Signature update for Oct 2020

New signatures rules are generated for the vulnerabilities identified in the week 2020-10-13. You can download and configure these signature rules to protect your appliance from security vulnerable attacks.

Signature version

Signature version 51 applicable for NetScaler VPX 11.1, NetScaler 12.0, Citrix ADC 12.1, Citrix ADC 13.0 platforms.

Note:

Enabling Post body and Response body signature rules might affect Citrix ADC CPU.

Common Vulnerability Entry (CVE) insight

Following is a list of signature rules, CVE IDs, and its description.

Signature rule CVE ID Description
999505   WEB-WORDPRESS WordPress Plugin wpDiscuz 7.0.0 Up To 7.0.4 - Unauthenticated Arbitrary File Upload Vulnerability
999506   WEB-WORDPRESS Quiz & Survey Master - XSS Vulnerability in Questions Feature
999507 CVE-2020-8604 WEB-MISC Trend Micro IWS VA Prior to 6.5 SP2 Patch 4 - Path Traversal Vuln Via /log_search and cf Param (CVE-2020-8604)
999508 CVE-2020-8604 WEB-MISC Trend Micro IWS VA Prior to 6.5 SP2 Patch 4 - Path Traversal Vuln Via /collection and cf Param (CVE-2020-8604)
999509 CVE-2020-8604 WEB-MISC Trend Micro IWS VA Prior to 6.5 SP2 Patch 4 - Path Traversal Vuln Via /log_search and File Param (CVE-2020-8604)
999510 CVE-2020-8604 WEB-MISC Trend Micro IWS VA Prior to 6.5 SP2 Patch 4 - Path Traversal Vuln Via /collection and File Param (CVE-2020-8604)
999511 CVE-2020-7361 WEB-MISC ZenTao Enterprise 8.8.3 and Prior - Remote Code Execution Vulnerability Via Repo-Edit (CVE-2020-7361)
999512 CVE-2020-7361 WEB-MISC ZenTao Pro 8.8.3 and Prior - Remote Code Execution Vulnerability Via Repo-Edit (CVE-2020-7361)
999513 CVE-2020-7361 WEB-MISC ZenTao Enterprise 8.8.3 and Prior - Remote Code Execution Vulnerability Via Repo-Create (CVE-2020-7361)
999514 CVE-2020-7361 WEB-MISC ZenTao Pro 8.8.3 and Prior - Remote Code Execution Vulnerability Via Repo-Create (CVE-2020-7361)
999515 CVE-2020-5768 WEB-WORDPRESS Icegram Email Subscribers & Newsletters Plugin Prior to 4.5.1 - SQL Injection Vulnerability (CVE-2020-5768)
999516 CVE-2020-5767 WEB-WORDPRESS Icegram Email Subscribers & Newsletters Plugin Prior to 4.5.1 - CSRF Vulnerability (CVE-2020-5767)
999517 CVE-2020-15299 WEB-WORDPRESS KingComposer Plugin Prior To 2.9.5 - XSS Vulnerability (CVE-2020-15299)
999518 CVE-2020-13854 WEB-MISC Artica Pandora FMS - Privilege Escalation Vulnerability (CVE-2020-13854)
999519 CVE-2020-13852 WEB-MISC Artica Pandora FMS - Arbitrary File Upload Vulnerability Via File Manager (CVE-2020-13852)
999520 CVE-2020-13700 WEB-WORDPRESS WordPress Plugin acf-to-rest-api Before 3.3.0 - Information Disclosure Vulnerability Via URI (CVE-2020-13700)
999521 CVE-2020-13700 WEB-WORDPRESS WordPress Plugin acf-to-rest-api Before 3.3.0 - Information Disclosure Vulnerability Via URL (CVE-2020-13700)
999522 CVE-2020-13379 WEB-MISC Grafana 3.0.1 Through 7.0.1 - CSRF Bypass Leading To DOS Vulnerability (CVE-2020-13379)
999523 CVE-2020-12851 WEB-MISC Pydio Cells Prior to 2.0.7 - Arbitrary File Write Vulnerability (CVE-2020-12851)
999524 CVE-2020-12848 WEB-MISC Pydio Cells Prior to 2.0.7 - Login as Temporary Shared User Vulnerability (CVE-2020-12848)
999525 CVE-2020-11749 WEB-MISC Artica Pandora FMS Prior To 7.47 - XSS Vulnerability Via SNMP Browser (CVE-2020-11749)
999526 CVE-2020-11579 WEB-MISC PHPKBV9 - File Exfiltration Vulnerability (CVE-2020-11579)
999527 CVE-2020-10546 WEB-MISC rConfig Prior to 3.9.5 - Unauthenticated SQLi Vulnerability in Compliance Policies Via searchColumn (CVE-2020-10546)
999528 CVE-2020-10546 WEB-MISC rConfig Prior to 3.9.5 - Unauthenticated SQLi Vulnerability in Compliance Policies Via searchField (CVE-2020-10546)
999529 CVE-2019-16876 WEB-MISC Portainer Prior To 1.22.1 - Directory Traversal Vulnerability (CVE-2019-16876)
999530   WEB-WORDPRESS - ADning Plugin Prior to 1.5.6 - Unauthenticated Arbitrary File Deletion Vulnerability
999531   WEB-WORDPRESS - ADning Plugin Prior to 1.5.6 - Unauthenticated Arbitrary File Upload Vulnerability

Signature update for Oct 2020