Any Rule for This?

brijendrasial · October 3, 2014, 7:33am

TDmitry · October 3, 2014, 11:27am

Will be covered with next update.

Hedloff · January 27, 2015, 8:12pm

No rule was created for the slider hack?

brijendrasial · January 28, 2015, 5:44am

Not till now…

Hedloff · January 28, 2015, 8:30am

Strange…Since Fortinet got this pretty fast and also Sucuri has this in their WAF.
Why cannot Comodo get a rule to stop this?

Hope they can get rules out asap when there is hugh hackings like this in the future! ???

TDmitry · January 28, 2015, 4:23pm

Will be fixed with next update (29.01.2015)

xanubi · May 15, 2015, 8:06am

Still there isn’t protection against this, unfortunately.

Hedloff · May 15, 2015, 11:57am

Revslider protection should be added. I have seen this on our servers for a while now…

TDmitry · May 15, 2015, 12:07pm

Rule 222050 must fix this. Make sure it is enabled.

xanubi · May 15, 2015, 2:17pm

Hello, it’s enabled, and still the exploit is on the wild.

I think you should see this hacking script, that exploits all the possibilities that revslider have, there are a couple of variants, unfortunately.

1st

http://www.exploit4arab.net/exploits/1405

2nd

http://packetstormsecurity.com/files/131246/WordPress-Revolution-Slider-File-Upload.html

TDmitry · May 15, 2015, 2:36pm

It looks like for a various vulnerabilities in this plugin. We will check it.