1459;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:31:"mk_check_filemanager_php_syntax";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1460;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:27:"/eventin/v2/speakers/import";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:37:"etn_manage_organizer|etn_manage_event";}i:1461;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:36:"FILES:wp_advanced_search_file_import";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1462;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:38:"bookingpress_save_lite_wizard_settings";s:3:"ope";i:1;}}}i:1463;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:16:"/mcp/v1/messages";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1464;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:84:"^(?:tutor_add_instructor|instructor_approval_action|tutor_option_save|setup_action)$";s:3:"ope";i:5;}}}i:1465;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:gf_api_token";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1466;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:294:"POST:ghazale-sds-submit-field-name|POST:ghazale_sds_edit_field|POST:submit-update-single-entry|POST:sds-submit-upload-csv-file|GET:sds-total-del-form-table|GET:sds-total-del-input-table-and-corresponding-form|GET:sds-delete-field-id|GET:sds-del-data-input-table|GET:sds-del-entry-first-entry-id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1467;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^(epsilon_framework_ajax_action|(welcome_screen|epsilon_dashboard)_ajax_callback)$";s:3:"ope";i:5;}}}i:1468;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:10:"dmm_export";s:3:"ope";i:1;}}}i:1469;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:29:"/api/flutter_user/apple_login";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:21:"SERVER:REQUEST_METHOD";s:3:"wha";s:3:"GET";s:3:"ope";i:1;}}}i:1471;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:12:"/readme.html";s:3:"ope";i:3;}}}i:1472;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:23:"GET:SuperSocializerAuth";s:3:"wha";s:11:"LiveJournal";s:3:"ope";i:1;}}}i:1474;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"elementor_ajax";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:34:"pro_woocommerce_update_page_option";s:3:"ope";i:3;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1475;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"sgpb_autosave";s:3:"ope";i:1;}}}i:1481;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"GET:Action|GET:OTPAction";s:3:"wha";s:99:"^(?:EWD_OTP_AddOrder|EWD_UASP_AddAppointment|UPCP_AddProduct|EWD_URP_ImportReviewsFrom)Spreadsheet$";s:3:"ope";i:5;}}}i:1482;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:19:"^{"save_builder":{"";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:93:""url":"[^"]*?(?i:javascript)|"(?:custom)?_attributes":"(?:(?![^\\]").)*?\b(?i)on[a-z]{3,29}\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1483;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:39:"GET:switch_user|COOKIE:original_user_id";s:3:"wha";s:3:"^\d";s:3:"ope";i:5;}}}i:1484;a:4:{s:3:"why";s:16:"Suspicious login";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:13:"/wp-login.php";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:8:"POST:log";s:3:"wha";s:122:"^(wpsecuritypatch|wpnew_|server_admin|foxilitrix|system_not_delete_|admin_sweet|AnonymousFox|adminlin|cron-.{40}$)|['"<>;]";s:3:"ope";i:5;}}}i:1485;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:35:"HTTP_X_WCPAY_PLATFORM_CHECKOUT_USER";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1486;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:rp_key";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:24:"/wp-admin/admin-ajax.php";s:3:"ope";i:3;}}}i:1487;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/rankmath/v1/updateMeta";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:3:"RAW";s:3:"wha";s:28:"capabilities][administrator]";s:3:"ope";i:3;}}}i:1488;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"export_admin_table";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"REQUEST:filename";s:3:"wha";s:6:"\.csv$";s:3:"ope";i:6;}}}i:1489;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:foobar";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:93:"^TotalSoftPoll_(Clone(?:_Set)?|Del(?:_Set)?|Edit(?:_Q_M|_Ans|_Set)?|Theme_(?:Clone|Edit1?)?)$";s:3:"ope";i:5;}}}i:1490;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:45:"GET:edd_action|GET:edd-action|POST:edd-action";s:3:"wha";s:19:"user_reset_password";s:3:"ope";i:1;}}}i:1491;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:security";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"update_options";s:3:"ope";i:1;}}}i:1492;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"htmega_ajax_register";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:reg_role";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1493;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"nf_download_all_subs";s:3:"ope";i:1;}}}i:1494;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"googlesitekit_proxy_setup";s:3:"ope";i:1;}}}i:1495;a:4:{s:3:"why";s:50:"ThemeREX Addons unauthenticated function injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/trx_addons/v2/get/sc_layout";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:1496;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:30:"/rankmath/v1/updateRedirection";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:22:"REQUEST:redirectionUrl";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1497;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"POST:bbp-forums-role";s:3:"wha";s:13:"bbp_keymaster";s:3:"ope";i:1;}}}i:1498;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"_ning_upload_image";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1499;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"st_filter_tour_ajax_location";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:id_location";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1500;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"change_klarna_addon_status";s:3:"ope";i:1;}}}i:1501;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"gdlr_lms_cancel_booking";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:7:"POST:id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1502;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:rm_slug";s:3:"wha";s:12:"rm_user_edit";s:3:"ope";i:1;}}}i:1503;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:81:"^(rm_save_form_view_sett|set_default_form|import_first|rm_admin_upload_template)$";s:3:"ope";i:5;}}}i:1504;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"qsm_upload_image_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:10:"FILES:file";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1505;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"qsm_remove_file_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:file_url";s:3:"wha";s:15:"^qsmfileupload_";s:3:"ope";i:6;}}}i:1506;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:28:"GET:alg_wc_pif_download_file";s:3:"wha";s:7:"\.[\\/]";s:3:"ope";i:5;s:3:"tra";i:3;}}}i:1507;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:35:"kaliforms_form_delete_uploaded_file";s:3:"ope";i:1;}}}i:1508;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"kaliforms_update_option_ajax";s:3:"ope";i:1;}}}i:1509;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1510;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"iconset_uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1511;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"wmuUploadFiles";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1512;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"iva_bh_import_ajax_action";s:3:"ope";i:1;}}}i:1513;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"stm_listing_register";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:23:""role":"(?!user|agency)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1514;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:16:"/1/api/ulisting-";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:163:"/1/api/ulisting-(?:builder/listing-(?:single-layout|type-layout/(?:save_layout|delete-layout)|item-card-layout|single-page)|user/(?:search|role/save)|email|import)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1515;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:26:"GET:listing_id|GET:user_id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:39:"/1/api/ulisting-page-statistics/listing";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1516;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"backup_guard_importBackup";s:3:"ope";i:1;}}}i:1517;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:133:"POST:ct-ultimate-gdpr-export|POST:ct-ultimate-gdpr-import|POST:ct-ultimate-gdpr-export-services|POST:ct-ultimate-gdpr-import-services";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1518;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:148:"^(?:wpcf7r_migrate_all_forms|wpcf7r_reset_settings|import_from_debug|wpcf7r_extension_update|deactivate_wpcf7r_extension|activate_wpcf7r_extension)$";s:3:"ope";i:5;}}}i:1519;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"ninja_forms_sendwp_remote_install";s:3:"ope";i:1;}}}i:1520;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"^kiwi_social_share_[sg]et_option$";s:3:"ope";i:5;}}}i:1521;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"GET:backup-migration";s:3:"wha";s:13:"PROGRESS_LOGS";s:3:"ope";i:1;}}}i:1522;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"superpwa_splashscreen_uploader";s:3:"ope";i:1;}}}i:1523;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:4:"POST";s:3:"wha";s:27:"\bpagepath=['"]?\.\./\.\./.";s:3:"ope";i:5;}}}i:1524;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"usces_download_system_information";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1525;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:42:"REQUEST:member_action|REQUEST:order_action";s:3:"wha";s:35:"^dl(?:order|product|member)newlist$";s:3:"ope";i:5;}}s:3:"cpb";s:14:"manage_options";}i:1526;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"cn_save_config";s:3:"ope";i:1;}}}i:1527;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:56:"FILES:rp_wcdpd_settings|REQUEST:rp_wcdpd_export_settings";s:3:"wha";s:2:"^.";s:3:"ope";i:5;}}s:3:"cpb";s:15:"manage_rp_wcdpd";}i:1528;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wmc_bulk_fixed_price";s:3:"ope";i:1;}}s:3:"cpb";s:13:"edit_products";}i:1529;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:wp_automatic";s:3:"wha";s:8:"download";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:link";s:3:"wha";s:55:"httpz://[a-zA-Z0-9]+\.[a-zA-Z0-9]+\.hop\.clickbank\.net";s:3:"ope";i:6;}}}i:1530;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:58:"SERVER:LSCACHE_VARY_VALUE|SERVER:HTTP_X_LSCACHE_VARY_VALUE";s:3:"wha";s:1:"<";s:3:"ope";i:3;}}}i:1531;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"upload_file";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:38:"FILES:bfdc641563b7bdb53a7b7fb0e49cf9f1";s:3:"tmp";s:0:"";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1532;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"POST:social_site";s:3:"wha";s:4:"true";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:24:"POST:user_id_social_site";s:3:"wha";s:2:"^.";s:3:"ope";i:5;}}s:3:"cpb";s:10:"edit_users";}i:1533;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:33:"redux/v1/templates/plugin-install";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1534;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:38:"jobsearch_job_integrations_settin_save";s:3:"ope";i:1;}}}i:1535;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:34:"POST:jobsearch_allocs_setingsubmit";s:3:"wha";s:1:"1";s:3:"ope";i:1;}}}i:1536;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:import";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"301options";s:3:"ope";i:1;}}}i:1537;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:action";s:3:"wha";s:11:"omgf-update";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1538;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:27:"POST:plugin|POST:ajax_nonce";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"install_plugin";s:3:"ope";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1539;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"woo_product_pagination_product";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:20:"REQUEST:templateInfo";s:3:"wha";s:2:"..";s:3:"ope";i:3;}}}i:1540;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"duplicator_download";s:3:"ope";i:1;}}}i:1541;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"^bulk301(?:export|clearlist)$";s:3:"ope";i:5;}}}i:1542;a:5:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"FILES:301_bulk_redirects";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1543;a:5:{s:3:"why";s:33:"WP vulnerability (CVE-2019-15858)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:27:"FILES:wbcr_inp_import_files";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1544;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:5:"close";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:post";s:3:"wha";s:5:"^\d+$";s:3:"ope";i:5;}}}i:1545;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:43:"/ShortCodeAddonsUltimate/v2/addons_settings";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1546;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:35:"/oxilabtabsultimate/v1/oxi_settings";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1547;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"POST:php_everywhere_code";s:3:"wha";s:5:"<?php";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1548;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST:cmb";s:3:"wha";s:4:"user";s:3:"ope";i:1;}}}i:999;a:3:{i:118;i:1;i:123;i:1;i:1422;i:1;}s:7:"dropins";s:7768:"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";} -
ninjafirewall/updates/version3.txt
r3367530 r3384410 1 3|2025 0918.11 3|20251024.1
Note: See TracChangeset
for help on using the changeset viewer.