Security Details


Essential App Protect Detection Events

There are three types of detection events in Essential App Protect: Threat Campaigns, Malicious IP, and High-risk Mitigation.

Threat Campaigns

Threat Campaign detected: The system examines the HTTP message for known threat campaigns by matching it against known attack patterns. HTTPS requests are blocked or reported, depending on the configuration, if they are found to belong to an active, known Threat Campaign.

Malicious IP

Access from malicious IP address: The IP Intelligence database checks every source IP address against a dynamic blacklist, that is continuously being updated. It can identify IP addresses associated with high risk, such as anonymous proxies, Tor proxies, phishing proxies, botnets, and scanners. More information about different Malicious IP Categories is shown below.

Risk: Accepting traffic coming from these source IP addresses may result in a successful attack.

Examples: There is a use case for each category; here are two examples.

  • Example 1: For many websites, the chances that good traffic is coming from a Tor exit node are close to zero.
  • Example 2: To deny access from source IP addresses that are serving as phishing proxies. If you own a forum then you may want to deny access from web spammers.

High-Risk Attack Mitigation

Category Name Description
Access from disallowed Geolocation

The system checks whether users are accessing the web application from allowed geographical locations, or from disallowed geographical locations, according to the security policy.

Risk: Prevents illegal access from disallowed geographical locations.

Examples: Ensures that web applications are to be accessed by users from certain geographical locations.

Attack signature detected

The system examines the HTTP message for known attacks by matching it against known attack patterns. The attack categories that can be detected are:

  • Cross Site Scripting (XSS)
  • SQL-Injection
  • Command Execution
  • Server Side Code
  • Injection, LDAP Injection
  • XPath Injection…

If you see an attack pattern that matches multiple requests from multiple IP addresses, consider disabling it as it may be a false positive. Signatures in staging are in Alarm only mode. There are multiple overlapping signatures for the same attacks, so in case you need to disable a signature, you still get protection.

Bad WebSocket handshake request

The system checks that the WebSocket opening handshake complies with the WebSocket RFC.

Risk: By deviating from the standard, an attacker can take advantage of WebSocket stack vulnerabilities and cause unauthorized access to the WebSocket subsystem - enabling data leakage and denial of service.

Examples: By sending an obsolete WebSocket protocol version, the stack can be exposed to vulnerabilities present in draft versions of the WebSocket RFC.

Data Guard: Information leakage detected

The system examines responses and searches for sensitive information.

Risk: Information leakage can occur due to server misconfiguration, improper application design, SQL injection, and other attacks.

Examples: Use this check to prevent sensitive information leakage.

Disallowed file upload content detected

The system checks that the file upload content is not a binary executable file format.

Risk: An attempt to upload an executable file may be an indication of a Trojan, virus, backdoor/shell attack, or other server compromise.

Examples: After successfully uploading malicious code to the web server, the attacker runs the program to gain remote access to the server or spread malware to other users of the application.

Evasion technique detected

This category contains a list of evasion techniques that attackers use to bypass detection.

Failure in Websocket framing protocol

The system checks that the WebSocket frames are well-formed and that the frames pertaining to the same message arrive contiguously, complying with the WebSocket RFC.

Risk: By deviating from the standard, an attacker can take advantage of WebSocket stack vulnerabilities and cause denial of service and the execution of disallowed code.

Examples: By sending a reserved opcode in the frame, the attacker may invoke unexpected behavior in the WebSocket stack, that in turn may grant access to privileged resources.

HTTP protocol compliance failed

This category contains a list of validation checks that the system performs on HTTP requests to ensure that the requests are formatted properly.

Sub-violations:

  • Bad HTTP version - The system examines the requests to verify that the client requests are using HTTP protocol version 1.0 or higher.
  • Null in request - The system examines the request for the presence of any NULL character (except for a NULL in the binary part of a multipart request).
  • Unparseable request content - The system examines requests for content that cannot be parsed.
  • Multiple host headers - The system examines requests to ensure that they contain only a single “Host” header.
  • No Host header in HTTP/1.1 request - The system examines requests sent by a client using the HTTP version 1.1 protocol to see if it contains a Host header. This is required per RFC 2616 - Hypertext Transfer Protocol – HTTP/1.1.

Risk: Various attacks can be launched over non-standard HTTP requests, for example, response splitting, buffer overflows, and denial of service.

Illegal file type

The system checks that the requested file type is configured as a valid file type, or not configured as an invalid file type, within the security policy.

Risk: Prevents forceful browsing and access to sensitive files.

Examples: Allowing files of the type ‘.php’, or blocking files of the type ‘.exe’. By enforcing the legal file types that the application is using, it is possible to prevent access to operating system files, default installation files, and other files that may reside on the server and contain sensitive information.

Illegal HTTP status in response

The server response contains an HTTP status code that is not defined as valid in the security policy.

Risk: Attackers take advantage of web servers’ error responses to gain information on the underlying infrastructure.

Examples: Prevents information leakage and hides web server errors. Essential App Protect can block responses by their HTTP status code. This can be used to stop the viewing of potentially sensitive error pages.

Illegal metacharacter in header

The system checks that the values of all headers within the request only contain meta characters defined as allowed in the security policy.

Risk: Illegal header. Prevents many attacks, for example, SQL Injection and XSS.

Examples: Send ‘<script (malicious JavaScript here)’. Essential App Protect can stop this request by configuring the ‘<’ as an illegal character within a header. Note: Due to the nature of the traffic, it is very common to see almost all metacharacters in headers, so configure this detection event’s settings carefully.

Illegal metacharacter in parameter name

The system checks that all parameter names within the incoming request only contain meta characters defined as allowed in the security policy.

Risk: Meta characters can be used to execute many attacks, for example XSS, SQL injection, and command injection.

Examples: Essential App Protect can block a request after identifying the character ‘<’ which can be used in a cross site scripting attack.

Illegal metacharacter in URL

The system checks that the incoming request includes a URL that contains only meta characters defined as allowed in the security policy. Enforces a desired set of acceptable characters.

Risk: Meta characters can be used to execute many attacks, for example, XSS, SQL injection, and command injection.

Examples: Essential App Protect can block a request after identifying the character ‘<’ which can be used in a cross site scripting attack.

Illegal metacharacter in value

The system checks that all parameter values, XML element/attribute values, or JSON values within the request only contain meta characters defined as allowed in the security policy. Enforces proper input values.

Risk: Illegal value for user-input. Prevents many attacks, for example, SQL Injection and XSS.

Examples: Send ‘<script> (malicious JavaScript here)’ within a parameter, XML or JSON input value. Essential App Protect can stop this request by configuring the ‘<’ as an illegal character within the value. In case the meta-character is valid, other ways to mitigate these attacks include restricting the length of the input, and applying attack patterns.

Illegal method

The system checks that the request references an HTTP request method that is found in the security policy. Enforces desired HTTP methods; GET and POST are always allowed.

Risk: Attacks and problem that can be avoided:
  • Deleted files from the web server by using the DELETE method.
  • The use of other methods in some cases can lead to information leakage, a compromised server, and data manipulation.
Examples:
  • Using the OPTIONS method on web servers can expose all methods which the web server supports.
  • Using the DELETE method can delete files on the web server. However, in some cases, the use of this method is important for the proper functionality of the web application.
IP is blacklisted

The detection event is issued when a request comes from an IP address that falls in the range of an IP address exception marked for “always blocking”, that is, the black list of IPs.

Risk: IP addresses are blacklisted when they are found to belong to attackers that may compromise the application in diverse ways.

Malformed JSON data

The system checks that the request contains JSON content that is well-formed. Enforces parsable JSON requests.

Risk: Sending a request which the web application was not expecting to handle can result in various attacks, like denial of service.

Malformed XML data

The system checks that the request contains XML data that is well-formed, according to W3C standards. Enforces proper XML requests.

Risk: Sending a document which the application was not expecting to handle can result in various attacks, like denial of service.

Note: When a validation file such as a schema is enforced, and the document is malformed, this detection event may not be triggered. Therefore it is not recommended to turn off the ‘XML data does not comply with schema or WSDL document’ detection event when a validation file is used.

Modified Essential cookie

Risks: Illegal cookie. Prevents using other users’ credentials to access the web site. Provides session hijacking mitigation.

Examples: If there are no false positives, this detection event should never happen, and if it does, it means that this is an attack. Null character found in WebSocket text message.

Null character found in WebSocket text message

The detection event is issued if a null character is found in a textual message payload.

Risks: There is a broad range of attacks that can use null byte injection, like OS command injection, directory traversal, and SQL injection.

Request length exceeds defined buffer size

The system checks that the request length is not larger than the maximum memory buffer size in Essential App Protect. Note that this is an internal parameter that protects Essential App Protect from consuming too much memory across all security policies which are active on the device.

Risk: Depletion of BIG-IP resources leaving the application unprotected.

Examples: By default, this limit is set to 10 megabytes. In case a website receives large file uploads, consider raising this limit by changing the parameter long_request_buffer_size on the Advanced Configuration screen. F5 recommends consulting with support before modifying advanced options.


Malicious IP Categories

Malicious IP Categories shows various ways Essential App Protect determines that an IP address is malicious. The Access from malicious IP address detection event occurs when your protected application receives a request from an IP address that falls into one or more of the categories listed below.

Category Name Description
Anonymous Proxy IP addresses that are associated with web proxies that shield the originator’s IP address (such as proxy and anonymization services). This category also includes TOR anonymizer addresses.
Botnets IP addresses of computers that are infected with malicious software (Botnet Command and Control channels, and infected zombie machines) and are controlled as a group by a Bot master, and are now part of a botnet. Hackers can exploit botnets to send spam messages, launch various attacks, or cause target systems to behave in other unpredictable ways.
Cloud-based Services  
Cloud Provider Networks IP addresses and networks that belong to cloud providers, which offer services hosted on their servers via the internet.
Denial-of-Service IP addresses that have launched denial-of-service (DoS) attacks, distributed denial-of-service (DDoS) attacks, anomalous SYN flood attacks, or anomalous traffic detection. These attacks are usually requests for legitimate services, but occur at such a fast rate that targeted systems cannot respond quickly enough and become bogged down or unable to service legitimate clients.
Illegal Websites IP addresses that contain criminally obscene or potentially criminal internet copyright and intellectual property violations.
Infected Sources Active IP addresses that issue HTTP requests with a low reputation index score, or that are known malicious web sites offering or distributing malware, shell code, rootkits, worms, or viruses.
Mobile Threats IP addresses of malicious and unwanted mobile applications.
Phishing Proxies IP addresses that host phishing sites, and other kinds of fraud activities, such as ad click fraud or gaming fraud.
Scanners IP addresses that are involved in reconnaissance, such as probes, host scan, domain scan, and password brute force, typically to identify vulnerabilities for later exploits.
Spam Sources IP addresses that are known to distribute large amounts of spam email by tunneling spam messages through proxy, anomalous SMTP activities, and forum spam activities.
Tor Proxies IP addresses acting as exit nodes for the Tor Network. Exit nodes are the last point along the proxy chain and make a direct connection to the originator’s intended destination.
Web Attacks IP addresses involved in cross site scripting, iFrame injection, SQL injection, cross domain injection, or domain password brute force.
Windows Exploits Active IP addresses that have exercised various exploits against Windows resources by offering or distributing malware, shell code, rootkits, worms, or viruses using browsers, programs, downloaded files, scripts, or operating system vulnerabilities.

Attack Types

Attack types the rules or patterns that identify attacks or classes of attacks on a web application and its components. Essential App Protect compares patterns in the attack signatures against the contents of requests and responses looking for potential attacks. Some of the signatures are designed to protect specific operating systems, web servers, databases, frameworks or applications.

Attack Type Description
Abuse of Functionality Uses a web site’s own features and functionality to consume, defraud, or circumvent the application’s access control mechanisms.
Authentication/Authorization Attacks Targets a web site’s method of validating the identity of a user, service or application. Authorization attacks target a web site’s method of determining if a user, service, or application has the necessary permissions to perform a requested action.
Buffer Overflow Alters the flow on an application by overwriting parts of memory. An attacker could trigger a buffer overflow by sending a large amount of unexpected data to a vulnerable component of the web server.
Command Execution Occurs when an attacker manipulates the data in a user-input field, by submitting commands that could alter the web page content or web application by running a shell command on a remote server to reveal sensitive data-for example, a list of users on a server.
Cross-site Scripting (XSS) Forces a web site to echo attacker-supplied executable code, which loads in a user’s browser.
Denial of Service Overwhelms system resources to prevent a web site from serving normal user activity.
Detection Evasion Attempts to disguise or hide an attack to avoid detection by an attack signature.
Directory Indexing Involves a web server function that lists all of the files within a requested directory if the normal base file is not present.
HTTP Response Splitting Pertains to an attempt to deliver a malicious response payload to an application user.
Information Leakage Occurs when a web site reveals sensitive data, such as developer comments or error messages, which may aid an attacker in exploiting the system.
LDAP Injection Concerns an attempt to exploit web sites that construct LDAP statements from user-supplied input.
Non-browser Client Relates to an attempt by automated client access to obtain sensitive information. HTML comments, error messages, source code, or accessible files may contain sensitive information.
Other Application Attacks Represents attacks that do not fit into the more explicit attack classifications, including email injection, HTTP header injection, attempts to access local files, potential worm attacks, CDATA injection, and session fixation.
Path Traversal Forces access to files, directories, and commands that potentially reside outside the web document root directory.
Predictable Resource Location Attempts to uncover hidden web site content and functionality.
Remote File Include Occurs as a result of unclassified application attacks such as when applications use parameters to pass URLs between pages.
Server Side Code Injection Attempts to exploit the server and allow an attacker to send code to a web application, which the web server runs locally.
SQL-Injection Attempts to exploit web sites that construct SQL statements from user-supplied input.
Trojan/Backdoor/Spyware Tries to circumvent a web server’s or web application’s built-in security by masking the attack within a legitimate communication. For example, an attacker may include an attack in an email or Microsoft Word document, and when a user opens the email or document, the attack starts.
Vulnerability Scan Uses an automated security program to probe a web application for software vulnerabilities.
XPath Injection Occurs when an attempt is made to inject XPath queries into the vulnerable web application.

Attack Signatures

Attack signatures are rules or patterns that identify attack sequences or classes of attacks on a web application and its components. Attack signatures can apply to both requests and responses. F5 releases a new attack signature updates on a regular basis. An attack signature update includes new attack signatures as well as enhancements to existing attack signatures. Attack signature updates are cumulative; each update provides the latest signatures and all signatures from the previous updates. Updating the attack signatures also provides any revisions to existing attack signatures.

The table below lists the attack signatures used with Essential App Protect. This list is updated regularly with both new signatures and updates to old signatures, if required.

The Signature ID column shows the unique ID for the signature, and can be used where a signature id is required in the Portal or through the API. The other columns give various information about the attack signature.

To find a particular signature or a group of signatures, enter a search string into the Search Filter below and press the Enter/Return key or click the Filter Signatures button. For example, entering “vbscript” will reduce the table to only those entries that reference “vbscript”, and is a quick way to see only Visual Basic Script related attack types. Similarly, if you’re looking for signature id 200101375, you can simply enter “1375” (part of the id) to quickly find the attack signature. Note that this is a large table, so response time will vary depending on your system.

 

Signature ID Name Attack Type Risk At-risk Systems Security References Last Updated
200002698 SQL-INJ SPATIAL_WFS_ADMIN_USR (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003745 "fuser" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003881 "reg load" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200001444 background: url() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101377 vbscript: link target (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/24/2017
9:52
200015076 Web Server Probe ( Qualys-Scan ) Vulnerability Scan 3 All systems 3/17/2016
17:22
200007022 Directory Traversal attempt (../Program Files) (Header) Path Traversal 2 Microsoft Windows http://projects.webappsec.org/w/page/13246952/Path%20Traversal 8/25/2019
11:24
200000177 /viewsource.jsp access Predictable Resource Location 2 Macromedia JRun http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200000120 div tag: binding (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001894 onSSTabClosing (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003655 "start" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004770 Java code injection - org.apache.ibatis.parsing.XPathParser (Header) Server Side Code Injection 2 JavaServer Faces (JSF) CVE-2018-11307 7/24/2019
23:31
200011027 Generic buffer overflow attempt 28 Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/buffer_overflow.shtml 1/15/2020
14:12
200004128 PHP injection attempt ( $_SERVER ) Server Side Code Injection 3 PHP 8/7/2017
15:48
200004213 Flask Server Side Template Injection (.__class__) (URI) Server Side Code Injection 3 All systems 2/2/2020
18:42
200009092 ASP source code leakage (34) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200010028 "/Copy of " access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
250000052 (PSM) SQL-INJ "SELECT IF" SQL-Injection 3 PSM 6/27/2013
7:12
200001663 window (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200002370 SQL-INJ print @@ (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
13:37
200003326 "pkill" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200004631 Python code injection - os.close (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200003736 "eval" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003852 "net session" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200009020 SQL Information Leakage (11) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200010079 MySQL Configuration file auto.cnf (URI) Predictable Resource Location 3 General Database http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200101463 HTML5 Entity (Tab) (Header) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002085 SQL-INJ object_type SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003580 "mklink" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003603 "pathping" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004785 Java code injection - util.PropertysetItem (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009028 IIS Information Leakage (4) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200010021 "/Trace.axd" access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200020139 SSRF attempt (127.0.0.1) - Dot-less decimal representation (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200001540 onmessage (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002069 SQL-INJ sysdba SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003022 "chmod" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003677 "tsdiscon" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004510 Java code injection - javax.xml.transform.TransformerFactory Server Side Code Injection 2 Apache Tomcat CVE-2017-7465 2/2/2020
18:42
200000030 DOS/Windows short name access (Parameter) Detection Evasion 3 Microsoft Windows CVE-2005-4360 6/6/2018
14:02
200020053 SSRF attempt (AWS Metadata Server) - Dotted hexadecimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200021058 Malicious Web Site crawler "Butch__" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200101344 onvisibilitychange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002573 SQL-INJ UTL_HTTP (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003142 "fold" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200004583 Python code injection - import Scapy (Header) Server Side Code Injection 2 Python 4/16/2019
13:29
200020189 Java code injection - clojure.lang.ASeq Server Side Code Injection 3 Java Servlets/JSP 2/2/2020
18:42
200009073 SQL Information Leakage (27) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200100027 /intranet access Predictable Resource Location 2 All systems 11626 3/9/2014
6:42
200019056 Malicious program ( News Remote PHP Shell Injection ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200101301 ontouchcancel (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002225 SQL-INJ openrowset (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003033 "nmap" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003329 "printenv" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200003760 "logname" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003932 rConfig ajaxServerSettingsChk unauthenticated command injection Command Execution 3 PHP https://shells.systems/rconfig-v3-9-2-authenticated-and-unauthenticated-rce-cve-2019-16663-and-cve-2019-16662/, CVE-2019-16662 11/19/2019
14:31
200004758 Java code injection - com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-2725 2/2/2020
18:42
200012033 Redis CONFIG SET out of bounds write (Parameter) Denial of Service 2 Redis https://www.talosintelligence.com/reports/TALOS-2016-0206/, CVE-2016-8339 3/8/2018
15:07
200001293 onTimeError() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001868 onMozRotateGestureUpdate (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002272 SQL-INJ Stored procedure "exec xp_" (Parameter) SQL-Injection 3 Sybase/ASE http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/5/2018
11:08
200003284 "ll" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
250000031 (PSM) src vbscript Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
250000061 (PSM) SQL-INJ exec() SQL-Injection 3 PSM 6/27/2013
7:12
200000060 Temporary file (\\$) access Information Leakage 3 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200021063 Malicious Web Site crawler "8484 Boston Project" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001428 CreateTextFile() (Parameter) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200003812 "unzip" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004387 Java code injection - org.springframework.aop.aspectj.AspectJPointcutAdvisor (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200004809 Java code injection - propertyeditor.DocumentEditor (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003561 "ksetup" execution attempt (Parameter) Command Execution 3 Microsoft Windows 8/25/2019
11:24
200003654 "start" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003815 "vdir" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200001421 link rel stylesheet href (URL) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001901 onSSWindowClosing (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101553 Function.call() (URI) Cross Site Scripting (XSS) 2 All systems 8/23/2018
13:36
200003280 "link" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003475 ImageMagick arbitrary file move (msl) Command Execution 3 All systems http://imagetragick.com/, CVE-2016-3716 6/27/2016
17:23
200003769 "ncat" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004004 PHP injection attempt ( fgets, fgetss, fgetc ) Server Side Code Injection 2 PHP 8/7/2017
15:48
200021142 Malicious Web Site crawler (Jorgee) Non-browser client 3 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200001215 onCopy() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001292 onSyncRestored() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200002229 SQL-INJ "SELECT CONCAT()" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200004833 Java code injection - impl.EqualsBean (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002799 NoSQL Injection /_stats (Header) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200002588 SQL-INJ sqlite_version (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200002786 NoSQL Injection /_active_tasks (Parameter) SQL-Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 2/10/2020
17:00
200004854 Java code injection - map.Flat3Map (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200021037 Malicious Web Site crawler "combine" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/11/2019
17:48
200002761 SQLINJ - NoSQL [$gte] (JSON) (URI) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200003777 "pstree" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004977 Java code injection - ch.qos.logback.core.db.JNDIConnectionSource (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200000102 Web-Server example dir access Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/6/2018
13:37
200001498 history.replaceState() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001555 onpopstate (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200002128 SQL-INJ xp_cmdshell SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002640 SQL-INJ SYSTEM_USER (URI) SQL-Injection 3 MySQL http://www.owasp.org/index.php/SQL_Injection 1/26/2017
11:44
200015012 Web Server Probe ( webinspect ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200004473 Java code injection - ProcessBuilder (Header) Server Side Code Injection 3 JBoss 8/23/2018
13:13
200004766 ThinkPHP _method Parameter Remote Code Execution Server Side Code Injection 3 PHP https://blog.thinkphp.cn/910675 7/8/2019
18:55
200010083 "/proc/1/cgroup" access (Header) Predictable Resource Location 2 Unix/Linux http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/15/2017
16:17
200001541 onmessage (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002771 SQLINJ - NoSQL [$ne] (JSON) (Header) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200002841 SQL-INJ expressions like "sleep()" (3) (Parameter) SQL-Injection 2 General Database 2/19/2019
15:31
200004370 JBoss Seam 2 Arbitrary File Upload Server Side Code Injection 3 Java Servlets/JSP CVE-2010-1871 2/2/2020
18:42
200023003 HTTP Response Splitting (3)(Parameter) HTTP Response Splitting 3 All systems http://projects.webappsec.org/HTTP-Response-Splitting 1/30/2020
17:43
200002743 SQLINJ - NoSQL [$gt] SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200001178 FSCommand() (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting,
http://help.adobe.com/en_US/FlashPlatform/reference/actionscript/3/flash/system/package.html,
https://owasp.org/index.php?title=XSS_Filter_Evasion_Cheat_Sheet&setlang=en#Event_Handlers
11/10/2016
17:09
200001624 ononline (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001817 onDOMWindowClose (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002461 SQL-INJ "SELECT updatexml" (Headers) SQL-Injection 3 MySQL CVE-2009-0819 1/25/2018
18:15
200004457 Python code object marshalling Server Side Code Injection 2 Python 6/13/2018
12:25
200019079 Malicious program ( Remote Explorer ) access Trojan/Backdoor/Spyware 3 All systems 2/10/2020
17:00
200020159 Java code injection - P6DataSource Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16942, CVE-2019-16943 2/2/2020
18:42
200021130 Malicious Web Site crawler (FSurf15a) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200001084 activexobject (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001183 onAfter...() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200001256 onPause() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003842 "net group" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200001047 onresize (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001553 onplaying (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101143 onloadend (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001025 onkeyup (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200002157 SQL-INJ select substring (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004265 Code Injection Java (Accessing attributes) (#_keepLastEvaluation) Server Side Code Injection 3 Apache Struts http://www.exploit-db.com/exploits/18329/,
https://www.exploit-db.com/exploits/14360/, CVE-2012-0391, CVE-2012-0392, CVE-2016-3081, CVE-2012-0394, CVE-2016-4438, CVE-2017-5638
8/3/2017
11:44
200000176 Access to Oracle dynamic monitoring services Predictable Resource Location 2 Oracle Application Server http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 5/1/2018
18:05
200018025 HTTP Headers Injection (7) HTTP Response Splitting 3 All systems 11/12/2017
11:00
200100317 "ipconfig" execution attempt Command Execution 3 Microsoft Windows http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/9/2014
6:42
200004338 ASP.NET code injection - System.Activities.Presentation.WorkflowDesigner (Header) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200004559 Wordpress MailPoet Unauthenticated File Upload Server Side Code Injection 3 WordPress https://blog.sucuri.net/2014/07/mailpoet-vulnerability-exploited-in-the-wild-breaking-thousands-of-wordpress-sites.html, CVE-2014-4725 2/26/2019
19:42
200009060 IIS Information Leakage (9) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200001266 onRepeat() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200002340 SQL-INJ benchmark() (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200003599 "netsh" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003635 "robocopy" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200001882 onMozTouchDown (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002561 SQL-INJ BENCHMARK (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 6/6/2018
14:02
200003336 "python" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004012 PHP injection attempt ( gzopen ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200003536 "ftp" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003700 "wmic" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200019088 Malicious program ( Gamma Web Shell ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001361 .open (URI) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200001947 onTabShow (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002379 SQL-INJ "sys.all_tables" (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003289 "mail" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001659 document (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200101441 console.dirxml (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200101444 console.group (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200004602 Python code injection - os.getenv (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200000089 SQL-INJ "DBCC" (Headers) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002316 SQL-INJ "change_on_install" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200003067 "/..namedfork/data" execution attempt (Headers) Detection Evasion 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/11/2013
2:26
200004696 Python code injection - socket.send (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200001015 onmove... (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001245 onLoseCapture() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
8/7/2017
17:40
200001997 oncancel (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101451 console.trace (Header) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200100081 boot.ini access (URI) Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
8/25/2019
11:24
200004777 Java code injection - jodd.db.connection.DataSourceConnectionProvider (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200009240 XPath Exception Error Leakage Information Leakage 2 XML http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200000001 IIS Web Server log dir access (/W3SVC..) Predictable Resource Location 1 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 12/11/2019
17:48
200100031 /home/ftp access Predictable Resource Location 2 Unix/Linux 11032 3/9/2014
6:42
200002236 SQL-INJ "SELECT CONCAT" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002310 SQL-INJ "select 0x" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/22/2019
22:41
200004650 Python code injection - os.pipe2 (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004885 Java code injection - keyvalue.TiedMapEntry (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003095 "tail" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004454 Spring/JBoss Expression Language (EL) Injection (1) (Parameter) Server Side Code Injection 3 JBoss CVE-2018-12533 11/5/2018
13:03
200021065 Malicious Web Site crawler "GameBoy, Powered by Nintendo" fake UA Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001220 onCut() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001507 oncanplay (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101232 onpopuphiding (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002462 SQL-INJ "SELECT extractvalue" (Parameter) SQL-Injection 3 MySQL CVE-2009-0819 1/25/2018
18:15
200003791 "sdiff" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004178 Node.js JS-YAML code execution !!js/undefined Server Side Code Injection 3 Node.js http://nealpoole.com/blog/2013/06/code-execution-via-yaml-in-js-yaml-nodejs-module/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4660, CVE-2013-4660
6/27/2016
17:23
200019098 Malicious program ( PHP Shell ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001816 onDOMWillOpenModalDialog (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001819 onDOMWindowClose (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002341 SQL-INJ CHAR()(Headers) SQL-Injection 3 General Database http://msdn.microsoft.com/en-us/library/ms187323.aspx,
http://dev.mysql.com/doc/refman/5.0/en/string-functions.html#function_char,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002381 SQL-INJ syscolumns (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002279 SQL-INJ "delete from" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
13:37
200004713 Python code injection - socket.recvmsg (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200009262 QNAP Photo Station Access Information Leakage 3 PHP https://www.cvedetails.com/cve/CVE-2013-5760/, cve-2013-5760 3/21/2017
14:07
200100064 Authorization Basic overflow attempt Buffer Overflow 3 Oracle CVE-2003-0727 1/15/2020
14:12
200001147 type = application / script (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001243 onLayoutComplete (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200001542 onmessage (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001797 onDOMNodeInsertedIntoDocument (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200019032 Malicious program ( /sikat.txt ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004925 Java code injection - runtime.MethodClosure (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001379 XMLData. (URI) SQL-Injection 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200101166 onmouseup (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003210 "crontab" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200018053 SSRF attempt (Oracle Metadata Server) (URI) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200020013 Suspicious URL (lvh.me domain service) (Header) Other Application Attacks 2 All systems 2/2/2020
18:42
200101048 oncuechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101165 onmouseup (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002548 SQL-INJ waitfor delay (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003029 "perl" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200100025 CodeRed root.exe access Trojan/Backdoor/Spyware 3 IIS www.cert.org/advisories/CA-2001-19.html, CVE-2001-0500 8/7/2017
15:48
200001607 <MATH href (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 1/15/2020
14:12
200101158 onmousemove (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002141 SQL-INJ into outfile SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/1/2015
16:30
200003752 "groff" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200021077 Automated client access "autohttp" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200101420 onEvent (Parameter) Cross Site Scripting (XSS) 1 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200004845 Java code injection - server.UnicastRef (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200100054 Oracle portal demo access Predictable Resource Location 2 Oracle Application Server CVE-2013-3831 5/1/2018
18:05
200015045 Web Server Probe ( Hydra ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200003929 Apache Tomcat CgiServlet Remote Code Execution Command Execution 2 Apache Tomcat CVE-2019-0232 4/17/2019
11:29
200004139 ASP injection attempt ( response .Write ) ( Headers ) Server Side Code Injection 3 Microsoft Windows 2/10/2020
17:00
200001762 onDOMFocusIn (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001861 onMozPressTapGesture (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101345 onvoicechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101346 onvoicechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001364 .send (URI) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200002691 SQL-INJ sqlite_master (URI) SQL-Injection 3 SQLite http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200009109 IIS Information Leakage (11) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
250000071 (PSM) SQL-INJ user_tables SQL-Injection 3 PSM 6/27/2013
7:12
200009140 (GHDB) PHP Uploader Downloader Page Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200003509 "cscript" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004172 Apache Struts ClassLoader code injection (parameter) Server Side Code Injection 3 Apache Struts http://devcentral.f5.com/articles/mitigating-the-apache-struts-classloader-manipulation-vulnerabilities-using-asm, CVE-2014-0094, CVE-2014-0112, CVE-2014-0113, CVE-2014-0114, CVE-2014-0116 6/27/2016
17:23
200004662 Python code injection - sys.executable (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200012034 Redis CONFIG SET out of bounds write (Header) Denial of Service 2 Redis https://www.talosintelligence.com/reports/TALOS-2016-0206/, CVE-2016-8339 3/8/2018
15:07
200001054 onblur (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001650 jQuery command $().load() (Parameter) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200001974 onbeforeinstallprompt (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003387 "traceroute" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200100011 whisker HEAD/./ Vulnerability Scan 3 All systems www.wiretrip.net/rfp/pages/whitepapers/whiskerids.html 2/10/2020
17:00
200009118 (GHDB) General error Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200009156 PHP source code leakage (9) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200010018 "/wwwroot" access Predictable Resource Location 2 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
200012024 XStream void tag DoS Denial of Service 2 Apache Struts https://struts.apache.org/docs/s2-051.html,
http://x-stream.github.io/CVE-2017-7957.html, CVE-2017-7957, CVE-2017-9793
9/14/2017
19:36
200001440 CSSHttpRequest (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001957 onafterprint (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004620 Python code injection - os.putenv (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004831 Java code injection - impl.EqualsBean (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200020020 Suspicious URL (localtest.me domain service) (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200023005 UTF-8 CRLF Injection HTTP Response Splitting 2 Node.js https://github.com/vah13/SAP_vulnerabilities/blob/master/CVE-2016-10311/PoC.py, CVE-2016-10311 9/14/2017
19:53
200002174 SQL-INJ "; shutdown" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003023 "chsh" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003559 "klist" execution attempt (Header) Command Execution 3 Microsoft Windows 3/3/2019
21:08
200003717 "chpasswd" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200001151 "style :expression (" (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001224 onDeactivate() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001919 onSVGResize (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101582 = alert; (Parameter) Cross Site Scripting (XSS) 3 JavaScript 6/20/2019
11:56
200004600 Python code injection - os.chdir (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200009169 SOAP Exception error Information Leakage 2 XML http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200010151 "/es/fcgi-bin/" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200100110 "%PROCESSOR_ARCHITECTURE%" access (parameter) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200002604 SQL-INJ expressions like " and 1=1 (6) (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/29/2018
16:02
200004879 Java code injection - context.ContextUtil$ReadOnlyBinding (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200019004 Malicious program ( anggands. ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200019045 Malicious program ( dsoul/tool ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004301 Java code injection - org.apache.commons.collections(4).functors.InstantiateTransformer (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2016-1291, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200009087 ASP source code leakage (29) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200001590 onmousewheel (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101407 onpointerover (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200002228 SQL-INJ "SELECT IF()" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002567 SQL-INJ v$database (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200015057 Web Server Probe ( ati2qs ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200001983 onblocked (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101199 onmozbrowsertitlechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101242 onreceived (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004836 Java code injection - dir.LazySearchEnumerationImpl (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004329 Python YAML Serialized Object Injection Attempt (Parameter) Server Side Code Injection 3 Python https://www.kevinlondon.com/2015/08/15/dangerous-python-functions-pt2.html 2/2/2020
18:42
200001217 onCopy() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001643 jQuery command $.getScript() (URI) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200002349 SQL-INJ dba_users (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003264 "host" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004308 Java code injection - org.springframework.beans.factory.ObjectFactory (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095 2/2/2020
18:42
200009027 SQL Information Leakage (18) Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200009043 ASP source code leakage (7) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200010084 "/proc/1/cgroup" access (URI) Predictable Resource Location 2 Unix/Linux http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/15/2017
16:17
200002261 SQL-INJ DBMS_RANDOM SQL-Injection 2 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003486 "bitsadmin" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004020 PHP injection attempt ( proc_open ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004493 Java code injection - org.apache.axis2.transport.jms.JMSOutTransportInfo (Parameter) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200000188 Directory Listing Directory Indexing 2 All systems http://www.webappsec.org/projects/threat/classes/directory_indexing.shtml 1/30/2020
17:43
200002538 SQL-INJ into outfile (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/3/2015
20:52
200004058 ASP injection attempt ( Wscript.Network ) Server Side Code Injection 2 ASP.NET 1/25/2018
18:15
200006033 XPath Injection or 1=1 XPath Injection 3 All systems 2/28/2019
10:59
200015087 Web Server Probe ( Springenwerk ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200001152 "style :expression (" (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001918 onSVGLoad (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004294 Java code injection - org/jboss/invocation/MarshalledValue Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372 2/2/2020
18:42
200009006 Statistics Software Information Leakage (3) Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200004678 Python code injection - sys.gettrace (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200009161 PHP source code leakage (14) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200009181 "Frontbase SQL invalidation" Error Message Information Leakage 1 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 7/21/2011
6:33
200021061 Malicious Web Site crawler "fantomCrew Browser" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003052 "curl" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003098 "at" execution attempt Command Execution 3 Microsoft Windows http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003713 "cfdisk" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004427 Java code injection - org.apache.tomcat.dbcp.dbcp2.BasicDataSource Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200003558 "klist" execution attempt (Parameter) Command Execution 3 Microsoft Windows 8/25/2019
11:24
200001239 onHelp() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001731 onCssRuleViewCSSLinkClicked (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101363 AngularJS Sandbox Escape - constructor.prototype.charAt (Parameter) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200002587 SQL-INJ sqlite_version (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200002730 SQL-INJ UTL_HTTP.REQUEST (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200019035 Malicious program ( pagename=AppFileExplorer ) Trojan/Backdoor/Spyware 3 IIS 8/7/2017
15:48
200021054 Malicious Web Site crawler "POE-Component-Client" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001824 onMozAfterPaint (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002423 SQL-INJ expressions like "' || 1 --" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200018031 WordPress REST API content injection (GET) Other Application Attacks 3 PHP https://blog.sucuri.net/2017/02/content-injection-vulnerability-wordpress-rest-api.html 2/6/2017
16:00
200020001 ColdFusion Markup Language Upload (cfexecute) Malicious File Upload 3 Macromedia ColdFusion 2/2/2020
18:42
200003407 "zcat" execution attempt (Header) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003821 "docker" execution attempt (Windows) (URI) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200003878 "reg save" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004857 Java code injection - typeddata.ValueHolder (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003078 "jobs" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003610 "pkgmgr" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003806 "unexpand" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
250000032 (PSM) unescape() Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200001403 MsgBox() (Headers) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001408 button tag (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101220 onoverflow (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200000035 Shell command processor (csh/tcsh) access Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 6/6/2018
14:02
200010038 (GHDB) /ojspdemos/ access Predictable Resource Location 1 Oracle Application Server http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking, CVE-2002-2347
2/10/2020
17:00
200011035 Generic Format String attack attempt 2 (parameters) Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 3/9/2014
6:42
200002262 SQL-INJ UTL_SMTP (Headers) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002303 SQL-INJ "IS (NOT) NULL" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004775 Java code injection - oracle.jdbc.rowset.OracleJDBCRowSet (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200009081 ASP source code leakage (23) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200002326 SQL-INJ "bulk insert" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/1/2015
16:30
200002578 SQL-INJ inet_server_addr (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200004947 Java code injection - invocation.MarshalledValue (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002562 SQL-INJ sys.user$ (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200002605 SQL-INJ expressions like " and 1=1 (6) (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/29/2018
16:02
200004986 Java code injection - core.db.JNDIConnectionSource (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200009051 ASP source code leakage (15) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200100015 .htaccess access Information Leakage 3 Apache/NCSA HTTP Server 3/9/2014
6:42
200001315 <BASE HREF (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001471 src vbscript (Headers) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001950 onTabUnpinned (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101413 onauxclick (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200003186 "chfn" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200004394 Java code injection - org.springframework.aop.target.HotSwappableTargetSource (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200004412 Java code injection - com.sun.jndi.toolkit.dir.LazySearchEnumerationImpl (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
250000056 (PSM) SQL-INJ CHR() SQL-Injection 3 PSM 6/27/2013
7:12
200009231 PostgreSQL Driver String Information Leakage 3 PostgreSQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/21/2011
6:12
200101246 onsearch (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003870 "reg query" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004005 PHP injection attempt ( fscanf ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004341 ASP.NET code injection - System.Windows.ResourceDictionary (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200001298 onTrackChange() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200101039 onconnected (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003873 "reg delete" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200012046 PHP exif_read_data() MakerNote DoS Denial of Service 2 PHP https://bugs.php.net/bug.php?id=76130, CVE-2018-10549 8/5/2018
11:08
200001726 onAlertClose (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004862 Java code injection - target.HotSwappableTargetSource (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000019 IIS hidden dir access (/_derived/) Predictable Resource Location 1 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200002847 SQL-INJ expressions like "sleep()" (4) SQL-Injection 2 General Database 2/25/2019
18:54
200003150 "pico" execution attempt Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200004461 Unix special variable $@ (Parameter) Server Side Code Injection 1 Unix/Linux 9/16/2019
15:48
200200001 OWA x-www-UTF8-encoded positive validation Other Application Attacks 3 Outlook Web Access 3/9/2014
6:42
250000012 (PSM) document.cookie Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200001549 onplay (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101373 javascript: link target (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/24/2017
9:52
200002631 SQL-INJ DATABASE_NAME (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/26/2017
15:15
200003128 "user" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 1/5/2020
15:24
200101480 HTML5 Entity (NewLine) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002377 SQL-INJ sql_variant (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003193 "chown" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003765 "mkfifo" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200001810 onDOMSubtreeModified (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101126 onicccardlockerror (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101294 ontext (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101312 ontouchmove (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004483 formatMessage 11 Placeholders Memory Corruption Server Side Code Injection 2 PHP https://bugs.php.net/bug.php?id=74484 1/22/2019
22:41
200020096 SSRF attempt (Alibaba Metadata Server) - Dot-less hexadecimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200000024 IIS hidden dir access (/_scripts/) Predictable Resource Location 1 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200015082 Web Server Probe ( Cisco-torch ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200018026 Padding Oracle attack (Padbuster) Other Application Attacks 3 All systems http://blog.gdssecurity.com/labs/2010/9/14/automated-padding-oracle-attacks-with-padbuster.html 9/28/2014
6:17
200018056 Python local file include attempt - local_file:// (Parameter) Other Application Attacks 3 Python CVE-2019-9948 2/10/2020
17:00
200004371 Java code injection - com.caucho.naming.QName (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200004738 Python code injection - socket.getpeername (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200004749 Python code injection - base64.b32encode (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004867 Java code injection - autoproxy.AspectJAwareAdvisorAutoProxyCreator$PartiallyComparableAdvisorHolder (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003665 "taskkill" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200003874 "reg delete" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004670 Python code injection - sys.stdin (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004861 Java code injection - target.HotSwappableTargetSource (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001402 MsgBox() (Parameter) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001579 formaction (Parameter) Cross Site Scripting (XSS) 3 All systems http://html5sec.org/ 1/15/2020
14:12
200101036 oncompositionupdate (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003305 "netstat" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200004941 Java code injection - functors.ChainedTransformer (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200010016 "httpd.conf" access Predictable Resource Location 2 Apache/NCSA HTTP Server http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
250000053 (PSM) SQL-INJ "UNION SELECT" SQL-Injection 3 PSM 6/27/2013
7:12
200004426 Java code injection - org.apache.tomcat.dbcp.dbcp2.BasicDataSource (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200001264 onReadyStateChange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200001931 onTabClose (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101458 HTML5 Entity (lpar) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200003549 "hostname" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200100104 "%HOMESHARE%" access (parameter) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200002843 SQL-INJ expressions like "sleep()" (3) (URI) SQL-Injection 2 General Database 2/19/2019
15:31
200003242 "finger" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003471 Java code injection com.opensymphony (Header) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html,
https://struts.apache.org/docs/s2-046.html, CVE-2016-0785, CVE-2017-5638
7/24/2017
12:16
200000023 IIS hidden dir access (/_private/) Predictable Resource Location 1 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200004201 PHP injection attempt (system) (URI) Server Side Code Injection 3 PHP 12/25/2017
14:34
200007020 Directory Traversal attempt (../Users) (Header) Path Traversal 2 Microsoft Windows http://projects.webappsec.org/w/page/13246952/Path%20Traversal 8/25/2019
11:24
200001913 onSVGError (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101495 HTML5 Entity (lbrace) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002288 SQL-INJ "UPDATE SET" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002842 SQL-INJ expressions like "sleep()" (3) (Header) SQL-Injection 2 General Database 2/19/2019
15:31
200019078 Malicious program ( Remote Explorer ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001460 url vbscript (URI) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001761 onDOMFocusIn (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002742 SQLINJ - NoSQL [$eq] SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200019018 Malicious program ( /phpbackdoor .php ) Trojan/Backdoor/Spyware 3 PHP 8/7/2017
15:48
200002849 updatexml DoS (Header) SQL-Injection 3 MySQL https://bugs.mysql.com/bug.php?id=42495, CVE-2009-0819 3/12/2019
14:21
200004345 ASP.NET code injection - System.Windows.Forms.BindingSource (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200009089 ASP source code leakage (31) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200020074 SSRF attempt (Oracle Metadata Server) - Dot-less hexadecimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200019033 Malicious program ( /zehir.asp ) Trojan/Backdoor/Spyware 3 IIS 8/7/2017
15:48
200101064 ondevicemotion (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003100 "batch" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003121 "sed" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200010123 Oracle application server richtextportlet/info Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200100318 "netcat" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004367 Java code injection - getWriter (Header) Server Side Code Injection 3 JavaServer Faces (JSF) 2/1/2018
14:02
200010008 "/config/" access Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 4/30/2018
18:19
200001313 data: base64 (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101093 ondraggesture (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002624 SQL-INJ GLOBAL_NAME (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003864 "net use" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003790 "sdiff" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200020109 Localhost SSRFmap tool evasion (127.127.127.127) (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200001308 STYLE : behavior (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001701 Angular.js attribute ng-app (Header) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200101319 ontransitionend (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101574 ReactJS code injection - memo (Header) Cross Site Scripting (XSS) 2 ReactJS 4/16/2019
13:29
200022021 PHP remote file include attempt - file:// (Header) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200001051 onunfocus (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001849 onMozMagnifyGestureStart (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002613 SQL-INJ UNION SELECT 1,1 (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/26/2017
15:15
200003156 "touch" execution attempt Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200004611 Python code injection - os.getgid (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004819 Java code injection - jndi.JndiDataSourceFactory (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009187 "ODBC invalidation" Error Message Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200018052 SSRF attempt (Packetcloud Metadata Server) (URI) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200002203 SQL-INJ Xmlclobfromfile SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002649 SQL-INJ IS_SRVROLEMEMBER (URI) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003594 "net1" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003680 "tskill" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004871 Java code injection - aspectj.AspectJPointcutAdvisor (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009061 JSP source code leakage (18) Information Leakage 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200019093 Malicious program ( jsp File browser ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200002764 SQLINJ - NoSQL [$eq] (JSON) (URI) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200004202 JavaScript Code Injection - new Date(); (Parameter) Server Side Code Injection 3 All systems http://www.w3schools.com/js/js_dates.asp 1/18/2017
15:31
200004485 Java code injection - org.jboss.util.propertyeditor.DocumentEditor (Header) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200004726 Python code injection - socket.getnameinfo (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200003656 "start" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200009257 MySQL Syntax Error Message (2) Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/13/2016
11:37
250000018 (PSM) execute() Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200001734 onCssRuleViewChanged (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101264 onstatuschange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002344 SQL-INJ create database (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002741 SQL-INJ sp_password (URI) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200004638 Python code injection - os.fchown (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200006029 XPath Injection "following" XPath Injection 3 All systems 8/25/2019
11:24
200001399 style list-style-image:url (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001596 onseeked (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101592 location.href (URI) Cross Site Scripting (XSS) 3 All systems 11/4/2019
22:53
200002062 SQL-INJ sysprocesses SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004643 Python code injection - os.fsync (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
250000017 (PSM) eval; Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200101119 ongamepaddisconnected (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002692 SQL-INJ APEX_PUBLIC_USER (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003275 "killall" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003496 "certutil" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200020108 Localhost SSRFmap tool evasion (127.0.1.3) (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200101142 onloadend (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101168 onmozbrowserclose (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002793 NoSQL Injection /_log (Header) SQL-Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 2/2/2020
18:42
200100090 "%SYSTEMDRIVE%" access (parameter) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200004053 ASP injection attempt ( Server.Execute ) Server Side Code Injection 2 ASP.NET 1/25/2018
18:15
200004266 PHP injection attempt ( passthru ) (Header) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200019089 Malicious program ( Gamma Web Shell ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004127 PHP injection attempt ( $_REQUEST ) Server Side Code Injection 3 PHP 8/7/2017
15:48
200001658 document (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200001993 oncached (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101078 ondischargingtimechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003749 "gawk" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200002660 SQL-INJ current_database() (Header) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200004547 PHP injection attempt - variable assignment (exec) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200100042 PHP remote include path Remote File Include 2 PHP 3/9/2014
6:42
200003124 "su" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004719 Python code injection - socket.gethostbyname (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200009158 PHP source code leakage (11) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200009253 Remote Server Error Information Leakage Information Leakage 3 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003708 "bzip2" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200003712 "cfdisk" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004177 Wordpress code uploading via Timthumb.php Server Side Code Injection 3 WordPress https://blog.sucuri.net/2011/08/attacks-against-timthumb-php-in-the-wild-list-of-themes-and-plugins-being-scanned.html, CVE-2014-4663 9/13/2016
19:09
200004952 Java code injection - reflect.InvocationHandler (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000094 XSS script target (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
8/25/2019
11:24
200001021 onkeydown (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001678 = document; (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001873 onMozScrolledAreaChanged (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001420 link rel stylesheet href (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101020 oncommand (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002607 SQL-INJ owa_util (URI) SQL-Injection 2 Oracle http://www.webappsec.org/projects/threat/classes/sql_injection.shtml 9/13/2016
19:03
200004534 PHP injection attempt - hex (exec) (Header) Server Side Code Injection 3 PHP 1/22/2019
22:41
200004109 Server-Side Include Injection Attempt - 2 (Parameter) Server Side Code Injection 3 SSI (Server Side Includes) 9/16/2013
0:21
200003166 Bash Shellshock execution attempt (Header) Command Execution 3 Unix/Linux http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6271,
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-7169,
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6277,
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-6278, CVE-2014-6271, CVE-2014-7169, CVE-2014-6277, CVE-2014-6278
11/7/2018
10:57
200100049 /*.shtml access Information Leakage 2 BEA Systems WebLogic Server CVE-2000-0683 1/30/2020
17:43
250000029 (PSM) src http: Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200010149 "/bb_usage_stats/include/bb_usage_stats.php" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200015092 Web Server Probe ( Arachni Scanner ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200000161 document.form (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001927 onSVGUnload (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002662 SQL-INJ pg_database (Parameter) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200004270 PHP array serialization injection attempt (URI) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection, CVE-2017-12932 2/2/2020
18:42
200004645 Python code injection - os.open (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004944 Java code injection - beanutils.BeanComparator (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200019067 Malicious program ( CEHENNEMDEN ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200020028 Atlassian Jira Server Side Template Injection - Importers plugin Server Side Code Injection 3 Java Servlets/JSP CVE-2019-15001 2/2/2020
18:42
200001456 href shell (URI) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001833 onMozEdgeUIGesture (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101149 onmousedown (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002750 SQLINJ - NoSQL db.find() (Parameter) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/method/db.collection.find/ 2/2/2020
18:42
200101359 AngularJS Sandbox Escape - constructor.prototype.call (URI) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200003050 "killall" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003183 "chdir" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200004334 DotNetNuke - ObjectStateFormatter (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9822 2/2/2020
18:42
200003307 "nice" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200000130 input tag: dynsrc (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001331 setRequestHeader() (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001780 onDOMMenuItemInactive (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001826 onMozAudioAvailable (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200015084 Web Server Probe ( Minimysqlat0r ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200003334 "pwd" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003618 "queryq" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004685 Python code injection - socket.bind (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200015050 Web Server Probe ( Toata ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200004849 Java code injection - configuration.JNDIConfiguration (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
250000040 (PSM) SQL-INJ "*_user()" sql functions SQL-Injection 3 PSM 6/27/2013
7:12
200101085 ondisconnecting (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002343 SQL-INJ constraint_type (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200009196 OdbcException Error Message Information Leakage 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200101586 = confirm; (Header) Cross Site Scripting (XSS) 3 All systems 6/20/2019
11:56
200003261 "history" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004776 Java code injection - oracle.jdbc.rowset.OracleJDBCRowSet Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200004683 Python code injection - socket.accept (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200004959 Java code injection - connector.OracleManagedConnectionFactory (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003646 "setspn" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004048 ASP/JSP injection attempt ( <% ) Server Side Code Injection 3 Java Servlets/JSP 2/2/2020
18:42
200004655 Python code injection - os.sendfile (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200000011 Application dir access (/manage/) Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/6/2018
13:37
200001693 onshow (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001932 onTabClose (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002536 SQL-INJ instr() (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003082 "history" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200011070 Phar Short Signature Buffer Overflow Buffer Overflow 2 PHP CVE-2016-7414 5/30/2019
14:57
200021099 Automated client access (PHPCrawl) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200002850 extractvalue DoS (Parameter) SQL-Injection 3 MySQL https://bugs.mysql.com/bug.php?id=42495, CVE-2009-0819 3/12/2019
14:21
200004937 Java code injection - map.LazyMap (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004954 Java code injection - db.DriverManagerConnectionSource (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009030 IIS Information Leakage (2) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200001860 onMozPressTapGesture (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101003 oncfstatechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002299 SQL-INJ REVOKE FROM SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002638 SQL-INJ SYSTEM_USER (Parameter) SQL-Injection 3 MySQL http://www.owasp.org/index.php/SQL_Injection 1/26/2017
11:44
200020118 Localhost SSRFmap tool evasion (127.0.0.0) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200010118 Oracle application server webapp/admin/showpooldetails.jsp Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200019005 Malicious program ( btn_lists. ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200020163 Java code injection - P6DataSource (2) (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16942, CVE-2019-16943 2/2/2020
18:42
200020198 SSRF attempt - Local network IP range 10.x.x.x (Parameter) Other Application Attacks 2 All systems 1/5/2020
15:24
200001616 onbeforeupdate (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 9/16/2013
0:21
200002830 PostgreSQL Information Disclosure (pg_user_mappings) (Header) SQL-Injection 3 PostgreSQL CVE-2017-7486 1/29/2018
14:44
200009113 (GHDB) IIS error (2) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200004875 Java code injection - aspectj.AspectJAroundAdvice (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004972 Java code injection - org.jdom.transform.XSLTransformer Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200010068 Predictable PHP Resource: install.php Predictable Resource Location 3 PHP https://codex.wordpress.org/Installing_WordPress,
http://forum.joomla.org/viewtopic.php?f=267&t=11319,
https://www.drupal.org/documentation/install/run-script,
http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml
10/29/2018
16:02
200019109 Malicious program ( /c99.php ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200000164 .location (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001673 {:window} (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
9/17/2015
15:27
200004006 PHP injection attempt ( fwrite ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004847 Java code injection - script.ScriptEngineManager (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200014005 Atlassian Jira consumerUri SSRF Abuse of Functionality 2 Java Servlets/JSP http://dontpanic.42.nl/2017/12/there-is-proxy-in-your-atlassian.html, CVE-2017-9506 2/2/2020
18:42
200020027 Potential SSRF attempt - URL with unusual port Other Application Attacks 2 All systems 2/2/2020
18:42
200003126 "top" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200009115 (GHDB) IIS error (4) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200010090 /autoconfig access Predictable Resource Location 2 Spring Boot http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/24/2017
15:40
250000027 (PSM) onkeypress Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200002720 SQL-INJ ORACLE_OCM (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200009206 Oracle Invalid Character Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001050 onfocus (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001056 onblur (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001968 onanimationstart (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002665 SQL-INJ inet_server_port() (Parameter) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200009260 MySQLDumper Multiple Script Direct Request Information Disclosure (dump.php) Information Leakage 3 PHP https://packetstormsecurity.com/files/112304/MySQLDumper-1.24.4-LFI-XSS-CSRF-Code-Execution-Traversal.html, CVE-2012-4255 11/12/2017
11:00
200010100 /jolokia access Predictable Resource Location 2 Spring Boot http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/24/2017
15:40
200020099 SSRF attempt (Google Metadata Server) - Enclosed alphanumeric upper-case representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001461 url vbscript (Headers) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101558 " src http: (Parameter) Cross Site Scripting (XSS) 2 All systems 2/19/2019
11:23
200004312 Java code injection - org.apache.xalan.xsltc.trax.TemplatesImpl (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095 2/2/2020
18:42
200004973 Java code injection - net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200003908 Ghostscript Sandbox Escape Arbitrary Command Execution Command Execution 2 All systems https://seclists.org/oss-sec/2018/q4/28,
https://www.kb.cert.org/vuls/id/332928/
1/22/2019
22:41
200004734 Python code injection - socket.inet_aton (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200006008 XPath Injection "fn:id" XPath Injection 3 All systems 8/25/2019
11:24
200101396 onpointerleave (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002171 SQL-INJ expressions like "or 1=1" (3) (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002403 SQL-INJ user_tables (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200003488 "bitsadmin" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003669 "timeout" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003755 "htop" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200000017 Generic test dir access (/test/) Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 4/30/2018
18:19
200006031 XPath Injection "namespace" XPath Injection 3 All systems 8/25/2019
11:24
200100063 web agent redirect overflow attempt Buffer Overflow 3 IIS CVE-2005-1471, 13524-bugtraq 11/12/2017
11:00
200001246 onLoseCapture (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200101188 onmozbrowserlocationchange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002622 SQL-INJ SELECT FROM DUAL (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003225 "echo" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200021026 Malicious Web Site crawler "pcbrowser" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200001698 onafterscriptexecute (Header) Cross Site Scripting (XSS) 3 All systems 6/5/2019
9:30
200101136 onlanguagechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004386 Java code injection - org.springframework.aop.aspectj.AspectJAroundAdvice (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200010111 Oracle application server xsql/java/xsql/demo/adhocsql/query.xsql Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200002356 SQL-INJ drop trigger (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002653 SQL-INJ pg_user (Parameter) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200001520 onforminput (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101580 SVG img tag: xlink/href (Header) Cross Site Scripting (XSS) 2 All systems 6/18/2019
11:55
200002035 SQL-INJ "isnull" SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002038 SQL-INJ "sys.user.triggers" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200004286 Java code injection - Content-Type class org.jboss.console.remote.RemoteMBeanInvocation Server Side Code Injection 3 Apache Struts CVE-2015-5317, CVE-2016-3427, CVE-2016-8735, CVE-2017-5638 9/14/2017
19:36
200004541 PHP injection attempt - variable assignment (popen) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200019015 Malicious program ( /dblib.php ) Trojan/Backdoor/Spyware 3 PHP 8/7/2017
15:48
200019117 Backdoor password in the Piranha package Trojan/Backdoor/Spyware 3 PHP CVE-2000-0248 8/7/2017
15:48
200101240 onreceived (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101382 action vbscript (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200002537 SQL-INJ into dumpfile (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/3/2015
20:52
200003252 "gcc" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200011054 GHOST attempt (ftp://) Buffer Overflow 3 Unix/Linux https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-0235, CVE-2015-0235 6/27/2016
17:23
200001342 FRAMESET tag (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001358 document.write (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001363 .send (Headers) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200002667 SQL-INJ inet_server_port() (URI) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200001524 onhaschange (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002832 SQLINJ - NoSQL [$regex] (JSON) (Parameter) SQL-Injection 3 MongoDB https://blog.websecurify.com/2014/08/attacks-nodejs-and-mongodb-part-to.html 2/2/2020
18:42
200003032 "nasm" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200002509 SQL-INJ create procedure (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004015 PHP injection attempt ( scandir ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004321 Java code injection - org.springframework.beans.factory.config.PropertyPathFactoryBean (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2016-9606, CVE-2017-3159, CVE-2016-8744, CVE-2016-8749, CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
200004569 Python code injection - import sqlalchemy (Header) Server Side Code Injection 2 Python 4/16/2019
13:29
200001897 onSSTabRestored (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101134 onincoming (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002360 SQL-INJ information_tables (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002458 SQL-INJ "Expression::Type=Expression" (Parameters) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200004905 Java code injection - config.PropertyPathFactoryBean (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200006018 XPath Injection "attribute()" XPath Injection 3 All systems 8/25/2019
11:24
200002092 SQL-INJ xtype char SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/26/2018
14:01
200003154 "ssh" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200003310 "nmap" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200004328 DotNetNuke - FileSystemsUtils Server Side Code Injection 3 ASP.NET CVE-2017-9822 2/2/2020
18:42
200003110 "halt" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004269 PHP array serialization injection attempt (Header) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection, CVE-2017-12932 2/2/2020
18:42
200015004 Web Server Probe (Nessus User-Agent) Vulnerability Scan 2 All systems 2/27/2012
6:30
200020193 Java code injection - org.htmlparser.lexer.Page (Parameter) Server Side Code Injection 3 Java Servlets/JSP 2/2/2020
18:42
200000163 .location (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001026 onkeyup (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200002054 SQL-INJ constraint_type SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002179 SQL-INJ drop database SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200021091 Automated client access "lwp" (2) Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/24/2012
3:44
200101196 onmozbrowsershowmodalprompt (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003238 "fc" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003739 "fdisk" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200006013 XPath Injection "node()" XPath Injection 3 All systems 3/9/2014
6:42
200001076 createtextrange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001339 style: background-image (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200101117 ongamepaddisconnected (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200000190 Directory Traversal attempt "../../" (Parameter) Path Traversal 1 All systems http://www.webappsec.org/projects/threat/classes/path_traversal.shtml 9/16/2019
17:02
200007000 Directory Traversal attempt ".|./" Path Traversal 2 All systems http://www.webappsec.org/projects/threat/classes/path_traversal.shtml 3/9/2014
6:42
200001753 onDOMCharacterDataModified (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002101 SQL-INJ select data-type SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003535 "ftp" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200006032 XPath Injection role='admin' XPath Injection 3 All systems 2/26/2019
19:42
200003822 "docker" execution attempt (Unix/Linux) (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004608 Python code injection - os.geteuid (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200019075 Malicious program ( PHP-Terminal ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001580 formaction (Header) Cross Site Scripting (XSS) 3 All systems http://html5sec.org/ 1/15/2020
14:12
200101062 ondevicelight (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002857 sqlmap percent signs evasion - select (URI) SQL-Injection 3 ASP 2/4/2020
17:50
200003570 "logman" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200002449 SQL-INJ expressions like "and FALSE"</ SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002475 SQL-INJ REPLACE VALUES (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200009021 SQL Information Leakage (12) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200009064 JSP source code leakage (21) Information Leakage 3 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200004544 PHP injection attempt - variable assignment (shell_exec) (Header) Server Side Code Injection 3 PHP 1/22/2019
22:41
200001572 onundo (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001647 jQuery command $.post() (Parameter) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200101081 ondisconnected (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002104 SQL-INJ select instr SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
4/16/2014
8:26
200010115 Oracle application server repdemo/runrepIAS.html Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200022001 Generic Remote File/Path Include Attempt 1 (path param, http/https) Remote File Include 3 All systems 3/9/2014
6:42
200022027 PHP remote file include attempt - glob:// (Header) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200003205 "cp" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004425 Java code injection - org.apache.tomcat.dbcp.dbcp2.BasicDataSource (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200009025 SQL Information Leakage (16) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200020098 SSRF attempt (Alibaba Metadata Server) - Enclosed alphanumeric representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200003410 "zip" execution attempt (URI) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200013015 Apache Karaf - Gogo unauthenticated webshell access Authentication/Authorization Attacks 2 Other Web Server CVE-2018-11787 1/22/2019
22:41
200020173 Java code injection - HikariDataSource (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16335 2/2/2020
18:42
200001397 execute() (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101299 ontimeout (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002485 SQL-INJ "CREATE USER SET PASSWORD" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/19/2014
14:17
200003346 "route" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004263 Code Injection Java (Accessing attributes) (#_traceEvaluations) Server Side Code Injection 3 Apache Struts http://www.exploit-db.com/exploits/18329/,
https://www.exploit-db.com/exploits/14360/, CVE-2012-0391, CVE-2012-0392, CVE-2016-3081, CVE-2012-0394, CVE-2016-4438, CVE-2017-5638
8/3/2017
11:44
200009105 PHP Information Leakage (5) Information Leakage 3 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200009232 MySQLProv Connection String Information Leakage 3 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/21/2011
6:12
200001120 href vbscript (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101171 onmozbrowsercontextmenu (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003419 HTTP.sys Remote Code Execution Vulnerability Suspicion (2) Command Execution 3 IIS https://technet.microsoft.com/library/security/MS15-034, CVE-2015-1635 9/14/2017
19:36
200003597 "netsh" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200100014 .wwwacl access Predictable Resource Location 3 Apache/NCSA HTTP Server 3/9/2014
6:42
200010004 "/email/sendmail.jsp" access Predictable Resource Location 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml, CVE-2007-3383 9/17/2018
17:18
200001884 onMozTouchMove (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001964 onanimationiteration (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101234 onpopupshowing (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003592 "msinfo32" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004135 PHP injection attempt ( $http_response_header ) Server Side Code Injection 3 PHP 8/7/2017
15:48
200004192 JBoss InvokerServlet MarshalledInvocation (Parameter) Server Side Code Injection 2 JBoss http://docs.jboss.org/jbossas/javadoc/3.2.7/server/org/jboss/invocation/MarshalledInvocation.html 9/15/2016
16:48
200004807 Java code injection - propertyeditor.DocumentEditor (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000098 XSS script tag (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200003058 Directory Traversal attempt (../bin/) (Header) Path Traversal 1 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 10/29/2018
16:02
200003357 "sftp" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003495 "certutil" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200007010 Directory Traversal attempt "/././"(parameter) Path Traversal 2 All systems http://www.webappsec.org/projects/threat/classes/path_traversal.shtml 3/12/2018
16:30
200001179 onActivate() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001984 onblocked (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003451 Java code injection java.lang.System (URI) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200003627 "regini" execution attempt (Parameter) Command Execution 3 Microsoft Windows 8/25/2019
11:24
200003898 "cat" execution attempt (2) (Header) Command Execution 3 Unix/Linux https://medium.com/secjuice/waf-evasion-techniques-718026d693d8 8/5/2018
11:08
200001383 escape() (Parameter) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001705 Angular.js attribute ng-controller (URI) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200002088 SQL-INJ pg_class SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003341 "rm" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003454 Java code injection java.lang.ClassLoader (URI) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200003861 "net time" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200009063 ASP/JSP source code leakage (20) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200015008 Web Server Probe ( bilbo ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200001378 XMLData. (Headers) SQL-Injection 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200001955 onafterprint (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002075 SQL-INJ user_tab_columns SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003296 "more" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200021047 Malicious Web Site crawler "Telesoft" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200002752 SQLINJ - NoSQL db.find() (URI) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/method/db.collection.find/ 2/2/2020
18:42
200003758 "lastlog" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200007002 Directory Traversal attempt "/..%255c" Path Traversal 2 All systems http://www.webappsec.org/projects/threat/classes/path_traversal.shtml 3/9/2014
6:42
200009175 c++ code leakage Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001661 window (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
9/17/2015
15:27
200101296 ontext (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002060 SQL-INJ benchmark() SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002309 SQL-INJ "MySQL comment" (Headers) SQL-Injection 1 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
10/29/2018
16:02
200019116 Shell access ( Bad command or filename ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200101058 ondelivered (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003420 TCPDF Library Arbitrary File Deletion Command Execution 3 PHP http://en.wikipedia.org/wiki/TCPDF 6/3/2015
20:52
200004549 PHP injection attempt - variable assignment (require) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200009071 SQL Information Leakage (25) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200001415 textarea tag (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003660 "systeminfo" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004468 Node.js "funcster" Deserialization Library Arbitrary Code Execution (Parameter) Server Side Code Injection 3 Node.js https://www.acunetix.com/blog/web-security-zone/deserialization-vulnerabilities-attacking-deserialization-in-js/ 2/2/2020
18:42
200004642 Python code injection - os.fsync (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200003884 "reg unload" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004152 Java Code Injection (java packages) (Params) Server Side Code Injection 3 Java Servlets/JSP https://www.owasp.org/index.php/Command_injection_in_Java,
http://www.exploit-db.com/exploits/18329/, CVE-2012-0393
8/5/2018
11:08
200004876 Java code injection - context.WritableContext (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009198 Microsoft JET Database Engine Error Message Information Leakage 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001700 Angular.js attribute ng-app (Parameter) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200002754 SQLINJ - NoSQL db.findOne() (Header) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/method/db.collection.find/ 2/2/2020
18:42
200003327 "poweroff" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200101076 ondisabled (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003507 "cscript" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200010109 Oracle application server xsql/adhocsql/sqltoxml.html Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200002386 SQL-INJ syslogin (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003581 "mklink" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003876 "reg copy" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200019031 Malicious program ( /sql.txt ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200020164 Java code injection - P6DataSource (2) (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16942, CVE-2019-16943 2/2/2020
18:42
200001030 onclick (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003719 "chpasswd" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004017 PHP injection attempt ( readgzfile ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004393 Java code injection - org.springframework.aop.target.HotSwappableTargetSource (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200019030 Malicious program ( /php.txt ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200019074 Malicious program ( PHP-Terminal ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200101386 XSS script tag with namespace (URI) Cross Site Scripting (XSS) 3 All systems http://en.wikipedia.org/wiki/Cross_site_scripting,
http://www.cgisecurity.com/articles/xss-faq.shtml
6/12/2017
18:54
200004520 PHP injection attempt (get_defined_functions) (Parameter) Server Side Code Injection 3 PHP https://www.secjuice.com/php-rce-bypass-filters-sanitization-waf/ 1/22/2019
22:41
200007027 Directory Traversal attempt (../Documents and Settings) (Parameter) Path Traversal 2 Microsoft Windows http://projects.webappsec.org/w/page/13246952/Path%20Traversal 8/25/2019
11:24
200015002 Web Server Probe ( n-stealth ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200001317 <EMBED SRC (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200002734 SQL-INJ OBJECT_TYPE (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200009097 ASP source code leakage (39) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200000031 Web Server Probe (/nonExistent) Vulnerability Scan 3 All systems 3/9/2014
6:42
200002188 SQL-INJ drop table SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002663 SQL-INJ pg_database (Header) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003063 "id" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200101509 HTML5 Entity (period) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200003437 Java code injection - java/lang/Runtime (Parameter) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852, CVE-2017-8046
3/20/2018
18:30
200009249 PHP Warning Information Leakage Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/11/2011
6:49
200001370 .ShellExecute (URI) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200001469 src javascript (Headers) (2) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001627 xmlns:ev (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200001821 onDOMWindowCreated (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003774 "pgrep" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004013 PHP injection attempt ( gzread ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004629 Python code injection - os.setuid (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200009200 Oracle Datatype Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200101147 onmousedown (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002760 SQLINJ - NoSQL [$gte] (JSON) (Parameter) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200003048 "wget" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003099 "awk" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200100020 jrun directory browse attempt Directory Indexing 2 Macromedia JRun CVE-2001-1510 1/30/2020
17:43
200000008 Concurrent Versions System dir access (/CVS/) Predictable Resource Location 1 CGI http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/6/2018
13:37
200001774 onDOMLinkRemoved (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003609 "pkgmgr" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004364 ASP.NET code injection - System.Security.Policy.EvidenceBase (Header) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200002214 SQL-INJ null,null,null SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002466 SQL-INJ insert into (2) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002715 SQL-INJ APEX_040200 (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003385 "touch" execution attempt (Header) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001138 src http: (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200101190 onmozbrowseropenwindow (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200000076 SQL-INJ "mysql" (Headers) SQL-Injection 2 MySQL http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002125 SQL-INJ xp_dirtree SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200011068 PHP wddx_deserialize Non Boolean Value Use After Free Buffer Overflow 2 PHP CVE-2016-3141 6/5/2019
9:30
200015075 Web Server Probe (masscan) Vulnerability Scan 1 All systems 3/17/2016
17:22
200003412 "uname" execution attempt (Headers) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200100010 del attempt Command Execution 3 IIS 3/1/2010
2:22
200004045 ASP injection attempt ( .CreateTextFile ) Server Side Code Injection 2 ASP.NET 1/25/2018
18:15
200004349 ASP.NET code injection - System.Data.DataViewManager (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200004759 Java code injection - com.bea.core.repackaged.springframework.context.support.FileSystemXmlApplicationContext (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-2725 2/2/2020
18:42
200012030 PERL Match Operator Buffer Overflow (Header) Denial of Service 2 CGI CVE-2017-12883 11/12/2017
11:00
200020177 Java code injection - HikariDataSource (2) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16335 2/2/2020
18:42
200001307 STYLE tag: binding (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200003742 "fgrep" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200001587 ondurationchange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003030 "ping" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003912 "nc" execution attempt (3) Command Execution 3 Unix/Linux 2/26/2019
22:46
200101209 onobsolete (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101325 onupdateready (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003854 "net share" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004494 Java code injection - org.apache.axis2.transport.jms.JMSOutTransportInfo (Header) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200019059 Malicious program ( r57shell ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200101387 onpointercancel (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003883 "reg unload" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200009057 Cold Fusion source code leakage Information Leakage 2 Macromedia ColdFusion http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 8/25/2019
15:28
200015088 Web Server Probe ( WebShag ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200002487 SQL-INJ "select --" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/19/2014
14:17
250000004 (PSM) .fromcharcode Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200021140 Automated client access (WordPress) Non-browser client 1 All systems http://blog.sucuri.net/2014/03/more-than-162000-wordpress-sites-used-for-distributed-denial-of-service-attack.html 4/22/2014
7:14
200002300 SQL-INJ "begin declare" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003484 "bcdedit" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200100319 "netcat" execution attempt (URI) Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 8/5/2018
11:08
200004314 Java code injection - com.sun.rowset.JdbcRowSetImpl (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2016-9606, CVE-2017-3159, CVE-2016-8744, CVE-2016-8749 2/2/2020
18:42
200004715 Python code injection - socket.getaddrinfo (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200013018 WordPress ThemeGrill Demo Importer - Authentication Bypass Authentication/Authorization Attacks 3 WordPress 2/19/2020
9:58
200001032 onclick (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001959 onalerting (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003705 "aptitude" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200003810 "unzip" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200010159 /conf/users/admin-users.xml access Predictable Resource Location 2 Apache Tomcat 2/10/2020
17:00
200001745 onDOMAttributeNameChanged (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003075 "netstat" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 1/5/2020
15:24
200003545 "gpresult" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200003688 "wevtutil" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200100078 Server configuration disclosure Predictable Resource Location 2 PHP CVE-2006-0125 9/13/2016
19:09
200019019 Malicious program ( /shell.ph ) Trojan/Backdoor/Spyware 3 PHP 8/7/2017
15:48
250000048 (PSM) SQL-INJ "select --" SQL-Injection 3 PSM 6/27/2013
7:12
200001529 oninvalid (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200004519 Phar Deserialization Attempt (URI) Server Side Code Injection 3 PHP CVE-2019-11831 2/2/2020
18:42
200004550 PHP injection attempt - variable assignment (require) (Header) Server Side Code Injection 3 PHP 1/22/2019
22:41
200004705 Python code injection - socket.makefile (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200003933 rConfig search.crud authenticated command injection Command Execution 3 PHP https://shells.systems/rconfig-v3-9-2-authenticated-and-unauthenticated-rce-cve-2019-16663-and-cve-2019-16662/, CVE-2019-16663 11/19/2019
14:31
200010077 MySQL Configuration file auto.cnf (Parameter) Predictable Resource Location 3 General Database http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200011069 Apache mod_authnz_ldap Accept-Language Buffer Overflow Buffer Overflow 2 Apache/NCSA HTTP Server CVE-2017-15710 5/30/2019
14:57
200001586 HTML comment (Header) Cross Site Scripting (XSS) 2 All systems http://html5sec.org/ 2/11/2013
0:13
200101358 AngularJS Sandbox Escape - constructor.prototype.call (Header) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200101460 HTML5 Entity (rpar) (Header) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002496 SQL-INJ "SELECT TRANSLATE()" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002208 SQL-INJ declare @ SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003053 "pwd" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004298 Java code injection - org/apache/commons/collections/map/LazyMap Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200004853 Java code injection - map.Flat3Map (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001690 JavaScript obfuscation (JSF) (URI) Cross Site Scripting (XSS) 3 All systems http://www.jsfuck.com/ 8/25/2015
13:43
200001801 onDOMNodeRemoved (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001879 onMozTapGesture (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002115 SQL-INJ xp_regread SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200009242 ASP Error Information Leakage Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 10/25/2011
8:45
200004754 Java code injection - oracle.toplink.internal.sessions.UnitOfWorkChangeSet (Parameter) Server Side Code Injection 3 BEA Systems WebLogic Server CVE-2019-2725 2/2/2020
18:42
200009245 ASP Error Information Leakage (4) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 10/25/2011
8:45
200012045 Node.js Buffer.alloc DoS (Header) Denial of Service 2 Node.js CVE-2018-7167 8/5/2018
11:08
200020180 Java code injection - EhcacheJtaTransactionManagerLookup Server Side Code Injection 3 Java Servlets/JSP CVE-2019-17267 2/2/2020
18:42
200001787 onDOMModalDialogClosed (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101227 onpointerlockerror (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003117 "pkill" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004400 Java code injection - org.apache.commons.collections.map.Flat3Map (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200004243 JavaScript Code Injection - process.cwd() (Parameter) Server Side Code Injection 3 All systems 5/4/2017
10:03
200004256 PHP injection attempt ( str_rot13 ) (Header) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200001189 onData...() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200001788 onDOMModalDialogClosed (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101005 oncfstatechange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101427 console.info (Header) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200101089 ondownloading (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002169 SQL-INJ join statement (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004262 Code Injection Java (Accessing attributes) (#_classResolver) Server Side Code Injection 3 Apache Struts http://www.exploit-db.com/exploits/18329/,
https://www.exploit-db.com/exploits/14360/, CVE-2012-0391, CVE-2012-0392, CVE-2016-3081, CVE-2012-0394, CVE-2016-4438, CVE-2017-5638
8/3/2017
11:44
200003910 "/etc/passwd" access (Header) Predictable Resource Location 3 Unix/Linux 2/26/2019
19:42
200004630 Python code injection - os.close (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200010096 /mappings access Predictable Resource Location 2 Spring Boot http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/24/2017
15:40
200009120 (GHDB) SQUID statistics program - calamaris Information Leakage 1 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200009220 Oracle Define Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200002390 SQL-INJ sysremotelogins (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002787 NoSQL Injection /_active_tasks (Header) SQL-Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 2/2/2020
18:42
200000171 Shell command execution using the JET SQL interface Command Execution 3 ASP.NET http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 1/25/2018
18:15
200003590 "msiexec" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200021046 Malicious Web Site crawler "WEBMOLE" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200009270 Apache Tomcat Remote Information Disclosure Information Leakage 3 Apache Tomcat CVE-2007-3382, CVE-2007-3385 11/12/2017
11:00
200010130 SSH id_rsa access (Parameter) Predictable Resource Location 3 All systems 1/29/2018
17:12
200001431 OpenAsTextStream() (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001949 onTabUnpinned (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101561 alert(1) (Header) Cross Site Scripting (XSS) 2 All systems 2/19/2019
11:23
200002457 SQL-INJ like " ' && 1=1 " (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004615 Python code injection - os.getlogin (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200021010 Malicious Web Site crawler "emailreaper" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200001141 src &# (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101066 ondeviceorientation (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002569 SQL-INJ UTL_INADDR (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003372 "tar" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001338 style: background-image (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
250000013 (PSM) document.form Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200002094 SQL-INJ table_name SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200002420 SQL-INJ expressions like "' and 1 --" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003730 "dmesg" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004043 PHP injection attempt ( ftp_nb_put ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004431 Java code injection - org.hibernate.jmx.StatisticsService (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200004509 Java code injection - javax.xml.transform.TransformerFactory (Header) Server Side Code Injection 2 Apache Tomcat CVE-2017-7465 2/2/2020
18:42
200022026 PHP remote file include attempt - glob:// (Parameter) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200001617 onhashchange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002178 SQL-INJ create database SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002617 SQL-INJ SELECT DATABASE() (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003582 "mountvol" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003267 "ifdown" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003438 Java code injection - java/lang/Runtime (Header) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852, CVE-2017-8046
3/20/2018
18:30
200100320 "netcat.exe" execution attempt Command Execution 3 Microsoft Windows http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/9/2014
6:42
200009138 (GHDB) HttpFileServer Page Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200001439 #NAME? Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
9/17/2018
17:54
200002068 SQL-INJ syscat SQL-Injection 3 IBM DB2 http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/7/2018
11:49
200020042 SSRF attempt (AWS Metadata Server) - Dotted decimal with overflow representation (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200020162 Java code injection - SharedPoolDataSource (2) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16942, CVE-2019-16943 2/2/2020
18:42
200002210 SQL-INJ @@ variables (Headers) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002463 SQL-INJ "SELECT extractvalue" (Header) SQL-Injection 3 MySQL CVE-2009-0819 1/25/2018
18:15
200018022 Attempt to access to local files Other Application Attacks 2 All systems 8/7/2017
15:48
200001125 href javascript (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001432 OpenAsTextStream() (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101497 HTML5 Entity (lbrace) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200009273 Apache Tomcat Malformed Query String Information Disclosure Information Leakage 2 Apache Tomcat CVE-2016-6816 1/29/2018
14:44
200001741 onDOMActivate (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101401 onpointermove (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200009153 PHP source code leakage (6) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200002276 SQL-INJ expressions like ' + ' (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002372 SQL-INJ "SA_EXEC_SCRIPT" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002689 SQL-INJ sqlite_master (Parameter) SQL-Injection 3 SQLite http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200004403 Java code injection - javax.script.ScriptEngineManager (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-9606, CVE-2017-3159, CVE-2016-8744 2/2/2020
18:42
200001504 onformchange (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200101080 ondischargingtimechange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101429 console.warn (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200002226 SQL-INJ OPENDATASOURCE (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004988 PHP injection attempt ( parse_str ) (Parameter) Server Side Code Injection 2 PHP 8/25/2019
11:24
200010112 Oracle application server bc4jadmin/bc4jadmin.htm Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200012002 DOS "Double-precision floating-point number dos attack" (Parameter) (2) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200001296 onTrackChange() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001527 oninput (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001688 JavaScript obfuscation (JSF) (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.jsfuck.com/ 8/25/2015
13:43
200002725 SQL-INJ GSMCATUSER (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003844 "net help" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003848 "net localgroup" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004257 PHP injection attempt ( str_rot13 ) (URI) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200004773 Java code injection - oracle.jdbc.connector.OracleManagedConnectionFactory Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200001413 textarea tag (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001609 <EMBED code (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 1/30/2020
17:43
200101540 .find() (URI) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200003585 "msg" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200001708 Angular.js attribute ng-view (URI) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200002544 SQL-INJ REVOKE FROM (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002875 SQL-INJ - MySQL Interpreted Comment (HAVING) (Header) SQL-Injection 2 MySQL 2/27/2020
18:00
200004278 Java code injection FreeMarker variable assign (Header) Server Side Code Injection 3 Apache Struts https://insinuator.net/2016/07/dilligent-bug/,
http://blog.portswigger.net/2015/08/server-side-template-injection.html, CVE-2016-4462
2/2/2020
18:42
200004233 JavaScript Code Injection - process.kill() (URI) Server Side Code Injection 3 All systems 5/4/2017
10:03
200004901 Java code injection - c3p0.JndiRefForwardingDataSource (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000104 ASP caspsamp dir access Predictable Resource Location 1 ASP http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200010095 /metrics access Predictable Resource Location 2 Spring Boot http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/24/2017
15:40
200001492 Generic XSS evasion - unicode characters Cross Site Scripting (XSS) 1 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
4/30/2018
18:19
200101044 onconnecting (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002113 SQL-INJ sql_variant SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003508 "cscript" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200100097 "%COMPUTERNAME%" access (URI) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200015014 Web Server Probe ( internet explorer ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200001744 onDOMAttrModified (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001971 onaudioprocess (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101047 onconnectionInfoUpdate (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003832 "net accounts" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200001286 onStart() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003531 "fsutil" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200002867 SQL-INJ - MySQL Interpreted Comment (WHERE) (Header) SQL-Injection 2 MySQL 2/19/2020
19:10
200006034 XPath Injection child::processing-instruction() XPath Injection 3 All systems 2/25/2019
18:54
200100045 globals.jsa access Predictable Resource Location 2 Oracle Application Server CVE-2002-0562 5/1/2018
18:05
200001282 onSeek() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001670 {:document} (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200002456 SQL-INJ like " ' && 1=1 " (Parameters) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002766 SQLINJ - NoSQL [$lt] (JSON) (Parameter) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200009040 ASP source code leakage (4) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200021120 Malicious Web Site crawler (ContactBot) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200001389 urn() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/6/2018
14:02
200000083 SQL-INJ Stored procedure "exec sp_/xp_/fn_/MS_" (Headers) SQL-Injection 3 Sybase/ASE http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/5/2018
11:08
200002311 SQL-INJ "select 0x" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200002414 SQL-INJ XMLVarcharFromFile (Headers) SQL-Injection 3 IBM DB2 http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003922 "who" execution attempt (2) Command Execution 3 Unix/Linux 3/4/2019
15:38
200004331 Generic Base64 Encoded Java Serialized Object Server Side Code Injection 3 Java Servlets/JSP CVE-2015-4852, CVE-2013-2165, CVE-2015-7450 2/2/2020
18:42
200000125 iframe tag (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001114 url shell (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2015
13:52
200001691 onshow (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002705 SQL-INJ dba_sys_privs (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200101027 oncomplete (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002042 SQL-INJ "sys.user_catalog" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003521 "eventcreate" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200010167 /api/v1/secret/kube-system/kubernetes-dashboard-certs access Predictable Resource Location 2 Other Web Server CVE-2018-18264 12/11/2019
17:48
200012003 DOS "Double-precision floating-point number dos attack" (Parameter) (3) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200001166 href ecmascript (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001543 onpagehide (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200001747 onDOMAttributeNameChanged (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002164 SQL-INJ select instr (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200100311 CFNEWINTERNALADMINSECURITY access (ColdFusion) Abuse of Functionality 3 Macromedia ColdFusion CVE-1999-0760 8/4/2016
15:33
200004429 Java code injection - com.sun.org.apache.bcel.internal.util.ClassLoader (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200004487 Java code injection - org.apache.openjpa.ee.RegistryManagedRuntime (Parameter) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200004556 PHP injection attempt ( @print ) (Header) Server Side Code Injection 2 PHP 2/19/2019
11:23
200014000 /warez/ access Abuse of Functionality 2 All systems http://www.webappsec.org/projects/threat/classes/abuse_of_functionality.shtml 3/9/2014
6:42
200101447 console.groupCollapsed (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200003285 "lsof" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003867 "net view" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004271 PHP short object serialization injection attempt (Parameter) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection, CVE-2017-12933, CVE-2017-12934 2/2/2020
18:42
200100314 "ls" execution attempt (URI) Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 9/17/2018
17:18
200004318 Java code injection - java.rmi.server.UnicastRemoteObject (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2016-8749 2/2/2020
18:42
200004840 Java code injection - imageio.ImageIO$ContainsFilter (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200019092 Malicious program ( IP HACK TEAM ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001074 copyparentfolder (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101127 onicccardlockerror (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101515 HTML5 Entity (excl) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002508 SQL-INJ create function (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200001360 .open (Headers) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200003367 "su" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009178 "Error processing SSI file" Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003684 "verify" execution attempt (Parameter) Command Execution 1 Microsoft Windows 2/17/2020
22:44
200011067 Perl Regex - Sensitive Information Disclosure Buffer Overflow 2 Other Web Server CVE-2018-18313 1/22/2019
22:41
200101276 onsuccess (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003320 "perl" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004791 Java code injection - ruleset.DRSHelper (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004951 Java code injection - reflect.InvocationHandler (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200020160 Java code injection - SharedPoolDataSource (2) (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16942, CVE-2019-16943 2/2/2020
18:42
200002058 SQL-INJ instr() SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003916 "cp" execution attempt (2) Command Execution 3 Unix/Linux 3/3/2019
21:59
200004255 PHP injection attempt ( str_rot13 ) (Parameter) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200004742 Python code injection - socket.getsockopt (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200020132 Localhost SSRFmap tool evasion (127.42.42.42) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001445 background: url() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001999 oncancel (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003453 Java code injection java.lang.ClassLoader (Header) Server Side Code Injection 3 Java Servlets/JSP 12/25/2017
11:20
200020064 SSRF attempt (Oracle Metadata Server) - Dotted decimal with overflow representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200101500 HTML5 Entity (rbrace) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200004671 Python code injection - sys.stdin (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200019046 Malicious program ( /scan1.0.scan/ ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200002512 SQL-INJ create trigger (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/3/2015
20:52
200002625 SQL-INJ GLOBAL_NAME (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003106 "dig" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200011044 Generic Format String attack attempt 5 Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 1/30/2020
17:43
200003499 "cipher" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200001493 Generic XSS evasion (Headers) - unicode characters Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/6/2018
14:02
200001584 video poster (Header) Cross Site Scripting (XSS) 2 All systems http://html5sec.org/ 2/11/2013
0:13
200001760 onDOMFocusIn (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101533 #NAME? Cross Site Scripting (XSS) 2 All systems http://mksben.l0.cm/2015/10/css-based-attack-abusing-unicode-range.html 3/12/2018
16:09
200007011 Directory Traversal attempt "../" (Header) Path Traversal 2 All systems http://www.webappsec.org/projects/threat/classes/path_traversal.shtml 9/15/2019
17:27
200009225 Oracle Missing Expression Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003172 "arp" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004469 Node.js "funcster" Deserialization Library Arbitrary Code Execution (Header) Server Side Code Injection 3 Node.js https://www.acunetix.com/blog/web-security-zone/deserialization-vulnerabilities-attacking-deserialization-in-js/ 2/2/2020
18:42
200004805 Java code injection - ee.RegistryManagedRuntime (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001168 url ecmascript (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101479 HTML5 Entity (rbrack) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002095 SQL-INJ textpos() SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002542 SQL-INJ load data infile (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200001180 onActivate() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200002110 SQL-INJ sp_executesql SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004362 ASP.NET code injection - System.Collections.Generic.ComparisonComparer (Header) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200021005 Malicious Web Site crawler "mailto:craftbot@yahoo.com" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200004617 Python code injection - os.getresuid (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200000182 Banner Rotating 01 exposed password file Information Leakage 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200000021 IIS hidden dir access (/_fpclass/) Predictable Resource Location 1 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200001516 onended (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002049 SQL-INJ msysaces SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002361 SQL-INJ instr() (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003813 "vdir" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200016007 Windows alternative data stream access (2) Detection Evasion 3 Microsoft Windows https://msdn.microsoft.com/en-us/library/windows/desktop/aa364404(v=vs.85).aspx 8/25/2015
13:43
200022022 PHP remote file include attempt - zlib:// (Parameter) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200022037 PHP remote file include attempt - expect:// (Header) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200001457 href shell (Headers) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003232 "env" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003516 "eraseg" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200003809 "unrar" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003308 "nice" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003402 "xargs" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200010005 "/info/info.jsp" access Predictable Resource Location 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200001867 onMozRotateGestureStart (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101303 ontouchend (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101339 onversionchange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003202 "comm" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004189 PHP object serialization injection attempt (Header) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 2/2/2020
18:42
200001041 onunload (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001091 input type=image (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101092 ondragexit (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002363 SQL-INJ msysaces (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003756 "lastlog" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200000093 XSS script tag end (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001518 onended (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003249 "g++" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003480 "attrib" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003753 "htop" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004774 Java code injection - oracle.jdbc.rowset.OracleJDBCRowSet (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200001653 document.createElement (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001773 onDOMLinkRemoved (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101542 top() (Header) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200002480 SQL-INJ expressions like "sleep()" (2) (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 6/6/2018
14:02
200002520 SQL-INJ encode() (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200019111 (GHDB) MyShell backdoor Page Trojan/Backdoor/Spyware 3 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200004110 Server-Side Include Injection Attempt - 3 (Headers) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200004153 Java Code Injection (java packages) (Header) Server Side Code Injection 3 Java Servlets/JSP https://www.owasp.org/index.php/Command_injection_in_Java 8/4/2016
15:33
200004252 PHP injection attempt ( gzinflate ) (Parameter) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200004449 IBM Data Server Driver connlicj.bin Unsafe Deserialization (Header) Server Side Code Injection 3 IBM DB2 CVE-2017-1677 2/2/2020
18:42
200020151 Java code injection - XSLTJaxbProvider (2) (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14540 2/2/2020
18:42
200001712 Javascript with statement (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200101213 onopen (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002103 SQL-INJ select to_char SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002533 SQL-INJ information_tables (URI) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/19/2014
14:17
200004633 Python code injection - os.dup (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200009039 ASP source code leakage (3) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200012035 libxml xmlSnprintfElementContent DoS (Parameter) Denial of Service 3 All systems http://www.openwall.com/lists/oss-security/2017/05/15/1, CVE-2017-9047 2/1/2018
14:02
200022023 PHP remote file include attempt - zlib:// (Header) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200020178 Java code injection - EhcacheJtaTransactionManagerLookup (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-17267 2/2/2020
18:42
200001825 onMozAfterPaint (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002323 SQL-INJ "declare begin" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002626 SQL-INJ v$instance (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200010113 Oracle application server ojspdemos/email/sendmail.jsp Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200002357 SQL-INJ exec() (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200019104 Malicious program ( /rst.php ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001433 asfunction: (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001998 oncancel (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101328 onupgradeneeded (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101576 ReactJS code injection - createFactory (Header) Cross Site Scripting (XSS) 2 ReactJS 4/16/2019
13:29
200003629 "regini" execution attempt (URI) Command Execution 3 Microsoft Windows 3/3/2019
21:08
200003687 "wevtutil" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200020003 Jetty FileBasedSessionStore Session Stealing Session Hijacking 2 Jetty CVE-2018-12538 8/5/2019
17:22
200004363 ASP.NET code injection - System.Security.Policy.EvidenceBase (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200009084 ASP source code leakage (26) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200101380 action javascript (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200101421 onEvent (Header) Cross Site Scripting (XSS) 1 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003135 "command" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200003514 "driverquery" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
250000043 (PSM) SQL-INJ "begin declare" SQL-Injection 3 PSM 6/27/2013
7:12
200002820 NoSQL Injection _temp_view (Header) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 1/30/2020
17:43
200003254 "grep" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003787 "rsync" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004498 Java code injection - org.slf4j.ext.EventData Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200001221 onDblClick() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001412 param tag (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001450 prompt (Headers) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001966 onanimationiteration (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004664 Python code injection - sys.modules (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004984 Java code injection - manager.DefaultTransactionManagerLookup Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200020134 Localhost SSRFmap tool evasion (0x7f.0x0.0x0.0x1) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200002703 SQL-INJ session_privs (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003206 "cp" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200006035 XPath Injection user[name/text() XPath Injection 3 All systems 2/26/2019
22:46
200001075 createtextrange (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200004437 Java code injection - org.springframework.context.support.FileSystemXmlApplicationContext (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200012063 ASP.NET w3wp - COM Components DOS - default-userscreen.aspx Denial of Service 2 ASP.NET CVE-2006-1364 10/9/2019
2:15
200010012 "system32" access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
200002609 SQL-INJ MySQL rewrite my.cnf (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection, CVE-2016-6662 11/10/2016
17:09
200002727 SQL-INJ GSMCATUSER (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003824 "docker" execution attempt (Unix/Linux) (URI) Command Execution 3 Unix/Linux 9/17/2018
17:18
200007016 Directory Traversal attempt "../" (Parameter) Path Traversal 3 All systems 11/4/2019
22:53
200101438 console.dir (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200002648 SQL-INJ IS_SRVROLEMEMBER (Header) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200004808 Java code injection - propertyeditor.DocumentEditor (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200015079 Web Server Probe httprint in URL Vulnerability Scan 3 All systems http://www.net-square.com/httprint.html 4/28/2016
9:35
200018064 Leading tab in header name Detection Evasion 2 All systems 12/5/2019
15:15
200021038 Malicious Web Site crawler "Black Hole" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200002650 SQL-INJ getpgusername (Parameter) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200004148 BBCode PHP Tag Injection Server Side Code Injection 2 PHP http://php-security.org/2010/05/19/mops-2010-035-e107-bbcode-remote-php-code-execution-vulnerability/index.html, CVE-2010-2099 6/27/2016
17:23
200004613 Python code injection - os.getgroups (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200018016 CDATA injection attempt 1 Other Application Attacks 2 All systems 9/15/2019
17:18
200001488 Generic "<style>" tag (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003460 Java code injection ognl.OgnlContext (URI) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785, CVE-2016-4438, CVE-2016-3081 7/24/2017
12:16
200003901 "nc" command execution attempt (URI) Command Execution 3 Unix/Linux 4/4/2019
14:31
200004209 JavaScript Code Injection - require(); (Header) Server Side Code Injection 3 All systems http://requirejs.org/ 5/6/2017
13:40
200101541 top() (Parameter) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200003525 "forfiles" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004140 ASP injection attempt ( response .Write ) ( Parameter 1 ) Server Side Code Injection 3 Microsoft Windows 2/10/2020
17:00
200005009 LDAP injection attempt (password enumeration) (Parameter) LDAP Injection 3 All systems http://blog.ptsecurity.com/2016/06/phdays-vi-waf-bypass-contest.html 1/22/2019
22:41
200010081 .php.inc file access Predictable Resource Location 3 PHP 3/26/2017
21:49
200001097 .fromcharcode (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200001122 href vbscript (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001574 onvolumechange (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003239 "find" execution attempt (Header) Command Execution 1 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004303 Java code injection - org.codehaus.groovy.runtime.ConvertedClosure (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095 2/2/2020
18:42
200004407 Java code injection - javax.imageio.ImageIO$ContainsFilter (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
250000020 (PSM) href vbscript Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200101182 onmozbrowserloadend (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002483 SQL-INJ CONVERT( (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/25/2014
9:12
200002685 SQL-INJ db.getName (URI) SQL-Injection 3 MongoDB http://www.owasp.org/index.php/SQL_Injection 2/2/2020
18:42
200003604 "pathping" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200006017 XPath Injection "schema-element()" XPath Injection 3 All systems 3/9/2014
6:42
200101102 onfocusin (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003786 "rsync" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200100315 "uname" execution attempt (URI) Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 9/17/2018
17:18
200004733 Python code injection - socket.getservbyname (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200000139 applet tag (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001252 onPaste() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003889 "reg import" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004878 Java code injection - context.WritableContext (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200015024 Web Server Probe ( NeuralBot ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200001164 href ecmascript (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003122 "sendmail" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004143 PHP injection attempt ( urldecode ) ( parameters ) Server Side Code Injection 2 PHP http://www.owasp.org/index.php/Code_Injection 3/9/2014
6:42
200010013 "%systemroot%" access Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200020078 SSRF attempt (Alibaba Metadata Server) - Dot-less decimal with overflow representation (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200001671 {:document} (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200002492 SQL-INJ "SELECT IF()" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003349 "scp" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009155 PHP source code leakage (8) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200101389 onpointercancel (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200019103 Malicious program ( /r57.php ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001560 onredo (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200010037 (GHDB) /phpSysInfo access Predictable Resource Location 1 PHP http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking, CVE-2005-0869
2/10/2020
17:00
200010156 "/passwd.txt" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200009072 SQL Information Leakage (26) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200000014 /phpmyadmin/ dir access (/phpmyadmin/) Predictable Resource Location 1 PHP http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200002204 SQL-INJ XMLFileFromClob SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200016006 Multiple applications detected in Content-Type declaration (Multipart) Detection Evasion 3 All systems 8/5/2018
11:08
200001991 oncached (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003243 "fmt" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004390 Java code injection - org.springframework.aop.aspectj.autoproxy.AspectJAwareAdvisorAutoProxyCreator$PartiallyComparableAdvisorHolder (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200004914 Java code injection - logging.FileHandler (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002153 SQL-INJ 'sa' SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002763 SQLINJ - NoSQL [$eq] (JSON) (Parameter) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200004421 Apache Solr injection attempt (solr.RunExecutableListener) (URI) Server Side Code Injection 3 Apache/NCSA HTTP Server CVE-2017-12629 3/15/2018
13:12
200009258 PHP Grade Book 1.9.4 - Unauthenticated SQL Database Export Information Leakage 3 PHP https://www.exploit-db.com/exploits/18647/, CVE-2012-1670 11/12/2017
11:00
200000162 .location (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001184 onAfter...() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001230 onEnd() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101331 onuploadprogress (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003272 "jobs" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003663 "taskkill" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200020122 Localhost SSRFmap tool evasion (0177.00.00.01) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200101565 style =expression ( (URI) Cross Site Scripting (XSS) 3 All systems 1/30/2020
17:43
200002167 SQL-INJ into outfile (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200004614 Python code injection - os.getlogin (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200002590 SQL-INJ ATTACH DATABASE (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200010062 Tomcat admin panel access (2) Predictable Resource Location 1 Apache Tomcat http://projects.webappsec.org/w/page/13246953/Predictable%20Resource%20Location 12/11/2019
17:48
200010158 "/wp-content/uploads/XAttacker.php" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200012013 Apache fnmatch DoS Attack Denial of Service 2 Apache Tomcat http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-0419, CVE-2011-0419 6/27/2016
17:23
200020150 Java code injection - HikariConfig (2) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14540 2/2/2020
18:42
200001634 touchmove (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200001800 onDOMNodeRemoved (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101006 onchargingchange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003616 "qprocess" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200003470 Java code injection com.opensymphony (Parameter) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html,
https://struts.apache.org/docs/s2-046.html, CVE-2016-0785, CVE-2017-5638
7/24/2017
12:16
200004108 Server-Side Include Injection Attempt - 2 (Headers) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200004768 Atlassian Crowd Plugin Installer Remote Code Execution Server Side Code Injection 3 Java Servlets/JSP CVE-2019-11580 7/15/2019
15:44
200009213 SQL Server Syntax Error Message Information Leakage 3 Microsoft SQL Server http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 7/21/2011
10:34
200001094 .addimport (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200001206 onCellChange() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001709 Angular.js attribute ng-model (Parameter) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200001943 onTabSelect (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200021059 Malicious Web Site crawler "agdm79@mail.ru" spam bot Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200022029 PHP remote file include attempt - phar:// (Header) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200003740 "fdisk" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200020124 Localhost SSRFmap tool evasion (383.256.256.257) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200101400 onpointermove (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002277 SQL-INJ expressions like ' || ' (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
10/29/2018
16:02
200002342 General injection attempt (chr) (Headers) Server Side Code Injection 3 All systems 7/24/2017
9:52
200003483 "bcdedit" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200006011 XPath Injection "translate()" XPath Injection 3 All systems 8/25/2019
11:24
200009228 SQLServer Syntax Error Message (2) Information Leakage 2 Microsoft SQL Server http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200015095 Web Server Probe (commix) Vulnerability Scan 3 All systems https://github.com/commixproject/commix 2/10/2020
17:00
200020131 Localhost SSRFmap tool evasion (127.127.127.127) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200002190 SQL-INJ create schema SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004320 Java code injection - org.springframework.aop.support.AbstractBeanFactoryPointcutAdvisor (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
200004582 Python code injection - import Scapy (Parameter) Server Side Code Injection 2 Python 4/16/2019
13:29
200004787 Java code injection - handler.HandlerResolverImpl (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200101399 onpointermove (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002866 SQL-INJ - MySQL Interpreted Comment (WHERE) (Parameter) SQL-Injection 2 MySQL 2/19/2020
19:10
200009101 (GHDB) MySQL error (1) Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200018058 ConvertPlus Plugin cp_set_user Privilege Escalation Other Application Attacks 3 WordPress https://www.wordfence.com/blog/2019/05/critical-vulnerability-patched-in-popular-convert-plus-plugin/ 6/23/2019
14:01
200003532 "fsutil" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200006026 XPath Injection "following-sibling" XPath Injection 3 All systems 3/9/2014
6:42
200008000 Directory Listing (1) Directory Indexing 2 Unix/Linux http://www.webappsec.org/projects/threat/classes/directory_indexing.shtml 3/9/2014
6:42
200009127 (GHDB) F-Secure Policy Manager Server Welcome Page Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200001280 onScroll() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101290 ontabviewsearchenabled (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002627 SQL-INJ v$instance (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003421 Elasticsearch Remote Code Execution Command Execution 3 Unix/Linux http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1427, CVE-2015-1427 6/27/2016
17:23
200009143 (GHDB) PHP Explorer Page Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200013016 CoudhDB _users Privilege Escalation Authentication/Authorization Attacks 2 General Database CVE-2017-12635 7/28/2019
16:35
200019058 Malicious program ( r57shell ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
250000068 (PSM) SQL-INJ select to_char SQL-Injection 3 PSM 6/27/2013
7:12
200021055 Malicious Web Site crawler "WISEbot" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001768 onDOMFrameContentLoaded (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004978 Java code injection - ch.qos.logback.core.db.JNDIConnectionSource Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200019132 BeEF HTML detection (2) Trojan/Backdoor/Spyware 3 All systems http://beefproject.com/ 4/16/2014
8:26
200020033 SSRF attempt (AWS Metadata Server) - Dot-less decimal representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200004689 Python code injection - socket.connect (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200004910 Java code injection - server.UnicastRemoteObject (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200101489 HTML5 Entity (quest) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002564 SQL-INJ sys.user$ (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200015072 Havij SQL injection (URI) Vulnerability Scan 3 General Database http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 1/21/2014
11:21
200021070 Automated client access "libwww" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200020100 SSRF attempt (Google Metadata Server) - Enclosed alphanumeric lower-case representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200000108 Javascript Entity (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001202 onBounce() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001435 asfunction: (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001811 onDOMTitleChanged (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004492 Java code injection - org.apache.openjpa.ee.JNDIManagedRuntime Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200004697 Python code injection - socket.send (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200009214 MySQL Syntax Error Message Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200019010 Malicious program ( /iys. ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001725 onAlertClose (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002395 SQL-INJ "sys.user_views" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002416 SQL-INJ DBMS_AQADM_SYS (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002439 SQL-INJ "nullif()" (Parameter) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200020048 SSRF attempt (AWS Metadata Server) - Dot-less decimal with overflow representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200021123 Malicious Web Site crawler (Demo Bot) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200002289 SQL-INJ "UPDATE SET" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200010011 "/xsl/demo/adhocsql/query.xsql" access Predictable Resource Location 2 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
200010014 "/icat.exe" access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 12/11/2019
17:48
200020130 Localhost SSRFmap tool evasion (127.0.1.3) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200002795 NoSQL Injection /_restart (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200002864 SQL-INJ - MySQL Interpreted Comment (FROM) (Parameter) SQL-Injection 2 MySQL 2/19/2020
19:10
200021029 Malicious Web Site crawler "digout4uagent" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001606 <MATH href (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 1/15/2020
14:12
200101000 oncardstatechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101195 onmozbrowsershowmodalprompt (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101599 Vulnerability tool listener - Burp Suite (Parameter) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200002030 SQL-INJ dbms_java SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200009045 ASP source code leakage (9) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200001197 onRow...() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001291 onSyncRestored (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200001686 valueOf (Header) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/xss-faq.html 8/25/2015
13:43
200001877 onMozTapGesture (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002708 SQL-INJ GRANTED_ROLE (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003130 "/proc/self/environ" execution attempt (Parameter) Command Execution 3 Unix/Linux http://www.owasp.org/index.php/PHP_Top_5#P5:_File_system_attacks 3/11/2013
2:26
200001588 ondurationchange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001883 onMozTouchMove (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101218 onorientationchange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002676 SQL-INJ iicolumns (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200001509 oncanplay (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002140 SQL-INJ into dumpfile SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/1/2015
16:30
200003214 "curl" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200015044 Web Server Probe ( scanalert ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200002438 SQL-INJ "nullif()" (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002655 SQL-INJ pg_user (URI) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003140 "export" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200019081 Malicious program ( zehir ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004434 Java code injection - org.apache.ibatis.datasource.jndi.JndiDataSourceFactory (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200001195 onMedia...() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200003268 "ifdown" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004481 ThinkPHP Spoofed Controller Name Remote Code Execution Server Side Code Injection 3 PHP https://blog.thinkphp.cn/869075, CVE-2018-20062 3/3/2020
16:07
200004244 JavaScript Code Injection - process.cwd() (Header) Server Side Code Injection 3 All systems 5/4/2017
10:03
200000004 Web-Server Administrator dir access Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/6/2018
14:02
200001954 onValueChange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101332 onuploadprogress (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002338 SQL-INJ atttypid (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003153 "source" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200001796 onDOMNodeInsertedIntoDocument (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200010116 Oracle application server reports/rwservlet/ Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200011026 Generic buffer overflow attempt 27 Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/buffer_overflow.shtml 1/15/2020
14:12
200003466 Java code injection ognl.TypeConverter (URI) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200004046 ASP injection attempt ( .getfile ) Server Side Code Injection 2 ASP.NET 1/25/2018
18:15
200004703 Python code injection - socket.create_connection (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200000003 Web-Server sample dir access Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 4/30/2018
18:19
200000140 applet tag (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001558 onredo (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002401 SQL-INJ user_objects (Headers) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200003257 "halt" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200018043 SSRF attempt (Oracle Metadata Server) (Parameter) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200019044 Malicious program ( /.dump/ ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200020068 SSRF attempt (Oracle Metadata Server) - Dotted hexadecimal representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200021118 Malicious Web Site crawler (bwh3_user_agent) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200009058 Cold Fusion Information Leakage Information Leakage 2 Macromedia ColdFusion http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200000009 Web-Server log dir access (/log/) Predictable Resource Location 1 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 4/30/2018
18:19
200001939 onTabOpen (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101539 .find() (Header) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200003069 "who or whoami" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003440 Java code injection - java/lang/Process (Parameter) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852
3/20/2018
18:30
200004989 PHP injection attempt ( parse_str ) (Header) Server Side Code Injection 2 PHP 8/25/2019
11:24
200009185 "PostgreSQL SQL invalidation" Error Message Information Leakage 3 PostgreSQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 7/21/2011
10:34
200009189 "dbase Invalidation" Error Message Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200015051 Web Server Probe ( wapiti ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200001534 onloadedmetadata (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200001751 onDOMCharacterDataModified (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003416 "sleep" execution attempt (Header) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004305 Java code injection - org.codehaus.groovy.runtime.MethodClosure (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2015-32531 2/2/2020
18:42
200019082 Malicious program ( c99 1 ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
250000070 (PSM) SQL-INJ systables SQL-Injection 3 PSM 6/27/2013
7:12
200003662 "systeminfo" execution attempt (URI) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200001592 onmousewheel (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101097 onenabled (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002359 SQL-INJ information_schema (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003300 "mv" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200015035 Web Server Probe ( Nessus ) - 1 Vulnerability Scan 2 All systems 2/10/2020
17:00
200015085 Web Server Probe ( Mysqloit ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200019037 Malicious program ( theAct=inject&thePath= ) Trojan/Backdoor/Spyware 3 IIS 8/7/2017
15:48
200001512 oncanplaythrough (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001940 onTabPinned (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002851 extractvalue DoS (Header) SQL-Injection 3 MySQL https://bugs.mysql.com/bug.php?id=42495, CVE-2009-0819 3/12/2019
14:21
200003625 "qwinsta" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004380 Java code injection - org.apache.commons.collections.map.ReferenceMap (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200004628 Python code injection - os.setuid (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200006015 XPath Injection "comment()" XPath Injection 3 All systems 8/25/2019
11:24
200010106 JBOSS admin panel URL 3 Predictable Resource Location 2 Java Servlets/JSP CVE-2015-5317, CVE-2016-3427, CVE-2016-8735, CVE-2017-5638 2/10/2020
17:00
200001038 onload (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101203 onmoztimechange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101572 ReactJS code injection - createElement (Header) Cross Site Scripting (XSS) 2 ReactJS 4/16/2019
13:29
200004141 PHP injection attempt ( base64_decode ) ( parameters ) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 3/9/2014
6:42
200021126 Malicious Web Site crawler (Educate Search VxB) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
250000024 (PSM) meta tag Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200004460 Unix special variable $0 (URI) Server Side Code Injection 1 Unix/Linux 5/1/2018
18:05
200004591 Python code injection - pty.openpty (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200009119 (GHDB) PLESK default page Information Leakage 3 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200009246 ASP Error Information Leakage (5) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 10/25/2011
8:45
200101436 console.error (Header) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200002384 SQL-INJ sysdba (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002835 SQL-INJ expressions like "OR 1=1" (7) (Parameter) SQL-Injection 2 General Database 3/25/2019
15:51
200004348 ASP.NET code injection - Microsoft.Exchange.Management.SystemManager.WinForms.ExchangeSettingsProvider (Header) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200019101 Malicious program ( WwW.SaNaLTeRoR.OrG ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200101411 onauxclick (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003286 "lsof" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009134 (GHDB) MRTG statistics Page Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200001611 onactivate (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200009267 PHP Full Path Disclosure (Warning) Information Leakage 1 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtmls 9/14/2017
19:36
200021115 Malicious Web Site crawler (panscient.com) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
250000072 (PSM) SQL-INJ varchar SQL-Injection 3 PSM 6/27/2013
7:12
200101520 HTML5 Entity (dollar) (Header) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200003344 "rmdir" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004540 PHP injection attempt - variable assignment (passthru) (Header) Server Side Code Injection 3 PHP 1/22/2019
22:41
200101082 ondisconnected (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101340 onversionchange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101398 onpointerleave (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200101452 console.trace (URI) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200015091 Web Server Probe ( FHScan ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200020115 Localhost SSRFmap tool evasion (0.0.0.0) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200000070 SQL-INJ "master.." database (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
14:52
200002744 SQLINJ - NoSQL [$gte] SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200009133 (GHDB) System statistics Page Information Leakage 1 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200010117 Oracle application server webapp/admin/bc4jadmin.htm Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200001130 src javascript (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003768 "ncat" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004295 Java code injection - clojure/inspector/proxy Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372 2/2/2020
18:42
200009076 SQL Information Leakage (30) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003547 "gpupdate" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004700 Python code injection - socket.socketpair (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200010022 "/_mmServerScripts" access Predictable Resource Location 1 Macromedia ColdFusion http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml, CVE-2004-1893 2/10/2020
17:00
200010099 /heapdump access Predictable Resource Location 2 Spring Boot http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/24/2017
15:40
200001253 onPaste() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001566 onstorage (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101513 HTML5 Entity (excl) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002686 SQL-INJ db.getMongo (Parameter) SQL-Injection 3 MongoDB http://www.owasp.org/index.php/SQL_Injection 2/2/2020
18:42
200021069 Automated client access "wget" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200101410 onpointerup (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200003845 "net helpmsg" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004121 Server-Side Include Injection Attempt - 8 (Parameter) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200003504 "cmdkey" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004288 Java code injection - jexboss webshell Server Side Code Injection 3 Java Servlets/JSP CVE-2015-5317, CVE-2016-3427, CVE-2016-8735, CVE-2017-5638 9/14/2017
19:36
200001335 unescape() (URI) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101414 <div tag: style (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/19/2017
14:29
200002154 SQL-INJ 'msdasql' SQL-Injection 2 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003157 "umask" execution attempt Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200020144 Java code injection - HikariConfig Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14540 2/2/2020
18:42
200001144 type = text / script (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/22/2019
22:41
200101313 ontouchmove (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004196 PHP injection attempt (phpversion) (Header) Server Side Code Injection 2 PHP http://www.owasp.org/index.php/Code_Injection 12/6/2016
11:17
200010148 "/administrator/components/com_comprofiler/" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200009216 Oracle Null Input Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200100065 w3who.dll buffer overflow attempt Buffer Overflow 3 IIS CVE-2004-1134, 11820-bugtraq 11/12/2017
11:00
200020084 SSRF attempt (Alibaba Metadata Server) - Dot-less decimal representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200021084 Automated client access "NEWT ActiveX" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001322 <OBJECT data (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001418 link href rel stylesheet (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101434 console.debug (URI) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200003613 "powercfg" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200020125 Localhost SSRFmap tool evasion (127.1) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001636 touchend (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200101096 onenabled (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002735 SQL-INJ OBJECT_TYPE (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200020032 smb:// protocol scheme injection (Header) Other Application Attacks 2 All systems 2/2/2020
18:42
200001387 style display:none (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101135 onlanguagechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101548 esi tag (Header) Cross Site Scripting (XSS) 2 All systems https://gosecure.net/2018/04/03/beyond-xss-edge-side-include-injection/ 4/4/2018
12:57
200003444 Java code injection - Runtime.getRuntime (Header) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852
4/30/2018
18:19
250000016 (PSM) eval() Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200001907 onSSWindowStateReady (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003291 "make" execution attempt (Header) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004681 Python code injection - socket.socket (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200010057 cgi-bin/php access Predictable Resource Location 3 All systems 2/10/2020
17:00
200101037 oncompositionupdate (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200015001 Web Server Probe ( pmafind ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200018050 SSRF attempt (AWS Metadata Server) (URI) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200101230 onpopuphidden (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003255 "group" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003396 "vi" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200015025 Web Server Probe ( Kenjin Spider ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200004698 Python code injection - socket.shutdown (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200001398 style list-style-image:url (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200002554 SQL-INJ integer field UNION (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/25/2015
13:43
200003132 "/proc/self/environ" execution attempt (URI) Command Execution 3 Unix/Linux http://www.owasp.org/index.php/PHP_Top_5#P5:_File_system_attacks 3/11/2013
2:26
200009093 ASP source code leakage (35) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200019069 Malicious program ( CGI-Telnet ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200021124 Malicious Web Site crawler (DSurf15a) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200022041 Generic Remote File/Path Include Attempt 6 Remote File Include 3 All systems 2/10/2020
17:00
200004821 Java code injection - jndi.JndiDataSourceFactory (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000059 Temporary file (.$) access Information Leakage 3 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 9/13/2016
19:09
200012026 XStream void JSON DoS Denial of Service 2 Apache Struts https://struts.apache.org/docs/s2-051.html,
http://x-stream.github.io/CVE-2017-7957.html, CVE-2017-7957, CVE-2017-9793
3/7/2019
19:45
200018046 SSRF attempt (Google Metadata Server) (Host Header) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200004471 PHP injection attempt (die) (Headers) Server Side Code Injection 2 PHP 8/21/2018
19:46
200004619 Python code injection - os.getuid (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200009036 Zope Information Leakage Information Leakage 3 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200020040 SSRF attempt (AWS Metadata Server) - Dot-less decimal representation (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200001381 launchURL (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001582 autofocus (Header) Cross Site Scripting (XSS) 3 All systems http://html5sec.org/ 7/24/2017
9:52
200101322 onunderflow (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101573 ReactJS code injection - memo (Parameter) Cross Site Scripting (XSS) 2 ReactJS 4/16/2019
13:29
200021127 Malicious Web Site crawler (EmailSpider) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200002784 NoSQL Injection db.getCollectionNames() (Header) SQL-Injection 3 MongoDB 2/2/2020
18:42
200004163 PHP injection attempt (passthru) Server Side Code Injection 3 PHP 12/25/2017
14:34
200100067 Buffer overflow attempt in adodb.php using XAMPP Buffer Overflow 3 PHP CVE-2007-2079, 23491-bugtraq 11/12/2017
11:00
200019060 Malicious program ( PHP Commander ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200010047 .bak (Parameter) Predictable Resource Location 2 All systems http://projects.webappsec.org/w/page/13246953/Predictable%20Resource%20Location 2/10/2020
17:00
200002347 SQL-INJ create table (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002836 SQL-INJ expressions like "OR 1=1" (7) (Header) SQL-Injection 2 General Database 3/25/2019
15:51
200003492 "call" execution attempt (Parameter) Command Execution 3 Microsoft Windows 6/26/2018
14:01
200003674 "tracert" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200101278 onsuccess (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002801 NoSQL Injection /_all_docs (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 1/30/2020
17:43
200003118 "poweroff" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200010074 MySQL Configuration file my.ini (Parameter) Predictable Resource Location 3 General Database http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200100079 /.svn directory access Predictable Resource Location 1 All systems 12/11/2019
17:48
200015033 Web Server Probe ( Falcove ) Vulnerability Scan 2 All systems 2/10/2020
17:00
200001589 ondurationchange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/3/2013
1:53
200002498 SQL-INJ "SELECT when then" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/3/2015
20:52
200003875 "reg copy" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004797 Java code injection - ext.EventData (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002111 SQL-INJ sp_makewebtask SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200009184 "MySQL SQL invalidation" Error Message Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200011051 WordPress ping back Ghost attempt: Buffer Overflow 3 WordPress https://devcentral.f5.com/articles/ghost-vulnerability-cve-2015-0235, CVE-2015-0235 1/30/2020
17:43
200003630 "regsvr32" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200001805 onDOMPopupBlocked (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002199 SQL-INJ sysxlogins SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002751 SQLINJ - NoSQL db.find() (Header) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/method/db.collection.find/ 2/2/2020
18:42
200003335 "python" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004804 Java code injection - ee.RegistryManagedRuntime (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000170 onsubmit (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101007 onchargingchange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101309 ontouchleave (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002442 SQL-INJ "select --" (Value) (2) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200002317 SQL-INJ "change_on_install" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200018037 External entity DOCTYPE injection attempt Other Application Attacks 2 All systems CVE-2017-12629 2/2/2020
18:42
200004548 PHP injection attempt - variable assignment (exec) (Header) Server Side Code Injection 3 PHP 1/22/2019
22:41
200009104 PHP Information Leakage (4) Information Leakage 3 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200011032 Generic Format String attack attempt 1 (parameters) Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 3/9/2014
6:42
200101095 ondraggesture (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101433 console.debug (Header) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200101591 location.href (Header) Cross Site Scripting (XSS) 3 All systems 11/4/2019
22:53
200002814 NoSQL Injection /_compact (Header) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200019043 Malicious program ( /tool ) Trojan/Backdoor/Spyware 1 All systems 4/30/2018
18:19
200020016 Suspicious URL (.xip.io domain service) (Header) Other Application Attacks 2 All systems 2/2/2020
18:42
200101169 onmozbrowserclose (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101472 HTML5 Entity (lbrack) (Header) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200101587 = prompt; (Header) Cross Site Scripting (XSS) 3 All systems 6/20/2019
11:56
200015059 Web Server Probe ( czxt2s ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200018001 Session Fixation Attempt - 1 (URI) Other Application Attacks 2 All systems 3/9/2014
6:42
200001212 onControlSelect() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001598 onseeked (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002334 SQL-INJ alter database (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200012012 DOS "Range Header DoS Attempt" (Headers) (2) Denial of Service 1 Apache Tomcat CVE-2018-15756, CVE-2011-3192 11/4/2019
22:53
200004811 Java code injection - disk.DiskFileItem (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001802 onDOMNodeRemovedFromDocument (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101361 AngularJS Sandbox Escape - constructor.prototype (Header) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200003036 "ftp or ncftp" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003441 Java code injection - java/lang/Process (Header) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852
3/20/2018
18:30
200004675 Python code injection - sys.stderr (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200010132 SSH known_hosts access (Parameter) Predictable Resource Location 3 All systems 1/29/2018
17:12
200101154 onmouseleave (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002367 SQL-INJ owa_util (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003040 "rm" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003228 "ed" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009254 ASP Unexpected Token Error Information Leakage Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 6/27/2016
17:23
200001354 CreateObject (Headers) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001594 onratechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004167 gopher injection attempt (Header) Server Side Code Injection 2 PHP http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 2/10/2020
17:00
200002084 SQL-INJ object_name SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004428 Java code injection - com.sun.org.apache.bcel.internal.util.ClassLoader (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200019052 Malicious program ( /phpterm ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001170 src ecmascript (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200002716 SQL-INJ SI_INFORMTN_SCHEMA (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200004627 Python code injection - os.umask (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004746 Python code injection - base64.b64encode (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200002181 SQL-INJ create function SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002833 SQLINJ - NoSQL [$regex] (JSON) (Header) SQL-Injection 3 MongoDB https://blog.websecurify.com/2014/08/attacks-nodejs-and-mongodb-part-to.html 2/2/2020
18:42
200003538 "ftype" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200003573 "powershell" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200001058 onunblur (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001193 onError...() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001781 onDOMMetaAdded (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101308 ontouchenter (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003856 "net start" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200011038 Generic Format String attack attempt 3 (parameters) Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 3/9/2014
6:42
200002619 SQL-INJ SELECT DATABASE() (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003882 "reg load" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200012016 #RefRef DoS tool (1) Denial of Service 3 All systems https://www.owasp.org/index.php/Denial_of_Service 3/17/2016
17:22
200020038 SSRF attempt (AWS Metadata Server) - Dot-less hexadecimal representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200000075 SQL-INJ "end-quote select" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200012005 DOS "Double-precision floating-point number dos attack" (Parameter) (5) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200101354 AngularJS Sandbox Escape - sub.call.call (Parameter) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200002137 SQL-INJ tbcreator SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004169 OGNL Java code injection (redirectAction:) Server Side Code Injection 3 Apache Struts http://struts.apache.org/release/2.3.x/docs/s2-016.html, CVE-2013-2251 2/2/2020
18:42
200009197 OleDbException Error Message Information Leakage 2 ASP.NET http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200004505 Java code injection - org.apache.axis2.jaxws.spi.handler.HandlerResolverImpl (Parameter) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200001478 @import (Parameter) (2) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200101008 onchargingchange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002436 SQL-INJ "if(Expression,value,value)" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002774 SQLINJ - NoSQL [$in] (JSON) (Header) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200021094 Automated client access (Java) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 8/11/2013
8:26
200001441 CSSHttpRequest (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200003683 "vaultcmd" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004366 Java code injection - getWriter (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) 2/1/2018
14:02
200018054 SSRF attempt (Alibaba Metadata Server) (URI) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200012023 php_wddx Dos vulnerability Encoded Denial of Service 3 PHP https://bugs.php.net/bug.php?id=73631 3/21/2017
14:07
200012038 SAP Hostcontrol stack exhaustion DOS Denial of Service 3 Other Web Server https://erpscan.com/advisories/erpscan-17-030-sap-hostcontrol-remote-dos/, CVE-2017-14581 3/7/2019
19:45
200001685 valueOf (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/xss-faq.html 8/25/2015
13:43
200002124 SQL-INJ xp_terminate SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002639 SQL-INJ SYSTEM_USER (Header) SQL-Injection 3 MySQL http://www.owasp.org/index.php/SQL_Injection 1/26/2017
11:44
200000116 div tag: behavior (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200001348 DOMParser (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200009215 ASP ADODB Record Deleted Error Message Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200010030 "/Program Files/" access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
200003131 "/proc/self/environ" execution attempt (Headers) Command Execution 3 Unix/Linux http://www.owasp.org/index.php/PHP_Top_5#P5:_File_system_attacks 3/11/2013
2:26
200003337 "reboot" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003400 "who or whoami" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200020121 Localhost SSRFmap tool evasion (127.42.42.42) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200002543 SQL-INJ null,null,null (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002722 SQL-INJ GSMADMIN_INTERNAL (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200002859 SQL-INJ - MySQL Interpreted Comment (UNION) (Header) SQL-Injection 2 MySQL 2/19/2020
19:10
200003091 "mv" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200020199 SSRF attempt - Local network IP range 172.16.x.x (Parameter) Other Application Attacks 2 All systems 1/5/2020
15:24
200021011 Malicious Web Site crawler "emailsiphon" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200101239 onpopupshown (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004002 PHP injection attempt ( ftp_nb_fget ) Server Side Code Injection 2 PHP 8/7/2017
15:48
200020101 SSRF attempt (Packetcloud Metadata Server) - Enclosed alphanumeric upper-case representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200021079 Automated client access "eCatch" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200004958 Java code injection - connector.OracleManagedConnectionFactory (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004281 JSP Expression Language Expression Injection (URI) Server Side Code Injection 3 Apache Struts CVE-2013-2134, CVE-2013-2135, CVE-2017-5638, CVE-2014-0116, CVE-2016-4438, CVE-2010-1870, CVE-2012-0391, CVE-2012-0392, CVE-2012-0393, CVE-2012-0394, CVE-2011-3923, CVE-2013-1965, CVE-2013-2251, CVE-2013-2248, CVE-2014-0094, CVE-2014-0112, CVE-2014-0113, CVE-2014-0114, CVE-2016-3082, CVE-2016-0785, CVE-2016-3081, CVE-2016-3087 1/28/2018
19:31
200009117 (GHDB) DB2 error Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200020117 Localhost SSRFmap tool evasion (127.0.1) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200001208 onCellChange() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200001332 XMLHttpRequest() (URI) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200003445 Java code injection - Runtime.getRuntime (URI) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852
4/30/2018
18:19
200003671 "timeout" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200101282 ontabviewhidden (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101388 onpointercancel (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002313 SQL-INJ "select --" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200002532 SQL-INJ information_schema (URI) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/19/2014
14:17
200003668 "tasklist" execution attempt (URI) Command Execution 3 Microsoft Windows 3/3/2019
21:08
200013004 Oracle Portal Privilege Escalation (Encoded) Authentication/Authorization Attacks 3 Oracle Application Server 3/12/2018
16:09
200013014 Kubernetes privilege escalation Authentication/Authorization Attacks 3 Other Web Server CVE-2018-1002105 1/15/2020
14:12
250000049 (PSM) SQL-INJ "select 0x" SQL-Injection 3 PSM 6/27/2013
7:12
200003576 "logoff" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004290 Apache Struts Dynamic Method Invocation Remote Code Execution Server Side Code Injection 3 Apache Struts https://struts.apache.org/docs/s2-032.html, CVE-2016-3081 11/12/2017
11:00
200001646 jQuery command $.ajax() (URI) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200001785 onDOMMetaRemoved (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002045 SQL-INJ select substring SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002557 SQL-INJ mysql.db (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200101567 alert() (2) (Header) Cross Site Scripting (XSS) 3 All systems 2/25/2019
11:12
200002298 SQL-INJ GRANT TO SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200010044 "php.ini" access (Parameter) Predictable Resource Location 2 PHP http://www.owasp.org/index.php/PHP_Top_5#P5:_File_system_attacks 11/21/2012
13:22
200101257 onsmartcard-insert (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002531 SQL-INJ group by having (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003359 "shutdown" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001090 input type image (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001494 "style :expression (" (Parameter)(1) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001641 jQuery command $.getScript() (Parameter) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200001975 onbeforeinstallprompt (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200019122 Web Shell detection (egy) Trojan/Backdoor/Spyware 3 PHP http://www.owasp.org/images/c/c3/ASDC12-Old_Webshells_New_Tricks_How_Persistent_Threats_haverevived_an_old_idea_and_how_you_can_detect_them.pdf 3/11/2013
2:26
200020105 Localhost SSRFmap tool evasion ([::]) (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
250000039 (PSM) SQL-INJ "*_name()" sql functions SQL-Injection 3 PSM 6/27/2013
7:12
250000066 (PSM) SQL-INJ insert into SQL-Injection 3 PSM 6/27/2013
7:12
200001642 jQuery command $.getScript() (Header) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200002285 SQL-INJ "CREATE USER SET PASSWORD" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/1/2015
16:30
200002683 SQL-INJ db.getName (Parameter) SQL-Injection 3 MongoDB http://www.owasp.org/index.php/SQL_Injection 2/2/2020
18:42
200003862 "net time" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200000123 div tag: expression (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101335 onuserproximity (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101584 = prompt; (Parameter) Cross Site Scripting (XSS) 3 JavaScript 6/20/2019
11:56
200003411 "ifconfig" execution attempt (Headers) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009095 ASP source code leakage (37) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200001597 onseeked (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002118 SQL-INJ xp_regenumvalues SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002546 SQL-INJ select substring (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004391 Java code injection - org.springframework.aop.support.DefaultBeanFactoryPointcutAdvisor (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200003711 "cfdisk" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004049 ASP injection attempt ( response .BinaryWrite ) Server Side Code Injection 3 ASP.NET 1/25/2018
18:15
200004133 PHP injection attempt ( $php_errormsg ) Server Side Code Injection 3 PHP 8/7/2017
15:48
200019024 Malicious program ( /go.php.txt ) Trojan/Backdoor/Spyware 3 PHP 8/7/2017
15:48
200001319 <EMBED SRC (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001552 onplaying (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200001864 onMozRotateGesture (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001996 oncallschanged (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002129 SQL-INJ xp_filelist SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200006014 XPath Injection "text()" XPath Injection 3 All systems 8/25/2019
11:24
200002232 SQL-INJ "EXECUTE IMMEDIATE" (Headers) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200010150 "/cgi/common.cgi" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200022012 PHP remote file include attempt - input Remote File Include 2 PHP http://www.owasp.org/index.php/Top_10_2007-Malicious_File_Execution 3/9/2014
6:42
200010134 composer.lock Predictable Resource Location 2 PHP https://github.com/jinglejangle/decomposer 3/20/2018
13:54
200018038 Couchbase diag/eval Remote Code Execution Other Application Attacks 2 General Database CVE-2018-15728 1/22/2019
22:41
200020092 SSRF attempt (Alibaba Metadata Server) - Dot-less decimal with overflow representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200021078 Automated client access "netants" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200001559 onredo (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003574 "powershell" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200003685 "verify" execution attempt (Header) Command Execution 1 Microsoft Windows 2/17/2020
22:44
200004537 PHP injection attempt - hex (die) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200002781 NoSQL Injection db.getCollection() (Header) SQL-Injection 3 MongoDB 2/2/2020
18:42
200004728 Python code injection - socket.getprotobyname (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200009019 SQL Information Leakage (10) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200009193 Sybase ODBC Error Message Information Leakage 2 Sybase/ASE http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001562 onstalled (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001784 onDOMMetaRemoved (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200001952 onValueChange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002430 SQL-INJ expressions like "or 1 --" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200012020 HTTP.sys Denial of Service vulnerability Denial of Service 3 ASP.NET https://technet.microsoft.com/library/security/ms15-034, CVE-2015-1635 11/12/2017
11:00
200019110 Malicious program ( /nstview.php ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200022036 PHP remote file include attempt - expect:// (Parameter) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200022014 PHP remote file include attempt - memory Remote File Include 2 PHP http://www.owasp.org/index.php/Top_10_2007-Malicious_File_Execution 3/9/2014
6:42
200002804 NoSQL Injection /_find (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200003051 "mkdir" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 1/5/2020
15:24
200004587 Python code injection - import Scrapy (Header) Server Side Code Injection 2 Python 4/16/2019
13:29
200010136 "/.git/" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200004828 Java code injection - dbcp2.BasicDataSource (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200000018 WEB-INF dir access (/WEB-INF/) Predictable Resource Location 1 Jetty http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml, CVE-2016-4800, CVE-2007-6672 6/6/2018
13:37
200020107 Localhost SSRFmap tool evasion (127.0.0.0) (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200101223 onpointerlockchange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101562 alert(1) (URI) Cross Site Scripting (XSS) 2 All systems 2/19/2019
11:23
200002032 SQL-INJ group by having SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003020 "chgrp" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004609 Python code injection - os.geteuid (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200012051 Apache Santuario Empty KeyInfo Object Denial of Service 2 XML https://issues.apache.org/jira/browse/SANTUARIO-491 1/22/2019
22:41
200001388 style display:none (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001972 onaudioprocess (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003378 "telnet" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200003418 HTTP.sys Remote Code Execution Vulnerability Suspicion (1) Command Execution 3 IIS https://technet.microsoft.com/library/security/MS15-034, CVE-2015-1635 6/27/2016
17:23
200003909 "/etc/passwd" access (Parameter) Predictable Resource Location 3 Unix/Linux 2/26/2019
19:42
200022002 Generic Remote File/Path Include Attempt 2 (path param, ftp/ftps) Remote File Include 3 All systems 3/9/2014
6:42
200001870 onMozRotateGestureUpdate (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001890 onRadioStateChange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101568 new Function() (Parameter) Cross Site Scripting (XSS) 3 All systems 2/26/2019
19:42
200002242 SQL-INJ "SELECT pg_sleep()" SQL-Injection 3 Sybase/ASE http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200001019 onkeypress (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003025 "cpp" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200004221 Flask Server Side Template Injection (.__dict__) (Parameter) Server Side Code Injection 3 All systems 2/2/2020
18:42
200100080 boot.ini access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
8/25/2019
11:24
200003399 "who or whoami" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200021017 Malicious Web Site crawler "attache" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200001145 type = text / script (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/22/2019
22:41
200101601 Vulnerability tool listener - Burp Suite (URI) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200004410 Java code injection - com.sun.jndi.rmi.registry.BindingEnumeration (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
200001034 onselect... (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001254 onPause() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001455 Malformed US-ASCII - script tags (URL) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003271 "jobs" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001793 onDOMNodeInserted (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004866 Java code injection - support.DefaultBeanFactoryPointcutAdvisor (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200015068 Web Server Probe ( Havij ) Vulnerability Scan 2 All systems http://en.wikipedia.org/wiki/Web_application_security_scanner 1/23/2012
7:53
200000013 /perl/ dir access (/perl/) Predictable Resource Location 1 CGI http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200015029 Web Server Probe ( T H A T ' S G O T T A H U R T ) exploit Vulnerability Scan 2 All systems 2/27/2012
6:30
200021134 Automated client access "Microsoft Office Protocol Discovery" Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 3/17/2016
17:22
200001967 onanimationstart (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101596 Vulnerability tool listener - XSShunter (Parameter) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200002248 SQL-INJ "UPDATE SET WHERE" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003904 CSV Injection Attempt (2) Command Execution 3 All systems https://www.contextis.com/blog/comma-separated-vulnerabilities 6/14/2018
17:05
200016009 Unicode Fullwidth ASCII variant (Header) Detection Evasion 1 IIS https://infosecauditor.wordpress.com/2013/05/27/bypassing-asp-net-validaterequest-for-script-injection-attacks/ 7/8/2019
18:55
200017002 localhost IPv6 URL found - http://::1/ (Header) Other Application Attacks 2 All systems 2/2/2020
18:42
200019021 Malicious program ( /ssh2.php ) Trojan/Backdoor/Spyware 3 PHP 8/7/2017
15:48
200001706 Angular.js attribute ng-view (Parameter) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200101009 onchargingtimechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002682 SQL-INJ sysibm.sysdummy1 (URI) SQL-Injection 3 IBM DB2 http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200009223 Oracle Connect Failed Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003024 "cmd" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003675 "tsdiscon" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200021104 Malicious Web Site crawler (Bork-edition) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200001201 onBounce() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101305 ontouchend (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002057 SQL-INJ locate() SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002643 SQL-INJ sql_logins (URI) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection 2/1/2017
18:32
200004943 Java code injection - beanutils.BeanComparator (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003148 "nice" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200003527 "forfiles" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004199 PHP injection attempt (system) (Parameter) Server Side Code Injection 3 PHP 12/25/2017
14:34
200004612 Python code injection - os.getgroups (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200101055 ondataerror (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002251 SQL-INJ SQLIVULN_CUR_USR (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002803 NoSQL Injection /_all_docs (URI) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 1/30/2020
17:43
200003141 "fmt" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200020052 SSRF attempt (AWS Metadata Server) - Dot-less hexadecimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001346 .createDocument (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200101249 onsent (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002286 SQL-INJ "ALTER USER SET PASSWORD" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002405 SQL-INJ utl_file (Headers) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003682 "vaultcmd" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004214 Flask Server Side Template Injection (.__mro__[) (Header) Server Side Code Injection 3 All systems 2/2/2020
18:42
200001604 onsuspend (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/3/2013
1:53
200001672 {:document} (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200101503 HTML5 Entity (grave) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200101522 HTML5 Entity (ast) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200004357 ASP.NET code injection - System.Workflow.ComponentModel.Serialization.ActivitySurrogateSelector (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200004408 Java code injection - javax.imageio.ImageIO$ContainsFilter (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
200104005 SQL Server Reporting System - Serialized Object Server Side Code Injection 3 Microsoft SQL Server CVE-2020-0618 2/19/2020
18:12
200009163 JSP Error ServletException Information Leakage 3 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200004572 Python code injection - import sys (Parameter) Server Side Code Injection 2 Python 4/16/2019
13:29
200020072 SSRF attempt (Oracle Metadata Server) - Dotted octal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200004992 Java code injection - com.opensymphony.xwork2.ognl.SecurityMemberAccess Server Side Code Injection 3 Java Servlets/JSP 8/25/2019
11:24
200002464 SQL-INJ Oracle PITRIG_DROPMETADATA (Parameters) SQL-Injection 2 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002672 SQL-INJ dbmsinfo (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003636 "rundll32" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004557 PHP injection attempt ( @print ) (URI) Server Side Code Injection 2 PHP 2/19/2019
11:23
200004200 PHP injection attempt (system) (Header) Server Side Code Injection 3 PHP 12/25/2017
14:34
200004651 Python code injection - os.pipe2 (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200020056 SSRF attempt (Oracle Metadata Server) - Dot-less decimal with overflow representation (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200001775 onDOMMenuItemActive (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002800 NoSQL Injection /_stats (URI) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200010107 JBOSS /jmx-console/ access Predictable Resource Location 2 Java Servlets/JSP CVE-2007-1036, CVE-2010-0738 11/12/2017
11:00
200004860 Java code injection - pool.OraclePooledConnection (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200010041 Source code disclosure in Tomcat 4.1.10 using servlet Predictable Resource Location 2 Apache Tomcat CVE-2002-1148 8/4/2016
15:33
200019136 Web Shell detection (b374k) Trojan/Backdoor/Spyware 3 PHP http://www.owasp.org/images/c/c3/ASDC12-Old_Webshells_New_Tricks_How_Persistent_Threats_haverevived_an_old_idea_and_how_you_can_detect_them.pdf 7/8/2014
8:28
200001284 onStart() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200002026 SQL-INJ autonomous_transaction SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003108 "find" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003894 "nc" execution attempt (2) (Header) Command Execution 3 Unix/Linux https://medium.com/secjuice/waf-evasion-techniques-718026d693d8 8/5/2018
11:08
200002551 SQL-INJ "end-quote UNION" (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200003066 "/..namedfork/data" execution attempt (Parameter) Detection Evasion 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/11/2013
2:26
200003139 "exec" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200004928 Java code injection - runtime.ConvertedClosure (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200101014 onchecking (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101546 //.source (URI) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200101557 source tag: src/srcset (URI) Cross Site Scripting (XSS) 3 All systems https://www.w3schools.com/tags/tag_picture.asp 1/22/2019
22:41
200002273 SQL-INJ exec() SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200019013 Malicious program ( /mampus ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200019102 Malicious program ( WwW.SaNaLTeRoR.OrG ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004649 Python code injection - os.pipe (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200001318 <EMBED SRC (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200002172 SQL-INJ expressions like "and 1=1" (8) (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/20/2019
17:09
200002654 SQL-INJ pg_user (Header) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003076 "rmdir" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200101228 onpopuphidden (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200020104 Localhost SSRFmap tool evasion (0.0.0.0) (URI) Other Application Attacks 2 All systems 2/2/2020
18:42
200020135 Localhost SSRFmap tool evasion (383.256.256.257) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200021021 Malicious Web Site crawler "webemailextrac" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200003311 "nohup" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200009168 Oracle Unexpected Error Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003390 "umask" execution attempt (URI) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009221 Oracle DDL Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200004750 Python code injection - base64.b64decode (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200005012 LDAP Injection ( (uid=*) ) LDAP Injection 3 All systems 2/26/2019
19:42
200012058 Spring Framework STOMP ReDoS Denial of Service 2 Spring Boot CVE-2018-1257 7/28/2019
16:35
200019070 Malicious program ( iMHaBiRLiGi PhpFtp ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001603 onsuspend (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003234 "exec" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003449 Java code injection java.lang.System (Parameter) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200004543 PHP injection attempt - variable assignment (shell_exec) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200004122 Server-Side Include Injection Attempt - 9 (Headers) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200012061 ASP.NET w3wp - COM Components DOS - web.config Denial of Service 2 ASP.NET CVE-2006-1364 10/9/2019
2:15
200001232 onEnd() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200002499 SQL-INJ "UNION SELECT" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003853 "net share" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003905 Shell command processor (sh/ksh/zsh/csh/tcsh) execution attempt (Header) Command Execution 3 All systems 8/5/2018
11:08
200004858 Java code injection - pool.OraclePooledConnection (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200012028 Struts2 spring-plugin DoS Denial of Service 3 Apache Struts CVE-2017-9787 9/13/2017
17:29
200001866 onMozRotateGestureStart (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003533 "fsutil" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200003808 "unrar" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004462 Unix special variable $@ (Header) Server Side Code Injection 1 Unix/Linux 9/16/2019
15:48
200009251 PHP Notice Error Information Leakage Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/11/2011
6:49
200002586 SQL-INJ sqlite_version (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200003092 "grep" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200001576 onwaiting (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001703 Angular.js attribute ng-controller (Parameter) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200001783 onDOMMetaAdded (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002074 SQL-INJ user_objects SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200001803 onDOMNodeRemovedFromDocument (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002404 SQL-INJ user_users (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004551 PHP injection attempt - variable assignment (die) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200104000 Java code injection - net.sf.ehcache.transaction.manager.selector.GenericJndiSelector (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-20330 1/27/2020
18:47
200020102 SSRF attempt (Packetcloud Metadata Server) - Enclosed alphanumeric lower-case representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200101010 onchargingtimechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101530 jQuery Camel Cased Attribute Names Infinite Recursion DoS (Parameter) Cross Site Scripting (XSS) 2 jQuery https://github.com/jquery/jquery/issues/3133, CVE-2016-10707 3/18/2018
15:16
200004182 Unix injection attempt (/bin/bash) (Parameter) Server Side Code Injection 3 Unix/Linux http://www.owasp.org/index.php/Code_Injection 2/10/2020
17:00
200010121 Oracle application server xsql/lib/XSQLConfig.xml Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200004852 Java code injection - map.Flat3Map (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009208 MySQL Invalid Result Error Message Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001546 onpageshow (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200101164 onmouseover (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003446 Java code injection - org/codehaus/groovy/runtime (Parameter) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852
3/20/2018
18:30
200004402 Java code injection - org.apache.commons.configuration.JNDIConfiguration (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-9606, CVE-2017-3159, CVE-2016-8744, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200004307 Java code injection - org.springframework.beans.factory.ObjectFactory (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095 2/2/2020
18:42
200001721 onAlertActive (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101069 ondeviceproximity (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004688 Python code injection - socket.connect (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200021028 Malicious Web Site crawler "psurf" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200011055 PCRE Named Subgroups Heap Overflow Buffer Overflow 2 All systems CVE-2016-1283 11/12/2017
11:00
200015009 Web Server Probe ( jaascois ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200001667 [window] (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
9/17/2015
15:27
200101579 SVG img tag: xlink/href (Parameter) Cross Site Scripting (XSS) 2 All systems 6/18/2019
11:55
200002819 NoSQL Injection _temp_view (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 1/30/2020
17:43
200004832 Java code injection - impl.EqualsBean (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200101060 ondevicelight (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002690 SQL-INJ sqlite_master (Header) SQL-Injection 3 SQLite http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200001262 onPropertyChange() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200002291 SQL-INJ "*_name()" sql functions (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
13:37
200003855 "net start" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200009110 (GHDB) MySQL error (2) Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200002170 SQL-INJ expressions like "having 1=1" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/20/2019
17:09
200002324 SQL-INJ "BACKUP DATABASE" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/1/2015
16:30
200002671 SQL-INJ dbmsinfo (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200004781 Java code injection - transform.TransformerFactory (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001270 onReset() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101342 onvisibilitychange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101412 onauxclick (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101470 HTML5 Entity (lsqb) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200021062 Malicious Web Site crawler "BecomeBot" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001222 onDblClick() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200004863 Java code injection - target.HotSwappableTargetSource (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001836 onMozEnteredDomFullscreen (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002675 SQL-INJ iicolumns (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003816 "whereis" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004225 JSP Expression Language Expression Injection Server Side Code Injection 3 Apache Struts 2/2/2020
18:42
200001556 onpopstate (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003207 "cpp" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003457 Java code injection java.lang.Shutdown (URI) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200004622 Python code injection - os.unsetenv (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004107 Server-Side Include Injection Attempt - 1 (Parameter) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200004160 Ruby On Rails injection attempt (Header) Server Side Code Injection 3 Ruby CVE-2013-0333 9/9/2019
20:56
200004218 Flask Server Side Template Injection (.__subclasses__()[) (Parameter) Server Side Code Injection 3 All systems 2/2/2020
18:42
200004578 Python code injection - import pty (Parameter) Server Side Code Injection 2 Python 4/16/2019
13:29
200001020 onkeypress (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001271 onReset() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001312 data: base64 (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003464 Java code injection ognl.TypeConverter (Parameter) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200005005 LDAP injection attempt ( uid ) LDAP Injection 1 All systems 4/30/2018
18:19
200018008 cfinternaldebug access Other Application Attacks 2 Macromedia ColdFusion 3/9/2014
6:42
200020176 Java code injection - HikariDataSource (2) (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16335 2/2/2020
18:42
200100074 Cisco IOS HTTP configuration attempt Authentication/Authorization Attacks 3 Cisco CVE-2001-0537, 2936-bugtraq, 10700-nessus 1/15/2020
14:12
200001101 #NAME? Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200002307 SQL-INJ "order by" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200003392 "unalias" execution attempt (URI) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009211 Server Not Found ASP.NET Error Message Information Leakage 2 ASP.NET http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200004810 Java code injection - disk.DiskFileItem (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200018030 XML External Entity (XXE) injection attempt (Content) Other Application Attacks 3 All systems https://www.owasp.org/index.php/XML_External_Entity_%28XXE%29_Processing 2/2/2020
18:42
200001526 oninput (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001902 onSSWindowClosing (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002029 SQL-INJ dba_users SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004673 Python code injection - sys.stdout (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200012037 libxml xmlDictComputeFastKey DoS Denial of Service 3 All systems http://www.openwall.com/lists/oss-security/2017/05/15/1, CVE-2017-9049 1/29/2018
14:44
200015063 Web Server Probe ( sqlmap ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200001128 url javascript (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101277 onsuccess (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003175 "awk" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200010114 Oracle application server repdemo/runJSPIAS.html Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200001733 onCssRuleViewChanged (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002078 SQL-INJ user_users SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002127 SQL-INJ xp_loginconfig SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002767 SQLINJ - NoSQL [$lt] (JSON) (URI) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200019039 Malicious program ( /jpg.ph ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001136 src shell (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001764 onDOMFocusOut (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002788 NoSQL Injection /_active_tasks (URI) SQL-Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 2/10/2020
17:00
200003158 "unalias" execution attempt Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200003077 "setenv" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 1/5/2020
15:24
200003553 "icacls" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004452 Spring Expression Language (SpEL) Expression Injection (Parameter) Server Side Code Injection 3 JBoss 5/6/2018
17:10
200004575 Python code injection - import socket (Header) Server Side Code Injection 2 Python 4/16/2019
13:29
200101160 onmouseout (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101501 HTML5 Entity (grave) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200101528 new Image().src (Header) Cross Site Scripting (XSS) 3 All systems 2/1/2018
14:02
200002398 SQL-INJ textpos() (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/21/2012
13:22
200009035 IIS Information Leakage (8) Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200018055 Ghostscript .definemodifiedfont memory corruption Other Application Attacks 2 Other Web Server CVE-2018-16542 3/31/2019
12:31
200020090 SSRF attempt (Alibaba Metadata Server) - Dotted hexadecimal representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
250000058 (PSM) SQL-INJ create table SQL-Injection 3 PSM 6/27/2013
7:12
200001394 decodeURIcomponent() (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200002713 SQL-INJ APEX_040200 (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200004036 PHP injection attempt ( posix_mkfifo ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200010043 "php.ini" access (URI) Predictable Resource Location 2 PHP http://www.owasp.org/index.php/PHP_Top_5#P5:_File_system_attacks 11/21/2012
13:22
200004299 Java code injection - org.apache.commons.collections(4).functors.InvokerTransformer (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200004976 Java code injection - ch.qos.logback.core.db.JNDIConnectionSource (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200001167 url ecmascript (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001241 onHelp() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001608 <EMBED code (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 1/30/2020
17:43
200003368 "su" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200015043 Web Server Probe ( DirBuster ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200019124 Web Shell detection (Locus) Trojan/Backdoor/Spyware 3 PHP http://www.owasp.org/images/c/c3/ASDC12-Old_Webshells_New_Tricks_How_Persistent_Threats_haverevived_an_old_idea_and_how_you_can_detect_them.pdf 3/11/2013
2:26
200001302 seekSegmentTime() (URI) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200003723 "declare" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200009088 ASP source code leakage (30) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200011059 PHP wddx_deserialize malformed dateTime element BOF (Parameter) Buffer Overflow 2 PHP https://bugs.php.net/bug.php?id=74819, CVE-2017-11145 2/1/2018
14:02
200000106 Javascript Entity (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
8/25/2019
11:24
200002293 SQL-INJ "*_id()" sql functions (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
13:37
200004636 Python code injection - os.fchmod (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004315 Java code injection - java.util.logging.FileHandler (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095 2/2/2020
18:42
200004365 Generic Base64 Encoded ASP.NET Serialized Object Server Side Code Injection 3 ASP.NET CVE-2017-9785 2/2/2020
18:42
200004680 Python code injection - socket.socket (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200009007 Statistics Software Information Leakage (4) Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001475 XSS script tag end (Parameter) (2) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/4/2012
9:12
200001914 onSVGError (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101390 onpointerdown (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003107 "fc" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200009091 ASP source code leakage (33) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200003658 "subst" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200004704 Python code injection - socket.makefile (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200010010 "repair/sam" access Predictable Resource Location 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml, CVE-2007-6483 6/27/2016
17:23
200013011 Symfony Legacy Headers Authorization Bypass (X-Rewrite-URL:) Authentication/Authorization Attacks 3 PHP https://symfony.com/blog/cve-2018-14773-remove-support-for-legacy-and-risky-http-headers, CVE-2018-14773 8/2/2018
13:50
200001684 toString (URI) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/xss-faq.html 4/4/2019
14:31
200002759 SQLINJ - NoSQL [$gte] (JSON) (Header) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200003199 "cmmd" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001575 onvolumechange (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003551 "hostname" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200019138 PHP Generic Webshell Trojan/Backdoor/Spyware 3 PHP 5/4/2017
17:19
200001027 onchange (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200002467 SQL-INJ insert into (Headers) (2) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200010161 /CFIDE/wizards/common/_logintowizard.cfm access Predictable Resource Location 2 Macromedia ColdFusion 8/5/2018
11:08
200009041 ASP source code leakage (5) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200016003 Unrestricted File Upload on IIS with ASP Other Application Attacks 3 Microsoft Windows 2/2/2020
18:42
200020015 Suspicious URL (.xip.io domain service) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200021013 Malicious Web Site crawler "ecollector" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 4/30/2018
18:19
200101535 #NAME? Cross Site Scripting (XSS) 2 All systems http://mksben.l0.cm/2015/10/css-based-attack-abusing-unicode-range.html 3/12/2018
16:09
200000072 SQL-INJ "UNION SELECT" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002615 SQL-INJ SELECT USER() (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003673 "tracert" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200002869 SQL-INJ - MySQL Interpreted Comment (LIKE) (Header) SQL-Injection 2 MySQL 2/19/2020
19:10
200003695 "whoami" execution attempt (URI) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200012053 WebSphere Private Header Detected Denial of Service 2 IBM WebSphere CVE-2019-4046 5/30/2019
14:57
200019094 Malicious program ( MyShell ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004895 Java code injection - naming.QName (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002230 SQL-INJ "SELECT LOAD_FILE()" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002505 SQL-INJ alter table (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200015060 Web Server Probe ( Netsparker ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200003127 "mount" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003384 "top" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004942 Java code injection - beanutils.BeanComparator (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200020184 Java code injection - org.apache.commons.jxpath.xml.DocumentContainer (Parameter) Server Side Code Injection 3 Java Servlets/JSP 2/2/2020
18:42
200001528 oninvalid (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001834 onMozEdgeUIGesture (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200001936 onTabHide (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101595 location.assign() (URI) Cross Site Scripting (XSS) 3 All systems 11/4/2019
22:53
200021019 Malicious Web Site crawler "automailspider" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200002486 SQL-INJ "delete from" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004267 PHP injection attempt ( passthru ) (URI) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200004268 PHP array serialization injection attempt (Parameter) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection, CVE-2017-12932 2/2/2020
18:42
200012015 FireFart hash collision tool (Java) Denial of Service 3 Java Servlets/JSP https://github.com/FireFart/HashCollision-DOS-POC, CVE-2011-5034, CVE-2011-5035, CVE-2011-4858 4/30/2018
18:19
200101442 console.dirxml (Header) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200002739 SQL-INJ sp_password (Parameter) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003741 "fgrep" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004940 Java code injection - functors.ChainedTransformer (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001198 onRow...() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001630 touchstart (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200101025 oncompassneedscalibration (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200009098 ASP source code leakage (40) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200101111 onfullscreenerror (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200009131 (GHDB) ASP Stats Generator Page Information Leakage 1 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200013001 Django authentication header evasion Authentication/Authorization Attacks 3 Django http://www.djangoproject.com/weblog/2015/jan/13/security/#s-issue-wsgi-header-spoofing-via-underscore-dash-conflation,
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0219, CVE-2015-0219
6/27/2016
17:23
200019038 Malicious program ( /gif.ph ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200003586 "msg" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004660 Python code injection - sys.argv (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200104007 Java code injection - org.apache.xbean.propertyeditor.JndiConverter (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2020-8840 2/20/2020
14:30
200019006 Malicious program ( newfile ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200001336 unescape() (Parameter) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001851 onMozMagnifyGestureUpdate (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001980 onbeforeunload (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200000086 SQL-INJ Stored procedure "exec *.dbo" (Parameter) SQL-Injection 3 Sybase/ASE http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/5/2018
11:08
200021004 Malicious Web Site crawler "FooBar/42" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
250000019 (PSM) href javascript Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200004247 JavaScript Code Injection - process.abort() (Header) Server Side Code Injection 3 All systems 5/4/2017
10:03
200004376 Java code injection - javax.naming.spi.ContinuationDirContext (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200010125 Oracle application server xsql/document/docdemo.html Access Predictable Resource Location 2 Oracle Application Server 3/12/2018
16:09
200001274 onResume() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001530 oninvalid (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101024 oncompassneedscalibration (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004902 Java code injection - c3p0.JndiRefForwardingDataSource (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001369 .ShellExecute (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200002596 SQL Injection: commit; (Header) SQL-Injection 3 General Database https://msdn.microsoft.com/en-us/library/ms190295.aspx 2/10/2020
17:00
200003319 "perl" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004846 Java code injection - script.ScriptEngineManager (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004624 Python code injection - os.uname (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200004778 Java code injection - jodd.db.connection.DataSourceConnectionProvider (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200004835 Java code injection - dir.LazySearchEnumerationImpl (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004874 Java code injection - aspectj.AspectJAroundAdvice (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001848 onMozMagnifyGestureStart (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002453 SQL-INJ like " ' AND 1 IN ( " (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002785 NoSQL Injection db.getCollectionNames() (URI) SQL-Injection 3 MongoDB 2/2/2020
18:42
200003819 "docker" execution attempt (Windows) (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004975 Java code injection - net.sf.ehcache.transaction.manager.DefaultTransactionManagerLookup Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200001149 type = application / script (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200002189 SQL-INJ alter column SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004194 JBoss InvokerServlet MarshalledInvocation (URI) Server Side Code Injection 2 JBoss http://docs.jboss.org/jbossas/javadoc/3.2.7/server/org/jboss/invocation/MarshalledInvocation.html 9/15/2016
16:48
200010086 /temp dir access Predictable Resource Location 2 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 8/3/2017
11:44
200004938 Java code injection - map.LazyMap (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200018047 SSRF attempt (Packetcloud Metadata Server) (Host Header) Other Application Attacks 3 All systems https://gist.github.com/jhaddix/78cece26c91c6263653f31ba453e273b 2/2/2020
18:42
200001320 <OBJECT data (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001632 touchmove (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200004880 Java code injection - context.ContextUtil$ReadOnlyBinding (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009107 Perl source code leakage (1) Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200002165 SQL-INJ load data infile (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200003028 "python" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003622 "quser" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200004484 Java code injection - org.jboss.util.propertyeditor.DocumentEditor (Parameter) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200004536 PHP injection attempt - hex (require) (Header) Server Side Code Injection 3 PHP 1/22/2019
22:41
200004693 Python code injection - socket.dup (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200018019 Session Fixation Attempt - 4 (Parameter) Other Application Attacks 2 All systems 3/9/2014
6:42
200001756 onDOMContentLoaded (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101364 AngularJS Sandbox Escape - constructor.prototype.charAt (Header) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200002451 SQL-INJ like " ' OR 1 IN ( " (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003105 "cu" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200020091 SSRF attempt (Alibaba Metadata Server) - Dot-less decimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200022020 PHP remote file include attempt - file:// (Parameter) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200003567 "lodctr" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004430 Java code injection - com.sun.org.apache.bcel.internal.util.ClassLoader Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2017-7525, CVE-2017-17485, CVE 2017-15095 2/2/2020
18:42
200004601 Python code injection - os.chdir (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004756 Java code injection - oracle.toplink.internal.sessions.UnitOfWorkChangeSet Server Side Code Injection 3 BEA Systems WebLogic Server CVE-2019-2725 2/2/2020
18:42
200001514 onemptied (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101221 onoverflow (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101268 onstkcommand (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101307 ontouchenter (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200010065 JBOSS admin panel URL 2 Predictable Resource Location 2 JBoss CVE-2010-0738 12/11/2019
17:48
200009229 Hibernate SQLGrammarException Error Message Information Leakage 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003120 "route" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003143 "link" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200003771 "objdump" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004762 Apache Axis Remote Management Remote Code Execution Server Side Code Injection 3 Other Web Server https://nsfocusglobal.com/apache-axis-remote-code-execution-0-day-vulnerability-handling-guide/ 6/25/2019
17:57
200001491 confirm (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200002130 SQL-INJ xp_makecab SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200100092 "%ALLUSERSPROFILE%" access (parameter) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
250000041 (PSM) SQL-INJ "; drop" SQL-Injection 3 PSM 6/27/2013
7:12
200001652 jQuery command $().load() (URI) Cross Site Scripting (XSS) 3 jQuery http://api.jquery.com/jquery.getscript/ 8/25/2014
9:12
200002388 SQL-INJ sysoledbusers (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003578 "logoff" execution attempt (URI) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200004701 Python code injection - socket.socketpair (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200013017 Apache Nifi User Identity Privilege Escalation Authentication/Authorization Attacks 2 Java Servlets/JSP CVE-2017-5636 8/5/2019
17:22
200015000 Web Server Probe ( mozilla/4.0 (compatible) ) Vulnerability Scan 2 All systems 3/1/2010
2:22
200001714 Javascript with statement (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/30/2020
17:43
200002810 NoSQL Injection /_changes (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200003841 "net group" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004147 PHP injection attempt ( urldecode ) (Headers) Server Side Code Injection 2 PHP http://www.owasp.org/index.php/Code_Injection 3/9/2014
6:42
200101121 onheld (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002628 SQL-INJ v$instance (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200010144 "/PMA/" access Predictable Resource Location 3 All systems 6/18/2018
18:18
200015077 Web Server Probe jexboss Vulnerability Scan 3 All systems https://github.com/joaomatosf/jexboss 4/28/2016
9:35
200004856 Java code injection - typeddata.ValueHolder (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200010133 SSH known_hosts access (URI) Predictable Resource Location 3 All systems 1/29/2018
17:12
200020004 Velocity Template Injection ( set ) (Parameter) Server Side Code Injection 3 Java Servlets/JSP 2/2/2020
18:42
200021016 Malicious Web Site crawler "eo browse" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200001036 onload (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101030 oncompositionend (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101488 HTML5 Entity (equals) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200020142 Java code injection - HikariConfig (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14540 2/2/2020
18:42
200004934 Java code injection - functors.InvokerTransformer (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200014002 FlashTunnelService File Deletion Attempt (ORACLE BTM) Abuse of Functionality 3 Oracle Application Server http://www.exploit-db.com/exploits/20319/ 5/1/2018
18:05
200002476 SQL-INJ expressions like "or 1=1" (6) (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 6/6/2018
14:02
200002765 SQLINJ - NoSQL [$lt] (JSON) (Header) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200003893 "nc" execution attempt (2) (Parameter) Command Execution 3 Unix/Linux https://medium.com/secjuice/waf-evasion-techniques-718026d693d8 6/27/2018
11:50
200019084 Malicious program ( c99shell ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004385 Java code injection - org.springframework.aop.aspectj.AspectJAroundAdvice (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200016005 Multiple applications detected in Content-Type declaration (Form) Detection Evasion 3 All systems 4/28/2016
9:35
200018060 Telerik UI Encryption Keys Disclosure Other Application Attacks 2 ASP.NET CVE-2017-9248 8/6/2019
15:00
200001622 onoffline (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101112 onfullscreenerror (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003692 "where" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200013002 OpenMRS authentication bypass Authentication/Authorization Attacks 3 All systems https://packetstormsecurity.com/files/128748/OpenMRS-2.1-Access-Bypass-XSS-CSRF.html, CVE-2014-8072 11/12/2017
11:00
200003698 "winmgmt" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200018029 HTTP Headers Injection (HTML) HTTP Response Splitting 2 All systems http://blogs.msdn.com/b/esiu/archive/2007/09/22/http-header-injection-vulnerabilities.aspx 6/26/2018
15:15
200001794 onDOMNodeInserted (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200000073 SQL-INJ "UNION SELECT" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003159 "xargs" execution attempt Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 3/4/2019
14:16
200003414 "ls" execution attempt (Headers) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200101602 Vulnerability tool listener - Acunetix (Parameter) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200002354 SQL-INJ drop procedure (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002552 SQL-INJ "end-quote UNION" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200003851 "net session" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200009085 ASP source code leakage (27) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200100089 "%HOMEPATH%" access (URI) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200001554 onplaying (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101011 onchargingtimechange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002256 SQL-INJ DBMS_LOCK (Headers) SQL-Injection 2 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002591 SQL-INJ ATTACH DATABASE (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003391 "unalias" execution attempt (Header) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004795 Java code injection - ext.EventData (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009234 Oracle Connection String Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200009239 PHP Function Warning Message Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200000152 xml tag (Parameter) Other Application Attacks 1 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/28/2019
16:35
200001411 param tag (Parameter) Cross Site Scripting (XSS) 1 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
4/30/2018
18:19
200001414 textarea tag (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101281 ontabviewframeinitialized (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200015054 Web Server Probe ( NV32ts ) Vulnerability Scan 2 All systems 12/21/2011
6:12
200019118 PHPMyAdmin Backdoor Trojan/Backdoor/Spyware 3 PHP http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5159, CVE-2012-5159 6/27/2016
17:23
250000042 (PSM) SQL-INJ "; shutdown" SQL-Injection 3 PSM 6/27/2013
7:12
200009186 "Interbase SQL invalidation" Error Message Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200009268 PHP Full Path Disclosure (Notice) Information Leakage 1 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtmls 9/14/2017
19:36
200010165 /CFIDE/scripts/ajax/FCKeditor/editor/filemanager/connectors/cfm/upload.cfm access Predictable Resource Location 2 Macromedia ColdFusion 8/5/2018
11:08
200021085 Automated client access "Crescent Internet ToolPak" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001523 onhaschange (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200001953 onValueChange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001948 onTabShow (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003541 "getmac" execution attempt (Header) Command Execution 3 Microsoft Windows 9/17/2018
17:18
200004822 Java code injection - jmx.StatisticsService (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200003218 "date" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003827 "del" execution attempt (Parameter) Command Execution 1 Microsoft Windows 1/22/2019
22:41
200004260 PHP injection attempt ( str_replace ) (URI) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 7/24/2017
9:52
200101071 ondeviceproximity (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002352 SQL-INJ drop database (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200004316 Java code injection - java.util.logging.FileHandler (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095 2/2/2020
18:42
200004506 Java code injection - org.apache.axis2.jaxws.spi.handler.HandlerResolverImpl (Header) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200004922 Java code injection - factory.ObjectFactory (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009094 ASP source code leakage (36) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200020166 Java code injection - JNDIConnectionSource (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-17531 2/2/2020
18:42
200101193 onmozbrowsersecuritychange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003333 "pwd" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009252 ASP.NET ViewState Exception Information Leakage Information Leakage 2 ASP.NET http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/11/2011
6:49
200100088 "%HOMEPATH%" access (parameter) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200021007 Malicious Web Site crawler "emailharvest" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200002695 SQL-INJ SPATIAL_CSW_ADMIN_USR (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200002702 SQL-INJ session_privs (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200022007 Remote File Inclusion Attempt include() Remote File Include 2 All systems 3/9/2014
6:42
200004232 JavaScript Code Injection - process.kill() (Header) Server Side Code Injection 3 All systems 5/4/2017
10:03
200007012 Directory Traversal attempt "..\"(Headers) Path Traversal 2 All systems http://www.webappsec.org/projects/threat/classes/path_traversal.shtml 3/9/2014
6:42
200000027 IIS Front Page Extensions dir access (/_vti_*/) Predictable Resource Location 2 Front Page Server Extensions (FPSE) http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 6/6/2018
14:02
200100038 testcgi access Predictable Resource Location 1 CGI 12/11/2019
17:48
200021006 Malicious Web Site crawler "emailcollect" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200101021 oncommandupdate (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002147 SQL-INJ expressions like "or 1=1" (3) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/22/2019
22:41
200003055 Directory Traversal attempt (../etc/) (Header) Path Traversal 1 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 10/29/2018
16:02
200003632 "regsvr32" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200100061 MySQL MaxDB WebSQL wppassword buffer overflow Buffer Overflow 3 MySQL http://seclists.org/vulnwatch/2005/q1/40, CVE-2005-0111 11/12/2017
11:00
200019063 Malicious program ( RHTOOLS ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200021133 DoS tool (killemall) Non-browser client 3 All systems http://en.wikipedia.org/wiki/Denial-of-service_attack 9/16/2013
0:52
200000135 link tag (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001072 copyparentfolder (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200002659 SQL-INJ current_database() (Parameter) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003807 "unrar" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200001990 onbusy (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101023 oncommandupdate (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200018057 Python local file include attempt - local_file:// (Header) Other Application Attacks 3 Python CVE-2019-9948 2/10/2020
17:00
200009149 (GHDB) Nessus Scan Report Page Information Leakage 3 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200006000 XPath Injection "ancestor-or-self" XPath Injection 3 All systems 3/9/2014
6:42
200002120 SQL-INJ xp_regaddmultistring SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003666 "tasklist" execution attempt (Parameter) Command Execution 3 Microsoft Windows 8/25/2019
11:24
200004274 FreeMarker Template Injection template.utility (Parameter) Server Side Code Injection 3 Apache Struts https://insinuator.net/2016/07/dilligent-bug/,
http://blog.portswigger.net/2015/08/server-side-template-injection.html, CVE-2016-4462
2/2/2020
18:42
200012001 DOS "Double-precision floating-point number dos attack" (Parameter) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200000096 XSS script target (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
9/11/2019
23:31
200001809 onDOMSubtreeModified (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101202 onmoztimechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101216 onorientationchange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200020129 Localhost SSRFmap tool evasion (127.0.0.0) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200002474 SQL-INJ REPLACE VALUES (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003417 "sleep" execution attempt (URI) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003805 "unexpand" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003831 "net accounts" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200000111 bgsound tag (URI) Cross Site Scripting (XSS) 1 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001235 onFilterChange() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200101075 ondisabled (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002437 SQL-INJ "if(Expression,value,value)" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200007015 Directory Traversal attempt '..;/' Path Traversal 2 Apache Tomcat https://blog.orange.tw/2018/08/how-i-chained-4-bugs-features-into-rce-on-amazon.html 8/23/2018
13:36
200010003 "/dms/AggreSpy" access Predictable Resource Location 2 Oracle Application Server http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml, CVE-2002-0563 2/10/2020
17:00
200002280 SQL-INJ "CREATE SCHEMA" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002699 SQL-INJ SPATIAL_WFS_ADMIN_USR (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200004661 Python code injection - sys.argv (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004422 Jenkins CLI Command Object Unserialization Server Side Code Injection 3 Java Servlets/JSP CVE-2017-1000353 3/12/2018
16:09
200004723 Python code injection - socket.gethostbyname_ex (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200013005 Oracle Application Server Portal 10g Authentication Bypass Authentication/Authorization Attacks 3 Oracle Application Server http://www.securityfocus.com/bid/29119/exploit, CVE-2008-2138 3/12/2018
16:09
200101371 AngularJS Sandbox Escape - constructor.prototype.charAt.trim (URI) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200002645 SQL-INJ fn_varbintohexstr (Header) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200003748 "gawk" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004336 Oracle WebLogic WLS Security component Remote Code Execution Server Side Code Injection 3 BEA Systems WebLogic Server CVE-2017-10271 2/2/2020
18:42
200015013 Web Server Probe ( .nasl ) Vulnerability Scan 2 All systems 2/10/2020
17:00
200020049 SSRF attempt (AWS Metadata Server) - Dotted decimal with overflow representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200003757 "lastlog" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004057 Encoded script injection attempt ( Script.Encode ) Server Side Code Injection 2 All systems 8/7/2017
15:48
200004967 Java code injection - ch.qos.logback.core.db.DriverManagerConnectionSource (Header) Server Side Code Injection 3 Java Servlets/JSP https://blog.doyensec.com/2019/07/22/jackson-gadgets.html, CVE-2019-12384 7/28/2019
16:35
200010128 SSH authorized_keys access (Parameter) Predictable Resource Location 3 All systems 1/29/2018
17:12
200003642 "setlocal" execution attempt (Parameter) Command Execution 3 Microsoft Windows 8/25/2019
11:24
200003928 Werkzeug Debug Shell Command Execution Command Execution 3 Python CVE-2018-14649 4/4/2019
14:31
200100096 "%COMPUTERNAME%" access (parameter) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200001071 settimeout (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001353 CreateObject (Parameter) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200004170 OGNL Java code injection (redirect:) Server Side Code Injection 3 Apache Struts http://struts.apache.org/release/2.3.x/docs/s2-016.html, CVE-2013-2251 2/2/2020
18:42
200003491 "bootcfg" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003595 "net1" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200003406 "xterm" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003759 "logname" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004779 Java code injection - jodd.db.connection.DataSourceConnectionProvider Server Side Code Injection 3 Java Servlets/JSP CVE-2018-12022, CVE-2018-12023 7/28/2019
16:35
200101099 onendEvent (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101174 onmozbrowsererror (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101384 XSS script tag with namespace (Parameter) Cross Site Scripting (XSS) 3 All systems http://en.wikipedia.org/wiki/Cross_site_scripting,
http://www.cgisecurity.com/articles/xss-faq.shtml
6/12/2017
18:54
200002549 SQL-INJ waitfor time (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003389 "umask" execution attempt (Header) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200012006 DOS "Double-precision floating-point number dos attack" (Headers) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200020089 SSRF attempt (Alibaba Metadata Server) - Dot-less hexadecimal representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200001124 href javascript (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101369 AngularJS Sandbox Escape - constructor.prototype.charAt.trim (Parameter) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200003342 "rm" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200007028 Directory Traversal attempt (../Documents and Settings) (Header) Path Traversal 2 Microsoft Windows http://projects.webappsec.org/w/page/13246952/Path%20Traversal 8/25/2019
11:24
200001043 ondrag... (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200004350 ASP.NET code injection - System.Data.DataViewManager (Header) Server Side Code Injection 3 ASP.NET CVE-2017-9424, CVE-2017-9822, CVE-2012-0161 2/2/2020
18:42
200006002 XPath Injection "attribute" XPath Injection 3 All systems 3/9/2014
6:42
200001063 livescript (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200003562 "ksetup" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004056 ASP injection attempt ( server.urlencode ) Server Side Code Injection 2 ASP.NET 1/25/2018
18:15
200004523 Java code injection - com.vaadin.data.util.PropertysetItem (Header) Server Side Code Injection 3 Apache Tomcat 2/2/2020
18:42
200010131 SSH id_rsa access (URI) Predictable Resource Location 3 All systems 1/29/2018
17:12
200100037 test.cgi access Predictable Resource Location 1 CGI 2/10/2020
17:00
200021074 Automated client access "custo" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200002661 SQL-INJ current_database() (URI) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200003216 "cut" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004411 Java code injection - com.sun.jndi.toolkit.dir.LazySearchEnumerationImpl (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
200009121 (GHDB) MySQL DB dump Information Leakage 2 MySQL http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200001778 onDOMMenuItemInactive (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004149 PHP injection attempt ( ini_get_all ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200003253 "grep" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003644 "setlocal" execution attempt (URI) Command Execution 3 Microsoft Windows 3/3/2019
21:08
200004896 Java code injection - naming.QName (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200012017 #RefRef DoS tool (2) Denial of Service 3 All systems https://www.owasp.org/index.php/Denial_of_Service 12/15/2013
5:55
200001001 onmouse... (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200001664 [document] (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200101491 HTML5 Entity (quest) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002066 SQL-INJ sysconstraints SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200020034 SSRF attempt (AWS Metadata Server) - Dot-less decimal with overflow representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200020145 Java code injection - XSLTJaxbProvider (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14540 2/2/2020
18:42
200003461 Java code injection ognl.ClassResolver (Parameter) Server Side Code Injection 3 Java Servlets/JSP https://struts.apache.org/docs/s2-029.html, CVE-2016-0785 7/24/2017
12:16
200020018 Suspicious URL (localtest.me domain service) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001174 HTML entity - &#x... (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200101185 onmozbrowserloadstart (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101598 Vulnerability tool listener - XSShunter (URI) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200101603 Vulnerability tool listener - Acunetix (Header) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200101109 onfullscreenchange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004130 PHP injection attempt ( $_COOKIE ) Server Side Code Injection 3 PHP 8/7/2017
15:48
200020069 SSRF attempt (Oracle Metadata Server) - Dot-less decimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200004222 Flask Server Side Template Injection (.__dict__) (URI) Server Side Code Injection 3 All systems 2/2/2020
18:42
200004335 DotNetNuke - FileSystemsUtils (Parameter) Server Side Code Injection 3 ASP.NET CVE-2017-9822 2/2/2020
18:42
200013007 JWT none algorithm Authentication/Authorization Attacks 3 All systems https://auth0.com/blog/critical-vulnerabilities-in-json-web-token-libraries/ 11/12/2017
11:00
200013013 Apache mod_jk "/jkstatus" access Authentication/Authorization Attacks 3 Apache Tomcat https://0x00sec.org/t/cve-2018-11759-apache-mod-jk-access-control-bypass/9273, CVE-2018-11759 11/20/2018
11:37
200001373 .SaveToFile (URI) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
12/23/2018
12:26
200101376 vbscript: link target (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/24/2017
9:52
200002630 SQL-INJ DATABASE_NAME (Header) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/26/2017
15:15
200003338 "reboot" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004765 Java code injection - com.mysql.cj.jdbc.admin.MiniAdmin Server Side Code Injection 3 Java Servlets/JSP CVE-2019-12086 7/8/2019
18:55
200000085 SQL-INJ Stored procedure "exec *.dbo" (Headers) SQL-Injection 3 Sybase/ASE http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/5/2018
11:08
200002853 SQL-INJ strcmp (Header) SQL-Injection 2 General Database 4/3/2019
15:56
200003830 "copy" execution attempt (Header) Command Execution 1 Microsoft Windows 8/5/2018
11:08
200010071 MySQL Configuration file my.cnf (Parameter) Predictable Resource Location 3 General Database http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200100000 SQLXML content type overflow (.xsl) Buffer Overflow 3 Microsoft SQL Server www.microsoft.com/technet/security/bulletin/MS02-030.mspx, www.westpoint.ltd.uk/advisories/wp-02-0007.txt, http://seclists.org/bugtraq/2002/Jun/113, CVE-2002-0186, 11304-nessus 11/12/2017
11:00
200020152 Java code injection - XSLTJaxbProvider (2) (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14540 2/2/2020
18:42
200001022 onkeydown (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/30/2019
14:57
200001728 onCheckboxStateChange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101261 onstatechange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004872 Java code injection - aspectj.AspectJPointcutAdvisor (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004131 PHP injection attempt ( $_FILES ) Server Side Code Injection 3 PHP 8/7/2017
15:48
200000020 IIS hidden dir access (/_errors/) Predictable Resource Location 1 IIS http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200101189 onmozbrowseropenwindow (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101566 alert() (2) (Parameter) Cross Site Scripting (XSS) 3 All systems 2/25/2019
11:12
200002465 SQL-INJ Oracle PITRIG_DROPMETADATA (Headers) SQL-Injection 2 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003323 "ping" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200002433 SQL-INJ "load_file()" (Parameter) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200021066 Automated client access "download demon" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200101079 ondischargingtimechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004238 JavaScript Code Injection - module.constructor() (Header) Server Side Code Injection 3 All systems 5/4/2017
10:03
200004899 Java code injection - c3p0.WrapperConnectionPoolDataSource (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200012032 PHP wddx boolean element DoS Denial of Service 2 PHP https://bugs.php.net/bug.php?id=72799, CVE-2016-7132 12/26/2017
17:09
200004729 Python code injection - socket.getprotobyname (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200004527 PHP injection attempt - hex (popen) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200009146 (GHDB) Microsoft Site Server Analysis Page Information Leakage 2 IIS http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200009222 Oracle DML Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200010104 Trace.axd file access Predictable Resource Location 1 ASP.NET http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/13/2017
17:29
200101544 //.source (Parameter) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200002175 SQL-INJ create table SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/22/2019
22:41
200004155 Java Code Injection (sensitive attributes) (Headers) Server Side Code Injection 3 Java Servlets/JSP http://www.exploit-db.com/exploits/18329/, CVE-2012-0391, CVE-2012-0392, CVE-2012-0394 8/4/2016
15:33
200004166 gopher injection attempt (Parameter) Server Side Code Injection 2 PHP http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet 2/10/2020
17:00
200012004 DOS "Double-precision floating-point number dos attack" (Parameter) (4) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200100095 "%APPDATA%" access (URI) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200001258 onProgress() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003356 "setenv" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200003722 "cpio" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004378 Java code injection - org.apache.commons.collections.keyvalue.TiedMapEntry (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299, CVE-2016-4398, CVE-2015-6420, CVE-2015-8765, CVE-2016-1985, CVE-2016-1986, CVE-2016-1997, CVE-2016-1998, CVE-2016-2000, CVE-2016-2003, CVE-2016-2009, CVE-2016-1114, CVE-2016-1999, CVE-2016-4369, CVE-2016-4368, CVE-2016-4373, CVE-2016-4385 2/2/2020
18:42
200009147 (GHDB) Analysis Console for Incident Databases (ACID) Page Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200001303 seekSegmentTime() (Parameter) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200003546 "gpupdate" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200101379 action javascript (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200101419 ondblclick (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 7/24/2017
9:52
200003607 "perfmon" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004216 Flask Server Side Template Injection (.__mro__[) (URI) Server Side Code Injection 3 All systems 2/2/2020
18:42
200004502 Java code injection - com.sun.deploy.security.ruleset.DRSHelper (Parameter) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200004562 SharePoint ItemPicker Unsafe Deserialization Server Side Code Injection 3 SharePoint https://www.zerodayinitiative.com/blog/2019/3/13/cve-2019-0604-details-of-a-microsoft-sharepoint-rce-vulnerability, CVE-2019-0604 2/2/2020
18:42
200004706 Python code injection - socket.sendall (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200012010 DOS "Double-precision floating-point number dos attack" (Headers) (5) Denial of Service 3 All systems http://www.exploringbinary.com/java-hangs-when-converting-2-2250738585072012e-308/, CVE-2010-4645 11/12/2017
11:00
200000134 link tag (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
10/29/2018
16:02
200001722 onAlertActive (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101338 onussdreceived (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004039 PHP injection attempt ( posix_setuid ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200100043 Bad HTTP/1.1 Request, Potentially worm attack Non-browser client 1 Various systems securityresponse.symantec.com/avcenter/security/Content/2002.09.13.html, CVE-2002-0656 11/12/2017
11:00
200001287 onStop() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200003164 $SHELL execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/30/2020
17:43
200004306 Java code injection - org.codehaus.groovy.runtime.MethodClosure (Header) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-15095, CVE-2015-32531 2/2/2020
18:42
200010094 /liquibase access Predictable Resource Location 2 Spring Boot http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/24/2017
15:40
200001694 onbeforescriptexecute (Parameter) Cross Site Scripting (XSS) 3 All systems 5/30/2019
14:57
250000045 (PSM) SQL-INJ "declare begin" SQL-Injection 3 PSM 6/27/2013
7:12
200002545 SQL-INJ select instr (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
13:37
200004277 Java code injection FreeMarker variable assign (Parameter) Server Side Code Injection 3 Apache Struts https://insinuator.net/2016/07/dilligent-bug/,
http://blog.portswigger.net/2015/08/server-side-template-injection.html, CVE-2016-4462
2/2/2020
18:42
200004647 Python code injection - os.openpty (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200009090 ASP source code leakage (32) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200010080 .sqlite file access Predictable Resource Location 3 All systems 3/26/2017
21:49
200019053 Malicious program ( /lukka ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200021041 Malicious Web Site crawler "CheeseBot" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200002087 SQL-INJ pg_attribute SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004561 Apache Solr jmx.serviceUrl Remote Code Execution Server Side Code Injection 3 Other Web Server CVE-2019-0192 3/13/2019
10:34
200004844 Java code injection - server.UnicastRef (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004909 Java code injection - server.UnicastRemoteObject (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002162 SQL-INJ select to_number (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200005004 LDAP injection attempt ( uidnumber ) LDAP Injection 3 All systems 3/9/2014
6:42
200003732 "egrep" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200004019 PHP injection attempt ( move_uploaded_file ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004482 Apache Spark Job Schedule Remote Code Execution Server Side Code Injection 3 Java Servlets/JSP https://github.com/aRe00t/rce-over-spark/ 2/10/2020
17:00
200101123 onholding (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002161 SQL-INJ select data-type (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
6/6/2018
14:02
200002563 SQL-INJ sys.user$ (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 10/19/2015
17:50
200002747 SQLINJ - NoSQL [$ne] SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200101504 HTML5 Entity (sol) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200004694 Python code injection - socket.listen (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200004904 Java code injection - config.PropertyPathFactoryBean (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002860 SQL-INJ - MySQL Interpreted Comment (SELECT) (Parameter) SQL-Injection 2 MySQL 2/19/2020
19:10
200020137 Localhost SSRFmap tool evasion (Enclosed alphanumeric - 127.0.0.1) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200000115 div tag: behavior (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200001908 onSSWindowStateReady (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003235 "export" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200004150 PHP injection attempt ( ini_get_all ) (Headers) Server Side Code Injection 2 PHP 3/9/2014
6:42
200000158 document.cookie (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001865 onMozRotateGestureStart (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200001969 onanimationstart (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200003089 "cp" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003596 "net1" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004716 Python code injection - socket.getfqdn (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200004915 Java code injection - rowset.JdbcRowSetImpl (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001567 ontimeupdate (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200101090 ondragexit (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002192 SQL-INJ waitfor delay SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003084 "alias" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200104002 Java code injection - net.sf.ehcache.transaction.manager.selector.GlassfishSelector (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-20330 1/27/2020
18:47
200009004 Statistics Software Information Leakage (1) Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200015042 Web Server Probe ( n-stealth ) - 3 Vulnerability Scan 2 All systems 2/27/2012
6:30
200019016 Malicious program ( suntzu= ) Trojan/Backdoor/Spyware 3 PHP 8/7/2017
15:48
200011034 Generic Format String attack attempt 1 (headers) Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 3/9/2014
6:42
200000122 div tag: expression (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001915 onSVGError (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101177 onmozbrowsericonchange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002518 SQL-INJ drop table (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003324 "ping" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003664 "taskkill" execution attempt (Header) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200004444 Drupal Core Rendering Callback (#pre_render) Server Side Code Injection 3 PHP https://research.checkpoint.com/uncovering-drupalgeddon-2/, CVE-2018-7600 4/15/2018
12:12
200004497 Java code injection - org.slf4j.ext.EventData (Header) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200000129 img tag: src/dynsrc/lowsrc (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200101091 ondragexit (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002027 SQL-INJ cast( SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/25/2014
9:12
200003007 "tclsh" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 1/5/2020
15:24
200009014 SQL Information Leakage (5) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200101103 onfocusin (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101418 ondblclick (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002259 SQL-INJ DBMS_PIPE SQL-Injection 2 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002571 SQL-INJ UTL_HTTP (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200001218 onCut() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001568 ontimeupdate (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200001612 onactivate (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200001770 onDOMLinkAdded (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003653 "sfc" execution attempt (URI) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200009128 (GHDB) phpSystem Page Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200002105 SQL-INJ sp_addextendedproc SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002139 SQL-INJ openquery SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002846 SQL-INJ expressions like AND SELECT * FROM (URI) SQL-Injection 3 General Database 2/26/2019
23:23
200011033 Generic Format String attack attempt 1 (URL) Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 3/9/2014
6:42
200101453 createPopup (Parameter) Cross Site Scripting (XSS) 2 All systems 9/13/2017
17:29
200100330 PHP-CGI Shell Code Injection (v2) Command Execution 3 PHP http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/, CVE-2012-1823 8/5/2018
11:08
200004011 PHP injection attempt ( gzcompress ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004717 Python code injection - socket.getfqdn (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200001438 #NAME? Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
9/17/2018
17:54
200001486 style list-style-image:url (Parameter) (2) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001489 confirm() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101310 ontouchleave (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200010002 "/soap/.../spy/" access Predictable Resource Location 2 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/9/2014
6:42
200100072 ws_ftp.ini access Predictable Resource Location 2 All systems CVE-1999-1078 8/4/2016
15:33
200019106 Malicious program ( /r.php ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200009255 SOAP Fault error (2) Information Leakage 2 XML http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001449 Malformed US-ASCII - script tags (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200101417 ondblclick (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200003361 "sort" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 4/4/2019
15:39
200003799 "sudo" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200101490 HTML5 Entity (quest) (Header) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002431 SQL-INJ "SELECT IF()" (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200019071 Malicious program ( iMHaBiRLiGi PhpFtp ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200022016 Generic Remote File/Path Include Attempt (7) Remote File Include 3 All systems http://www.owasp.org/index.php/Top_10_2007-Malicious_File_Execution 10/6/2014
8:58
200001247 onLoseCapture() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/5/2019
9:30
200001349 DOMParser (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001417 FRAMESET tag (URL) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001662 window (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200009194 "Microsoft OLE DB Provider" Error Message Information Leakage 2 Microsoft Windows http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001896 onSSTabRestored (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002629 SQL-INJ DATABASE_NAME (Parameter) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 1/26/2017
15:15
200003726 "diff3" execution attempt (Parameter) Command Execution 3 Unix/Linux 3/4/2019
14:16
200009086 ASP source code leakage (28) Information Leakage 2 ASP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200101498 HTML5 Entity (rbrace) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002081 SQL-INJ attrelid SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003728 "diff3" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
250000059 (PSM) SQL-INJ drop database SQL-Injection 3 PSM 6/27/2013
7:12
200101464 HTML5 Entity (Tab) (URI) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200003184 "chdir" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003217 "date" execution attempt (Header) Command Execution 1 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200010085 /tmp dir access Predictable Resource Location 2 All systems http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 8/3/2017
11:44
200004280 Object Graph Navigation Library Expression Injection (URI) Server Side Code Injection 3 Apache Struts CVE-2013-2134, CVE-2013-2135, CVE-2017-5638, CVE-2014-0116, CVE-2016-4438, CVE-2010-1870, CVE-2012-0391, CVE-2012-0392, CVE-2012-0393, CVE-2012-0394, CVE-2011-3923, CVE-2013-1965, CVE-2013-2251, CVE-2013-2248, CVE-2014-0094, CVE-2014-0112, CVE-2014-0113, CVE-2014-0114, CVE-2016-3082, CVE-2016-0785, CVE-2016-3081, CVE-2016-3087 1/28/2018
19:31
200001536 onloadedmetadata (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001898 onSSTabRestoring (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101260 onsmartcard-remove (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101368 AngularJS Sandbox Escape - constructor.prototype.charAt.join (URI) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200019077 Malicious program ( PHVayv ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200021105 Malicious Web Site crawler (Fetch API Request) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
250000062 (PSM) SQL-INJ expressions like "or 1=1" (1) SQL-Injection 3 PSM 6/27/2013
7:12
200010053 /cgi-local/ access Predictable Resource Location 1 CGI http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 2/10/2020
17:00
200101100 onendEvent (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002143 SQL-INJ join statement (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200003431 Java Base64 serialized object - Runtime.getRuntime (Parameter) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852, CVE-2013-2165
2/2/2020
18:42
200004116 Server-Side Include Injection Attempt - 6 (Headers) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200101426 console.info (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200002073 SQL-INJ user_constraints SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002427 SQL-INJ expressions like (1) "' && 1 --" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200001203 onBegin() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001382 launchURL (URI) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101001 oncardstatechange (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004181 Generic Server Side Code Injection Server Side Code Injection 3 Unix/Linux https://www.owasp.org/index.php/Unrestricted_File_Upload 2/10/2020
17:00
200003325 "pkill" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200004040 PHP injection attempt ( ftp_get ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004539 PHP injection attempt - variable assignment (passthru) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200100029 /Admin_files access Predictable Resource Location 1 All systems 2/10/2020
17:00
200101018 oncommand (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101600 Vulnerability tool listener - Burp Suite (Header) Cross Site Scripting (XSS) 2 All systems 2/25/2020
10:29
200002258 SQL-INJ DBMS_PIPE (Headers) SQL-Injection 2 Oracle http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002444 SQL-INJ "' --" (SQL comment) (Parameter) (2) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/13/2018
13:28
200021092 Automated client access "perl" (corrected) Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 7/24/2012
5:34
200003087 "ed" execution attempt Command Execution 3 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 3/4/2019
14:16
200003886 "reg compare" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004724 Python code injection - socket.gethostbyaddr (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200021001 Automated client access "snoopy" Non-browser client 1 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200001704 Angular.js attribute ng-controller (Header) Cross Site Scripting (XSS) 3 AngularJS https://docs.angularjs.org/api/ng/directive/ngModel 1/15/2020
14:12
200101378 action javascript (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200002290 SQL-INJ "*_name()" sql functions SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
9/25/2018
17:14
200002792 NoSQL Injection /_log (Parameter) SQL-Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 2/2/2020
18:42
200004616 Python code injection - os.getresuid (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200009209 Oracle Invalid Argument Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200012031 Node.js WebSocket Handshake zlib DoS Denial of Service 3 Node.js CVE-2017-14919 12/25/2017
11:20
200020156 Java code injection - SharedPoolDataSource Server Side Code Injection 3 Java Servlets/JSP CVE-2019-16942, CVE-2019-16943 2/2/2020
18:42
200101404 onpointerout (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/12/2017
18:54
200002854 sqlmap percent signs evasion - union (Parameter) SQL-Injection 3 ASP 2/4/2020
17:50
200004982 Java code injection - manager.DefaultTransactionManagerLookup (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200020128 Localhost SSRFmap tool evasion (127.0.1) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200004397 Java code injection - com.documentum.fc.client.impl.typeddata.ValueHolder (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200010059 /var execution attempt (Header) Predictable Resource Location 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 10/21/2014
4:06
200100111 "%PROCESSOR_ARCHITECTURE%" access (URI) Predictable Resource Location 1 Microsoft Windows http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 9/17/2018
17:18
200002738 SQL-INJ ' UNION SELECT (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/24/2017
16:21
200004531 PHP injection attempt - hex (system) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200004595 Python code injection - os.environ (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200100073 Netscape dir index wp Directory Indexing 2 Other Web Server CVE-2000-0236, 1063-bugtraq, 10352-nessus 11/12/2017
11:00
200001259 onProgress() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001325 eval() (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200001856 onMozOrientation (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002182 SQL-INJ drop trigger SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200015094 Malicious Web Site crawler (WhatWeb) Vulnerability Scan 2 All systems 1/29/2018
14:44
250000011 (PSM) CreateObject Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200009192 "unable to perform query" Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200013009 PeopleSoft Servlet Directives Default Password Usage Authentication/Authorization Attacks 3 Other Web Server http://peoplesoft.wikidot.com/peoplesoft-servlet-directives 12/25/2017
11:20
200001917 onSVGLoad (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200001978 onbeforeprint (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004516 ASP.NET code injection - Process.Start (Header) Server Side Code Injection 3 ASP.NET 1/22/2019
22:41
200009103 PHP Information Leakage (3) Information Leakage 3 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200003814 "vdir" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004983 Java code injection - manager.DefaultTransactionManagerLookup (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200015073 Nmap web server probe (nice ports Trinity) Vulnerability Scan 1 All systems http://nmap.org/book/man-examples.html 11/3/2013
1:53
200020127 Localhost SSRFmap tool evasion ([::]) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001173 HTML entity - &#x... (URI) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/12/2017
18:54
200101200 onmozbrowsertitlechange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002269 SQL-INJ bitval (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002274 SQL-INJ Stored procedure "exec fn_" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/5/2018
11:08
200022025 PHP remote file include attempt - data:// (Header) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200001188 onData...() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200101422 onEvent (URI) Cross Site Scripting (XSS) 1 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003194 "chown" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003433 Java Base64 serialized object - Runtime.getRuntime (URI) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852, CVE-2013-2165
2/2/2020
18:42
200003221 "dig" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200001749 onDOMAutoComplete (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200004635 Python code injection - os.dup2 (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200004500 Java code injection - flex.messaging.util.concurrent.AsynchBeansWorkManagerExecutor (Header) Server Side Code Injection 2 Java Servlets/JSP CVE-2018-14718, CVE-2018-19362, CVE-2018-19361, CVE-2018-19360, CVE-2018-14719, CVE-2018-14720, CVE-2018-14721 2/2/2020
18:42
200009226 Oracle Syntax Error Message Information Leakage 2 Oracle http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001330 setRequestHeader() (Parameter) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101324 onupdateready (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101570 new Function() (URI) Cross Site Scripting (XSS) 3 All systems 2/26/2019
19:42
200002116 SQL-INJ xp_regdeletevalue SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003294 "mkdir" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 1/5/2020
15:24
200004553 PHP injection attempt - variable assignment (eval) (Parameter) Server Side Code Injection 3 PHP 1/22/2019
22:41
200002731 SQL-INJ DBA_USERS (URI) SQL-Injection 3 Oracle http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200004927 Java code injection - runtime.ConvertedClosure (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200007021 Directory Traversal attempt (../Program Files) (Parameter) Path Traversal 2 Microsoft Windows http://projects.webappsec.org/w/page/13246952/Path%20Traversal 8/25/2019
11:24
200001367 .responseBody (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
5/28/2014
5:07
200001463 href vbscript (Headers) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001533 onloadeddata (Header) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200002656 SQL-INJ pg_shadow (Parameter) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200001639 window.document (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001665 [document] (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200001899 onSSTabRestoring (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200009218 Unclosed Quotation Mark Error Message Information Leakage 2 Microsoft SQL Server http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001209 onContextMenu() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200101197 onmozbrowsershowmodalprompt (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200004560 Java code injection - javax.naming.InitialContext.doLookup Server Side Code Injection 3 Macromedia ColdFusion CVE-2019-7091 2/2/2020
18:42
200004827 Java code injection - util.ClassLoader (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200101448 console.groupCollapsed (Header) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200002063 SQL-INJ systables SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002428 SQL-INJ expressions like (1) "' || 1 --" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002666 SQL-INJ inet_server_port() (Header) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200002409 SQL-INJ waitfor time (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002594 SQL Injection: End Transaction (URI) SQL-Injection 3 General Database https://msdn.microsoft.com/en-us/library/zh3heeb8.aspx 2/10/2020
17:00
200003292 "make" execution attempt (URI) Command Execution 2 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003435 Java Base64 serialized object - groovy.runtime (Header) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852, CVE-2013-2165
2/2/2020
18:42
200001679 = window; (Header) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101236 onpopupshowing (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101355 AngularJS Sandbox Escape - sub.call.call (Header) Cross Site Scripting (XSS) 3 AngularJS 12/23/2018
12:26
200101547 esi tag (Parameter) Cross Site Scripting (XSS) 2 All systems https://gosecure.net/2018/04/03/beyond-xss-edge-side-include-injection/ 4/4/2018
12:57
200006005 XPath Injection "local-name(" XPath Injection 3 All systems 3/9/2014
6:42
200009054 PHP source code leakage (1) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200004162 PHP injection attempt (require) Server Side Code Injection 3 PHP http://www.owasp.org/index.php/Code_Injection 5/16/2013
5:37
200000068 Unparsed ASP/JSP directive in response "<%" Information Leakage 3 ASP.NET http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200009250 PHP Fatal Error Information Leakage Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/11/2011
6:49
250000054 (PSM) SQL-INJ "UPDATE SET" SQL-Injection 3 PSM 6/27/2013
7:12
200001956 onafterprint (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101035 oncompositionstart (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002275 SQL-INJ Stored procedure "exec MS_" (Parameter) SQL-Injection 3 Microsoft SQL Server http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
8/5/2018
11:08
200002592 SQL Injection: End Transaction (Parameter) SQL-Injection 3 General Database https://msdn.microsoft.com/en-us/library/zh3heeb8.aspx 2/10/2020
17:00
200001462 href vbscript (URI) (2) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200004008 PHP injection attempt (fread) (Parameter) Server Side Code Injection 2 PHP http://php.net/manual/en/function.fread.php 12/12/2016
11:41
200015028 Web Server Probe ( Wordpress Hash Grabber ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200003165 Unix fork bomb code injection Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Fork_bomb 5/16/2013
6:32
200004868 Java code injection - autoproxy.AspectJAwareAdvisorAutoProxyCreator$PartiallyComparableAdvisorHolder (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004980 Java code injection - transform.XSLTransformer (Header) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200019057 Malicious program ( News Remote PHP Shell Injection ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200000095 XSS script target (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/22/2019
22:41
200101098 onenabled (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101180 onmozbrowserloadend (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101293 ontabviewshown (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200021056 Malicious Web Site crawler "Shockwave Flash" spam bot Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 1/30/2020
17:43
200003891 "reg flags" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200004395 Java code injection - oracle.jdbc.pool.OraclePooledConnection (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2015-7450, CVE-2015-4852, CVE-2015-8103, CVE-2016-3427, CVE-2016-0788, CVE-2016-3642, CVE-2016-4372, CVE-2017-7525, CVE-2017-9805, CVE-2017-7504, CVE-2017-7504, CVE-2017-5878, CVE-2017-5586, CVE-2016-9299 2/2/2020
18:42
200004786 Java code injection - handler.HandlerResolverImpl (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004665 Python code injection - sys.modules (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200001889 onRadioStateChange (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200001982 onblocked (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101317 ontouchstart (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101519 HTML5 Entity (dollar) (Parameter) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200009217 DBNETLIB ASP.NET Error Message Information Leakage 2 ASP.NET http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200101054 ondataerror (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200002658 SQL-INJ pg_shadow (URI) SQL-Injection 3 PostgreSQL http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200004873 Java code injection - aspectj.AspectJAroundAdvice (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009077 SQL Information Leakage (31) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200001750 onDOMAutoComplete (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002119 SQL-INJ xp_regenumkeys SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200003195 "chsh" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200003715 "chattr" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200012040 PHP PHAR Entry Long File Name DoS Denial of Service 2 PHP CVE-2016-10159 3/8/2018
15:07
200101028 oncomplete (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002337 SQL-INJ attrelid (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002818 NoSQL Injection _config (URI) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200003850 "net pause" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004709 Python code injection - socket.fileno (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200010058 HNAP1 access Predictable Resource Location 2 All systems 2/10/2020
17:00
200012055 Apache Struts REST Plugin XMLMessage DoS (Parameter) Denial of Service 2 Apache Struts CVE-2018-1327 7/28/2019
16:35
200001480 type = application / script (Parameter) (2) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200004960 Java code injection - rowset.OracleJDBCRowSet (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200002535 SQL-INJ insert into (2) (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200100041 Cisco Catalyst command execution attempt Command Execution 2 Cisco CVE-2000-0945 8/4/2016
15:33
200004464 Java code injection - org.apache.commons.fileupload.disk.DiskFileItem (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-1000031, CVE-2013-2186, CVE-2013-2185 2/2/2020
18:42
200002478 SQL-INJ expressions like "sleep()" (1) (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 4/22/2014
7:14
200003734 "egrep" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003782 "pwck" execution attempt (URI) Command Execution 3 Unix/Linux 8/5/2018
11:08
200003840 "net file" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200001337 unescape() (Headers) Cross Site Scripting (XSS) 3 JavaScript http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/20/2019
11:56
200101545 //.source (Header) Cross Site Scripting (XSS) 3 All systems 3/20/2018
13:54
200002297 SQL-INJ current_timestamp() (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200002302 SQL-INJ "IS (NOT) NULL" SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200009069 SQL Information Leakage (23) Information Leakage 2 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/1/2010
2:22
200021030 Malicious Web Site crawler "takeout" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/11/2019
17:48
200004291 Java code injection - HtmlAdaptor remote .war deploy Server Side Code Injection 3 Apache Struts CVE-2007-1036 11/12/2017
11:00
200009162 Invalid DBC File Name Information Leakage 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200010026 PHP Easter Egg access (3) Predictable Resource Location 2 PHP http://www.webappsec.org/projects/threat/classes/predictable_resource_location.shtml 3/1/2010
2:22
200019080 Malicious program ( zehir ) upload Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200020009 Suspicious URL (.nip.io domain service) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200101120 onheld (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200101457 HTML5 Entity (lpar) (Header) Cross Site Scripting (XSS) 2 All systems https://www.quackit.com/character_sets/html5_entities/ 11/12/2017
11:00
200002086 SQL-INJ object_id SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/12/2018
20:11
200004823 Java code injection - jmx.StatisticsService (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200001481 <![CDATA[ (Parameter) (2) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200015041 Web Server Probe ( n-stealth ) - 2 Vulnerability Scan 2 All systems 3/1/2010
2:22
200022019 '_CONFIG[files][functions_page]' Parameter Remote File Inclusion Remote File Include 3 PHP http://www.owasp.org/index.php/Top_10_2007-Malicious_File_Execution, CVE-2008-1876 6/27/2016
17:23
200002581 SQL-INJ syscat.dbauth (Header) SQL-Injection 3 IBM DB2 http://www.owasp.org/index.php/SQL_Injection 11/5/2018
13:03
200004929 Java code injection - runtime.ConvertedClosure (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200020030 SMB SSRF attempt (UNC) (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200001205 onBegin() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200001891 onRadioStateChange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101559 " src http: (Header) Cross Site Scripting (XSS) 2 All systems 2/19/2019
11:23
200002558 SQL-INJ mysql.db (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200011066 Nginx Range Filter Module Integer Overflow Buffer Overflow 2 Nginx https://github.com/nixawk/labs/issues/15, CVE-2017-7529 12/6/2018
11:54
200020085 SSRF attempt (Alibaba Metadata Server) - Dot-less decimal with overflow representation (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200021137 Automated client access "ms-office" Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 3/17/2016
17:22
200022005 Generic Remote File/Path Include Attempt 5 (include param, http/https) Remote File Include 3 All systems 3/9/2014
6:42
200001675 {:window} (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/xss-faq.html,
http://en.wikipedia.org/wiki/Cross_site_scripting
7/19/2015
14:11
200101450 console.trace (Parameter) Cross Site Scripting (XSS) 2 All systems 7/24/2017
9:52
200003054 Directory Traversal attempt (../etc/) (Parameter) Path Traversal 1 Unix/Linux http://www.webappsec.org/projects/threat/classes/os_commanding.shtml 10/29/2018
16:02
200004409 Java code injection - com.sun.jndi.rmi.registry.BindingEnumeration (Parameter) Server Side Code Injection 3 JavaServer Faces (JSF) CVE-2016-5229, CVE-2017-2608 2/2/2020
18:42
200019001 Malicious program ( =ftp:/ ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200019042 Malicious program ( /phpshell.ph ) Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200004241 JavaScript Code Injection - process.constructor() (Header) Server Side Code Injection 3 All systems 5/4/2017
10:03
200004666 Python code injection - sys.path (Parameter) Server Side Code Injection 3 Python 4/16/2019
15:19
200015030 Web Server Probe ( cgichk ) Vulnerability Scan 2 All systems 2/10/2020
17:00
200022034 PHP remote file include attempt - ogg:// (Parameter) Remote File Include 2 PHP http://php.net/manual/en/wrappers.php 2/10/2020
17:00
200001497 history.pushState() (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/30/2020
17:43
200001962 onanimationend (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101408 onpointerup (Parameter) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200004165 PHP code file upload Other Application Attacks 3 PHP https://www.owasp.org/index.php/Unrestricted_File_Upload, CVE-2012-2902, CVE-2018-9206 2/2/2020
18:42
200001159 .innerhtml (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/15/2020
14:12
200001257 onProgress() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200015032 Web Server Probe ( Sun-Tzu ) Vulnerability Scan 2 All systems 2/10/2020
17:00
200020097 SSRF attempt (Alibaba Metadata Server) - Dotted hexadecimal representation (Parameter) Other Application Attacks 2 All systems 2/2/2020
18:42
200004743 Python code injection - socket.getsockopt (Header) Server Side Code Injection 3 Python 4/16/2019
16:06
200004898 Java code injection - c3p0.WrapperConnectionPoolDataSource (2) (Header) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004993 JavaScript Object Prototype Pollution (Parameter) Server Side Code Injection 3 JavaScript https://github.com/HoLyVieR/prototype-pollution-nsec18/blob/master/paper/JavaScript_prototype_pollution_attack_in_NodeJS.pdf 8/25/2019
11:24
200006016 XPath Injection "element()" XPath Injection 3 All systems 8/25/2019
11:24
200001519 onforminput (URI) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 11/21/2012
13:22
200001888 onMozTouchUp (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200002757 SQLINJ - NoSQL [$gt] (JSON) (Parameter) SQL-Injection 3 MongoDB https://docs.mongodb.com/manual/reference/operator/query-comparison/ 2/2/2020
18:42
200003907 SaltStack "salt-api" Empty Token Arbitrary Command Execution Command Execution 3 Other Web Server https://docs.saltstack.com/en/2017.7/topics/releases/2017.7.8.html#security-fix, CVE-2018-15751 12/20/2018
16:04
200006030 XPath Injection "preceding" XPath Injection 3 All systems 8/25/2019
11:24
200015023 Web Server Probe ( S.T.A.L.K.E.R. ) Vulnerability Scan 2 All systems 2/27/2012
6:30
200009165 JSP Error NullPointerException Information Leakage 3 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200011037 Generic Format String attack attempt 2 (headers) Buffer Overflow 3 All systems http://www.webappsec.org/projects/threat/classes/format_string_attack.shtml 3/9/2014
6:42
200000165 onmouse... (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200003606 "perfmon" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200003880 "reg restore" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200009148 (GHDB) SnortSnarf Page Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/1/2010
2:22
200003442 Java code injection - java/lang/Process (URI) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852
3/20/2018
18:30
200003560 "klist" execution attempt (URI) Command Execution 3 Microsoft Windows 3/3/2019
21:08
200004112 Server-Side Include Injection Attempt - 4 (Headers) Server Side Code Injection 3 SSI (Server Side Includes) 2/27/2012
6:30
200021117 Malicious Web Site crawler (atSpider) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200001185 onBefore...() (URI) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
2/27/2012
6:30
200001511 oncanplaythrough (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 5/30/2019
14:57
200101578 ReactJS code injection - dangerouslySetInnerHTML (Header) Server Side Code Injection 2 ReactJS 4/16/2019
13:29
200003432 Java Base64 serialized object - Runtime.getRuntime (Header) Server Side Code Injection 3 Java Servlets/JSP http://foxglovesecurity.com/2015/11/06/what-do-weblogic-websphere-jboss-jenkins-opennms-and-your-application-have-in-common-this-vulnerability/,
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-4852, CVE-2015-4852, CVE-2013-2165
2/2/2020
18:42
200004893 Java code injection - unmarshaller.Base64Data (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200009126 (GHDB) PRTG Traffic Grapher monitoring results Information Leakage 2 Various systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml,
http://johnny.ihackstuff.com/ghdb.php,
http://en.wikipedia.org/wiki/Google%20hacking
3/9/2014
6:42
200010172 "/kubernetes.io/serviceaccount" access (Parameter) Predictable Resource Location 3 Other Web Server 8/25/2019
11:24
200021121 Malicious Web Site crawler (ContentSmartz) Non-browser client 1 All systems http://en.wikipedia.org/wiki/Web_scraping 1/30/2020
17:43
200001143 src &# (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001283 onSeek() (Headers) Cross Site Scripting (XSS) 3 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
1/2/2020
15:08
200101140 onlevelchange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200003879 "reg restore" execution attempt (Parameter) Command Execution 3 Microsoft Windows 1/22/2019
22:41
200022006 Generic Remote File/Path Include Attempt 6 (include param, ftp/ftps) Remote File Include 3 All systems 3/9/2014
6:42
200002365 SQL-INJ msysrelationships (Headers) SQL-Injection 2 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004625 Python code injection - os.uname (Header) Server Side Code Injection 3 Python 4/16/2019
15:19
200009259 MySQLDumper Multiple Script Direct Request Information Disclosure (restore.php) Information Leakage 3 PHP https://packetstormsecurity.com/files/112304/MySQLDumper-1.24.4-LFI-XSS-CSRF-Code-Execution-Traversal.html, CVE-2012-4255 11/12/2017
11:00
200002287 SQL-INJ "ALTER USER SET PASSWORD" (Parameter) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
1/1/2015
16:30
200003926 "ruby" execution attempt (2) Command Execution 3 Unix/Linux 3/3/2019
21:59
200009100 PHP source code leakage (4) Information Leakage 2 PHP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200015081 Web Server Probe ( bsqlbf ) Vulnerability Scan 3 All systems 7/24/2017
9:52
200004924 Java code injection - runtime.MethodClosure (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200019131 BeEF HTML detection (1) Trojan/Backdoor/Spyware 3 All systems http://beefproject.com/ 4/16/2014
8:26
200021043 Malicious Web Site crawler "hl_ftien_spider" Non-browser client 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
200002813 NoSQL Injection /_compact (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200003589 "msiexec" execution attempt (Header) Command Execution 3 Microsoft Windows 8/5/2018
11:08
200004030 PHP injection attempt ( proc_terminate ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200004757 Zimbra Collaboration ProxyServlet SSRF Server Side Code Injection 3 Java Servlets/JSP CVE-2019-9621, CVE-2019-9670 2/2/2020
18:42
200004368 Java code injection - getWriter (URI) Server Side Code Injection 3 JavaServer Faces (JSF) 2/1/2018
14:02
200004558 Jenkins Pipeline Plugin Remote Code Execution Server Side Code Injection 3 Jenkins https://blog.orange.tw/2019/02/abusing-meta-programming-for-unauthenticated-rce.html, CVE-2019-1003000 2/26/2019
20:17
200009236 SQLOleDB Connection String Information Leakage 3 General Database http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 12/21/2011
6:12
200001697 onafterscriptexecute (Parameter) Cross Site Scripting (XSS) 3 All systems 5/30/2019
14:57
200001926 onSVGUnload (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101415 <div tag: style (Header) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
6/19/2017
14:29
200002572 SQL-INJ UTL_HTTP (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 2/10/2020
17:00
200003223 "dir" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200009166 JSP Error JspCompileException Information Leakage 2 Java Servlets/JSP http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 2/27/2012
6:30
200020114 Localhost SSRFmap tool evasion (127.1) (Host header) Other Application Attacks 2 All systems 2/2/2020
18:42
200101347 onvoicechange (URI) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/26/2017
15:15
200101529 new Image().src (URI) Cross Site Scripting (XSS) 3 All systems 2/1/2018
14:02
200002621 SQL-INJ SELECT FROM DUAL (Header) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection 1/18/2017
15:31
200002807 NoSQL Injection /_purge (Parameter) NoSQL Injection 3 CouchDB http://docs.couchdb.org/en/2.0.0/api/ 8/4/2019
14:52
200003817 "whereis" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200004029 PHP injection attempt ( shell_exec ) Server Side Code Injection 2 PHP 1/22/2019
22:41
200019095 Malicious program ( MyShell ) access Trojan/Backdoor/Spyware 3 All systems 8/7/2017
15:48
200000118 div tag: binding (Headers) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001571 onundo (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 1/2/2020
15:08
200002114 SQL-INJ xp_regremovemultistring SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200002168 SQL-INJ insert into (Headers) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
2/10/2020
17:00
200018020 Session Fixation Attempt - 4 (URI) Other Application Attacks 2 All systems 3/9/2014
6:42
250000009 (PSM) activexobject Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200001695 onbeforescriptexecute (Header) Cross Site Scripting (XSS) 3 All systems 6/5/2019
9:30
200002852 SQL-INJ strcmp (Parameter) SQL-Injection 2 General Database 4/3/2019
15:56
200003902 Couchdb Query Servers Arbitrary Command Execution Command Execution 3 CouchDB https://github.com/vulhub/vulhub/tree/master/couchdb/CVE-2017-12636, CVE-2017-12636 6/14/2018
17:05
200011062 PHP timelib_meridian malformed dateTime element BOF (Header) Buffer Overflow 2 PHP https://www.exploit-db.com/exploits/43133/, CVE-2017-16642 2/1/2018
14:02
200012036 libxml xmlSnprintfElementContent DoS (Header) Denial of Service 3 All systems http://www.openwall.com/lists/oss-security/2017/05/15/1, CVE-2017-9047 2/1/2018
14:02
200012043 SAP NetWeaver DoS Attempt - <a> (URI) Denial of Service 2 XML CVE-2016-10311 3/18/2018
15:16
200002523 SQL-INJ expressions like "' && 1 --" (URI) SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
11/19/2014
14:17
200003290 "mail" execution attempt (URI) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 8/5/2018
11:08
200003405 "xterm" execution attempt (Header) Command Execution 3 Unix/Linux http://en.wikipedia.org/wiki/Arbitrary_code_execution 9/17/2018
17:18
200004740 Python code injection - socket.getsockname (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200009008 Statistics Software Information Leakage (5) Information Leakage 2 All systems http://www.webappsec.org/projects/threat/classes/information_leakage.shtml 3/9/2014
6:42
250000007 (PSM) .open Cross Site Scripting (XSS) 3 PSM 6/27/2013
7:12
200001133 src vbscript (Parameter) Cross Site Scripting (XSS) 2 All systems http://www.cgisecurity.com/articles/xss-faq.shtml,
http://en.wikipedia.org/wiki/Cross_site_scripting
3/9/2014
6:42
200001682 toString (Parameter) Cross Site Scripting (XSS) 2 JavaScript http://www.cgisecurity.com/xss-faq.html 6/20/2019
11:56
200002064 SQL-INJ sysfilegroups SQL-Injection 3 General Database http://www.owasp.org/index.php/SQL_Injection,
http://www.webappsec.org/projects/threat/classes/sql_injection.shtml
3/9/2014
6:42
200004962 Java code injection - rowset.OracleJDBCRowSet (2) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004686 Python code injection - socket.close (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200004708 Python code injection - socket.fileno (Parameter) Server Side Code Injection 3 Python 4/16/2019
16:06
200004825 Java code injection - util.ClassLoader (2) (Parameter) Server Side Code Injection 3 IBM WebSphere 7/28/2019
16:35
200004979 Java code injection - transform.XSLTransformer (Parameter) Server Side Code Injection 3 Java Servlets/JSP CVE-2019-14439, CVE-2019-14379 8/7/2019
18:44
200001977 onbeforeprint (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200101181 onmozbrowserloadend (Header) Cross Site Scripting (XSS) 3 All systems http://www.owasp.org/index.php/XSS_Filter_Evasion_Cheat_Sheet#Event_Handlers 6/5/2019
9:30
200003518 "eraseg" execution attempt (URI) Command Execution 3 Microsoft Windows 1/5/2020
15:24
200003772 "objdump" execution attempt (Header) Command Execution 3 Unix/Linux 8/5/2018
11:08
200010076 MySQL Configuration file my.ini (URI) Predictable Resource Location 3 General Database http://www.webappsec.org/pr