IPS Signature Database Update

Name ips.sig
Version 3.0.251
StoneOS Firewall 5.5R8P2 or above, and NIPS/IDS 5.5R5-3.5 or above, and BDS 5.5R8-3.3 or above
Release Date 2025-04-07
New Signature
(10)		 Rule ID Rule Name StoneOS Detail
338776 Gradio proxy SSRF Vulnerability (CVE-2023-34239) 5.0R4 or above click for more information
338777 Jupyter Server Windows NTLMv2 Hash Leakage Vulnerability (CVE-2024-35178) 5.5R5 or above click for more information
338774 Gradio Path Traversal Vulnerability (CVE-2024-0964 CVE-2024-1728) 5.5R5 or above click for more information
338775 Stable Diffusion Web UI Local File Read Vulnerability (CVE-2023-46315) 5.0R4 or above click for more information
338772 Chamilo LMS 1.11.24 Remote Code Execution Vulnerability (CVE-2023-4220) 5.0R4 or above click for more information
338782 Gradio Path Traversal Vulnerability (CVE-2024-1561) 5.0R4 or above click for more information
338771 WordPress plugin HUSKY Products Filter Professional for WooCommerce Directory Traversal Vulnerability (CVE-2025-1661) 5.0R4 or above click for more information
338781 Gradio Local Files Include Vulnerability (CVE-2024-4941) 5.5R5 or above click for more information
338778 Jupyter Server jupyter-scheduler Unauthorized Access Vulnerability (CVE-2024-28188) 5.0R4 or above click for more information
338769 CrushFTP Authentication Bypass Vulnerability (CVE-2025-2825) 5.5R5 or above click for more information
Updated Signature
(87)		 Rule ID Rule Name StoneOS Detail
322861 GONICUS GOsa WebUI Change Password Form Reflected Cross-Site Scripting Vulnerability (CVE-2018-1000528) 5.5R5 or above Click here for more information
323767 Arris VAP2500 tools_command.php Command Execution Vulnerability (CVE-2014-8424) 5.0R4 or above Click here for more information
336522 Dokeos e-Learning Cross Site Scripting Vulnerability 5.5R5 or above Click here for more information
324198 Tecnovision DlxSpot SQL Injection Vulnerability (CVE-2017-12930) 5.5R5 or above Click here for more information
324379 Wordpress Plugin Appointment Booking Calendar CSV Injection Vulnerability (CVE-2020-9372) 5.5R5 or above Click here for more information
323126 Supervene RazDC Create User CGI Form OS Command Injection Vulnerability (CVE-2018-15551) 5.5R5 or above Click here for more information
324330 Veritas NetBackup Appliance 2.7.x % 3.0.x Remote Command Execution Vulnerability (CVE-2017-8859) 5.0R4 or above Click here for more information
336521 Dokeos e-Learning Cross Site Scripting Vulnerability 5.5R5 or above Click here for more information
337928 Mingsoft MCMS v5.2.8 SQL Injection Vulnerability (CVE-2022-4375) 5.5R5 or above Click here for more information
336617 Webshell Tool Antsword Detection - PHP Webshell Communication 5.0R4 or above Click here for more information
330310 Pi-Hole heisenbergCompensator Blocklist OS Command Execution Vulnerability (CVE-2020-11108) 5.5R5 or above Click here for more information
330929 DomainMod v4.10 XSS Vulnerability (CVE-2018-11558 CVE-2018-11559) 5.5R5 or above Click here for more information
322872 AdMentor Admin Remote SQL Injection Vulnerability (CVE-2007-0575) 5.0R4 or above Click here for more information
323934 LibreNMS addhost Command Injection Vulnerability (CVE-2018-20434) 5.5R5 or above Click here for more information
330517 Cayin CMS NTP Server Remote Code Execution Vulnerability (CVE-2020-7357) 5.5R5 or above Click here for more information
321948 Hewlett Packard Enterprise Vertica Management Console validateAdminConfig Remote Code Execution Vulnerability (CVE-2016-2002) 5.0R4 or above Click here for more information
330579 ZenTao Pro 8.8.2 Remote Code Execution Vulnerability (CVE-2020-7361) 5.0R4 or above Click here for more information
337944 Workout Journal App 1.0 Stored XSS Vulnerability (CVE-2024-24050) 5.5R5 or above Click here for more information
330956 Z-Blog 1.5.1.1740 XSS Vulnerability (CVE-2018-7736) 5.5R5 or above Click here for more information
338051 FreePBX 16 Remote Code Execution Vulnerability 5.5R5 or above Click here for more information
......