Intrusion Prevention

HTTP.Post.Path.Traversal.File.Upload

Description

This indicates an attack attempt against an Arbitrary File Upload vulnerability through HTTP requests.
The vulnerability is caused by insufficient checking of user-supplied filenames. It may allow remote attackers to upload files to arbitrary locations via a malicious HTTP Post request.

Affected Products

Any unprotected server can be vulnerable to this vulnerability

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest patch to the vulnerable software.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2024-07-25	28.833	Modified	Name:HTTP. Post. Directory. Traversal. File. Upload:HTTP. Post. Path. Traversal. File. Upload
2023-07-24	25.607	Modified	Sig Added

ID	13480
Created	Oct 19, 2006
Updated	Jul 23, 2024
CVE ID
Risk
Exploit Prediction Score	71.34%
Default Action	drop
Active
Affected OS	Windows, Linux, BSD, Solaris, MacOS, All
Affected App	PHP_app, CGI_app, ASP_app
Profile Type	Path Traversal

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

HTTP.Post.Path.Traversal.File.Upload

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

HTTP.Post.Path.Traversal.File.Upload

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

Threat Intelligence
Center