20250424.1|a:280:{i:1;a:4:{s:3:"why";s:22:"Directory traversal #1";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_USER_AGENT|PHP_SELF|PATH_INFO";s:3:"wha";s:26:"(?:\.{2}[\\/]+){2}[a-zA-Z]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:2;a:4:{s:3:"why";s:32:"ASCII character 0x00 (NULL byte)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:88:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER|REQUEST_URI|PHP_SELF|PATH_INFO|FILES";s:3:"wha";s:3:"\x0";s:3:"ope";i:5;s:3:"noc";i:1;}}}i:3;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:29:"\b(?:proc/self/|etc/passwd)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:4;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:13:"\betc/passwd$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:5;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}\s*sys_get_temp_dir\b";s:3:"ope";i:5;}}}i:6;a:4:{s:3:"why";s:22:"Directory traversal #2";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:36:"^(?:\.{2}[\\/]+){2,}[-\w/\s.]+\.php$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:7;a:4:{s:3:"why";s:19:"XML External Entity";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:51:"<!ENTITY[\s+]+(?:%[\s+]+)?\w+[\s+]+SYSTEM[\s+]+["']";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:8;a:5:{s:3:"why";s:15:"Suspicious file";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}s:3:"cpb";s:17:"unfiltered_upload";}i:50;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"GET|POST|HTTP_USER_AGENT";s:3:"wha";s:34:"^(?i:https?|ftp)://.+/[^&/\s@]+\?$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:51;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"^(?i)https?://(?:[hp]astebin\.com|textbin\.net)/raw/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:52;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}["'](?:https?|ftp)://";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:53;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:33:"^(?i:ftp)://(?:.+?:.+?\@)?[^/]+/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:100;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:60:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES|HTTP_FORWARDED";s:3:"wha";s:107:"<(?i:applet|embed|form|i?frame(?:set)?|i(?:mg|sindex)|link|m(?:eta|arquee)|object|script|textarea)\b.*=.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:101;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:78:"\W(?:background(-image)?|-moz-binding)\s*:[^}]*?\burl\s*\([^)]+?(https?:)?//\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:102;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:32:"GET|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:134:"<.+?(?i)\b(?:href|(?:form)?action|background|code|data|location|name|poster|src|value)\s*=\s*\\?['"]?(?:(?:f|ht)tps?:)?\\?/\\?/\w+\.\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:104;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?:alert|confirm|eval|expression|prompt|set(?:Timeout|Interval)|String\s*\.\s*fromCharCode|\.\s*substr)\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:105;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:69:"\bdocument\s*\.\s*(?:body|cookie|domain|location|open|write(?:ln)?)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:106;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:36:"\blocation\s*\.\s*(?:href|replace)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:107;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:35:"\bwindow\s*\.\s*(?:open|location)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:108;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"(?i)<style\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:109;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:50:"\beval\s*\(\s*String\s*\.\s*fromCharCode\s*\(\s*\d";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:110;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:2764:"(?i)<[a-z].+?\bon(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)\s*=.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:111;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:2767:"(?i)<[a-z].+?\bon(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange|onnect(?:ing|ed))|abled)|aling)|ata(?:setc(?:omplete|hanged)|(?:availabl|chang)e|error)|urationchange|ownloading|blclick)|Moz(?:M(?:agnifyGesture(?:Update|Start)?|ouse(?:PixelScroll|Hittest))|S(?:wipeGesture(?:Update|Start|End)?|crolledAreaChanged)|(?:(?:Press)?TapGestur|BeforeResiz)e|EdgeUI(?:C(?:omplet|ancel)|Start)ed|RotateGesture(?:Update|Start)?|A(?:udioAvailable|fterPaint))|c(?:o(?:m(?:p(?:osition(?:update|start|end)|lete)|mand(?:update)?)|n(?:t(?:rolselect|extmenu)|nect(?:ing|ed))|py)|a(?:(?:llschang|ch)ed|nplay(?:through)?|rdstatechange)|h(?:(?:arging(?:time)?ch)?ange|ecking)|(?:fstate|ell)change|u(?:echange|t)|l(?:ick|ose))|s(?:t(?:a(?:t(?:uschanged|echange)|lled|rt)|k(?:sessione|comma)nd|op)|e(?:ek(?:complete|ing|ed)|(?:lec(?:tstar)?)?t|n(?:ding|t))|(?:peech|ound)(?:start|end)|u(?:ccess|spend|bmit)|croll|how)|m(?:o(?:z(?:(?:pointerlock|fullscreen)(?:change|error)|(?:orientation|time)change|network(?:down|up)load)|use(?:(?:lea|mo)ve|o(?:ver|ut)|enter|wheel|down|up)|ve(?:start|end)?)|essage|ark)|a(?:n(?:imation(?:iteration|start|end)|tennastatechange)|fter(?:(?:scriptexecu|upda)te|print)|udio(?:process|start|end)|d(?:apteradded|dtrack)|ctivate|lerting|bort)|b(?:e(?:fore(?:(?:(?:de)?activa|scriptexecu)te|u(?:nload|pdate)|p(?:aste|rint)|c(?:opy|ut)|editfocus)|gin(?:Event)?)|oun(?:dary|ce)|l(?:ocked|ur)|roadcast|usy)|DOM(?:Node(?:Inserted(?:IntoDocument)?|Removed(?:FromDocument)?)|(?:CharacterData|Subtree)Modified|A(?:ttrModified|ctivate)|Focus(?:Out|In)|MouseScroll)|r(?:e(?:s(?:u(?:m(?:ing|e)|lt)|ize|et)|adystatechange|pea(?:tEven)?t|movetrack|trieving|ceived)|ow(?:s(?:inserted|delete)|e(?:nter|xit))|atechange)|p(?:op(?:up(?:hid(?:den|ing)|show(?:ing|n))|state)|a(?:ge(?:hide|show)|(?:st|us)e|int)|ro(?:pertychange|gress)|lay(?:ing)?)|t(?:ouch(?:(?:lea|mo)ve|en(?:ter|d)|cancel|start)|ransition(?:cancel|end|run)|ime(?:update|out)|ext)|u(?:s(?:erproximity|sdreceived)|p(?:gradeneeded|dateready)|n(?:derflow|load))|f(?:o(?:rm(?:change|input)|cus(?:out|in)?)|i(?:lterchange|nish)|ailed)|l(?:o(?:ad(?:e(?:d(?:meta)?data|nd)|start)|secapture)|evelchange|y)|g(?:amepad(?:(?:dis)?connected|button(?:down|up)|axismove)|et)|e(?:n(?:d(?:Event|ed)?|abled|ter)|rror(?:update)?|mptied|xit)|i(?:cc(?:cardlockerror|infochange)|n(?:coming|valid|put))|o(?:(?:(?:ff|n)lin|bsolet)e|verflow(?:changed)?|pen)|SVG(?:(?:Unl|L)oad|Resize|Scroll|Abort|Error|Zoom)|h(?:e(?:adphoneschange|l[dp])|ashchange|olding)|v(?:o(?:lum|ic)e|ersion)change|w(?:a(?:it|rn)ing|heel)|key(?:press|down|up)|(?:AppComman|Loa)d|no(?:update|match)|Request|zoom)\s*=\s*.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:112;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:113;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:42:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:114;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:64:"QUERY_STRING|GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:14:"(?i)<script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:115;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:14:"(?i)<script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:116;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:48:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|RAW";s:3:"wha";s:12:"<x:script\b.";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:117;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"[{}+[\]\s]\+\s*\[\s*]\s*\)\s*\[[{!}+[\]\s]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:118;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:38:"\+A(?:Dw|ACIAPgA8)-.+?\+AD4(?:APAAi)?-";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:119;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:43:"POST|GET|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:349:"(?i)[\s"'\x60;,\/0-9=\x0B\x09\x0C(]+on(?:abort|blur|change|click|close|dblclick|dragdrop|endevent|error|exit|focus(?:in|out)?|formchange|form(?:data|input)|input|key(?:down|press|statuschange|up)|load[a-z]{0,10}|(?:mouse|pointer)[a-z]{2,10}|move|move(?:end|start)|reset|resize|noupdate|scroll|select|submit|success|svgload|timeout|unload)\s*[=;,|'"]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:120;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"(?i)<[a-z]+\\?/[a-z]+.+?=.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:121;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:67:"\batob\s*(?:['"\x60]\s*\]\s*)?\(\s*(['"\x60])[a-zA-Z0-9/+=]+\1\s*\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:122;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:90:"\[\s*\]\s*\[\s*['"\x60]filter['"\x60]\s*\]\s*\[\s*['"\x60]constructor['"\x60]\s*\]\s*\(\s*";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:123;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:3:"GET";s:3:"wha";s:44:"\b(?:document|window|this)\s*\[.+?\]\s*[\[(]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}}i:125;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:167:"(?:(?:\b(?:self|this|top|window)\s*\[.+?\]|\(\s*(?:alert|confirm|eval|expression|prompt)\s*\)|\[.*?\]\s*\.\s*find)|(?:\.\s*(?:re(?:ject|place)|constructor)))\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:126;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:73:"\b(\w+)\s*=\s*(?:alert|confirm|eval|expression|prompt)\s*[;,]\1\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:127;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:115:"\bFunction\s*[({].*?[})]\s*\(.*?\)|\bfunction\s*\(.+?\)\s*{.+?}|(?:\[|new)\s*class\s*extends\b|\bArray\s*.\s*from\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:128;a:5:{s:3:"why";s:22:"Attribute JS injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"POST|GET|SERVER:HTTP_REFERER|SERVER:HTTP_USER_AGENT";s:3:"wha";s:37:"(?i)(?:\W|^)javascript:(?!void\().{8}";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:150;a:4:{s:3:"why";s:21:"Mail header injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"\x0A\b(?i:(?:reply-)?to|b?cc|content-[td]\w)\s*:.*?\@";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"noc";i:1;}}}i:153;a:4:{s:3:"why";s:21:"SSI command injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:56:"<!--#(?:config|echo|exec|flastmod|fsize|include)\b.+?-->";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:154;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:35:"COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:31:"(?s:<\?.+)|#!/(?:usr|bin)/.+?\s";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:155;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:405:"(?:<\?(?![Xx][Mm][Ll]).*?(?:\$_?(?:COOKIE|ENV|FILES|GLOBALS|(?:GE|POS|REQUES)T|SE(RVER|SSION))\s*[=\[)]|\b(?i:array_map|assert|base64_(?:de|en)code|curl_exec|eval|(?:ex|im)plode|file(?:_get_contents)?|fsockopen|function_exists|gzinflate|move_uploaded_file|passthru|[ep]reg_replace|phpinfo|stripslashes|strrev|substr|system|(?:shell_)?exec)\s*(?:/\*.+?\*/\s*)?\())|#!/(?:usr|bin)/.+?\s|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:156;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?i:eval)\s*\(\s*(?i:base64_decode|exec|file_get_contents|gzinflate|passthru|shell_exec|stripslashes|system)\s*\(";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:157;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:12:"CONTENT_TYPE";s:3:"wha";s:16:"application/json";s:3:"ope";i:4;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:6:"<?php ";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:160;a:4:{s:3:"why";s:40:"Shellshock vulnerability (CVE-2014-6271)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:10:"GET|SERVER";s:3:"wha";s:16:"^\s*\(\s*\)\s*\{";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:250;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:14:"GET|POST|FILES";s:3:"wha";s:43:"^[-\d';].+\w.+(?:--[\x00-\x20\x7f]*|#|/\*)$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:266:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|select|(?:pg_)?sleep|substring|table|truncate|union|update)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:251;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:49:"(?i)(?:\b|\d)(?:ceil|concat|conv|floor|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:35:"(?i)(?:\b|\d)(?:pi\s*\(.*?\).+?){3}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:253;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"GET|POST|COOKIE";s:3:"wha";s:43:"^(?i:admin(?:istrator)?)['"].*?(?:--|#|/\*)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:254;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:84:"(?i)\b[-\w]+@(?:[-a-z0-9]+\.)+[a-z]{2,8}'.{0,20}[^a-z](?:\band\b|&&).{0,20}=[\s/*]*'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:255;a:4:{s:3:"why";s:32:"SQL injection (JSON obfuscation)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:102:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|).{0,250}\b(?:(?:\w+)\s*(?:@>|<@)\s*'{"|'{"\s*(?:@>|<@)\s*(?:\w+))";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:256;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:96:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|)\s*(?:\d+\s*)+(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)(?:\s*\d)+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:257;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:107:"(?:\band\b|\bor\b|\bhaving\b|&&|[^|]\|\|[^|]).{0,250}\b(\w+)\b\s*(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)\s*\1\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:258;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:15:"GET|POST|SERVER";s:3:"wha";s:65:".{5}\bfrom\b.{1,30}\b(?:information|performance)_schema\s*\.\s*\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:259;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:53:"^-?\d+.{0,30}(?:\band\b.{0,30})?\b(?i:union|select)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:261:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:260;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|POST|FILES";s:3:"wha";s:63:"^(?:\b(?:null|and|or)\b|\|\||&&)?\s*union\s+(?:all\s+)?select\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:261;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:44:"GET|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:52:"(?:\b(?:null|and|or)\b|\|\||&&)\s*.{0,50}\bselect\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:267:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:262;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:36:"^.{0,10}\bselect\b\s.{1,50}\bfrom\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:273:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:263;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:16:"union all select";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:264;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"select concat";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:265;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:48:"^.{0,15}\bunion\s+select\b.{1,100}(from|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:267;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:179:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\balter\s+(?:(?:database|schema)\b|table\s+.{1,70}\s+rename\b|(?:ignore\s+)?table\b|user\b(?:\s+if\s+exists\s)?.{1,38}@).{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:268;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:187:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bcreate\s+(?:(?:database|schema|(?:temporary\s+)?table)\s+(?:if\s+not\s+exists\b)?.{1,70}|user\s+.{1,38}@.{1,38}\s+identified\s+by\s+)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:269;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:186:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bdrop\s+(?:(?:table\b|index\b.{1,60}\son\b|(?:database|schema)\s+(?:if\s+exists\b)?).{1,70}|user\s+(?:if\s+exists\b)?.{1,38}@.{1,38})";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:270;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:92:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\brename\s+table\s+.{1,70}\s+to\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:271;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:151:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bload\s+data\s+(?:(?:low_priority\s+|concurrent\s+)?local\s+)?infile\b.{1,500}\binto\s+table\b.{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:272;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:79:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\btruncate\s+table\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:273;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:110:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bselect\b.{1,200}\binto\s+(?:(?:dump|out)file\s|@\w).{10}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:274;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:77:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bload_file\s+/.{3,15}/\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:275;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:113:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bdelete\b.{1,100}\bfrom\b.{1,100}\bwhere\b.{1,100}(?:=|null)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:276;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:124:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bset\s+password\b(?:\s+for\s.{1,38}@.{1,60}=|\s*=.+?\bwhere\s+user\s*=)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:277;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:74:"(?i)(?:\b|\d)insert\b.+?(?:\b|\d)into\b.{1,150}(?:\b|\d)values\b.*?\(.+?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:278;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:86:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bupdate\s.{1,100}\bset\s.{1,50}=.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:279;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:60:"\bgroup\s+\bby\s.{1,200}\bhaving\s.{1,50}(?:[!<]?=|=>?|[<>])";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:280;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:25:"^.{0,10}\border\s+by\s+\d";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:281;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"^.{0,10}\band\s+extractvalue\s+\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:282;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"\bbenchmark\s+\d{5,10}\s+[a-z]{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:283;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"\bfloor\s+rand\s+(?:\d+\s*)?\*\s*\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:284;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"\bcase\b.+?\bwhen\b.+?\bthen\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:285;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"^.{0,100}\s(?:pg_)?sleep\s\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:286;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"(?i)\d\s+procedure\s+analyse\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:287;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:59:"waitfor\s+delay\s*\d+(?:\.\d+)?:\d+(?:\.\d+)?:\d+(?:\.\d+)?";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:300;a:4:{s:3:"why";s:13:"Leading quote";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"GET";s:3:"wha";s:2:"^'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:301;a:4:{s:3:"why";s:41:"Potential reflected file download attempt";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:31:"(?i)^[^?]*\.(?:bat|cmd)(?:\W|$)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:302;a:4:{s:3:"why";s:12:"PHP variable";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:22:"QUERY_STRING|PATH_INFO";s:3:"wha";s:44:"\bHTTP_RAW_POST_DATA|HTTP_(?:POS|GE)T_VARS\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:303;a:4:{s:3:"why";s:18:"phpinfo.php access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:11:"phpinfo.php";s:3:"ope";i:4;}}}i:304;a:4:{s:3:"why";s:21:"Malformed Host header";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:9:"HTTP_HOST";s:3:"wha";s:20:"[^-a-zA-Z0-9._:\[\]]";s:3:"ope";i:5;}}}i:305;a:4:{s:3:"why";s:23:"PHP handler obfuscation";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:51:"[^/]\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b\.";s:3:"ope";i:5;}}}i:306;a:4:{s:3:"why";s:26:"Bogus user-agent signature";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:50:"\b(?:compatible; MSIE [1-6]|(?i)Mozilla/[0-3])\.\d";s:3:"ope";i:5;}}}i:307;a:4:{s:3:"why";s:52:"Excessive user-agent string length (400+ characters)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:7:"^.{500}";s:3:"ope";i:5;}}}i:309;a:4:{s:3:"why";s:24:"PHP predefined variables";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:65:"QUERY_STRING|PATH_INFO|COOKIE|SERVER:HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:141:"\b(?:\$?_(COOKIE|ENV|FILES|(?:GE|POS|REQUES)T|SE(RVER|SSION))|HTTP_(?:(?:POST|GET)_VARS|RAW_POST_DATA)|GLOBALS)\s*[=\[)]|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:310;a:4:{s:3:"why";s:30:"Access to a configuration file";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"SCRIPT_NAME|GET";s:3:"wha";s:81:"\b(?i:(?:conf(?:ig(?:ur(?:e|ation)|\.inc|_global)?)?)|settings?(?:\.?inc)?)\.php$";s:3:"ope";i:5;}}}i:311;a:4:{s:3:"why";s:27:"Large set of Hex characters";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:23:"(?i:\\x[a-f0-9]{2}){25}";s:3:"ope";i:5;}}}i:312;a:4:{s:3:"why";s:16:"Non-compliant IP";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:177:"HTTP_X_FORWARDED_FOR|HTTP_CF_CONNECTING_IP|HTTP_CLIENT_IP|HTTP_FORWARDED_FOR|HTTP_INCAP_CLIENT_IP|HTTP_X_CLUSTER_CLIENT_IP|HTTP_X_FORWARDED|HTTP_X_REAL_IP|HTTP_X_SUCURI_CLIENTIP";s:3:"wha";s:30:"[^.0-9a-fA-F:\x20,unixkow\[\]]";s:3:"ope";i:5;}}}i:313;a:4:{s:3:"why";s:31:"PHP-CGI exploit (CVE-2012-1823)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:19:"^-[bcndfiswzT].{20}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:315;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:61:">.*?/[./]*dev/[./]*(?:tc|ud)p/[./]*[^/]{5,255}/[./]*\d{1,5}\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:316;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:72:"\bnc\s+(?:\d+(\.\d+){3}\s+\d+|-\w+\s+(?:\d+|/[\w/]+\s+\d+(\.\d+){3}\s+))";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:317;a:4:{s:3:"why";s:17:"Hidden PHP script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:53:"/\.[^/]+\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:318;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"(?i:\bchr\s*\(\s*\d{1,3}\s*\).+?){4}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:319;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:52:"(?i)concat|select|database|insert|update|union|table";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:4:{s:3:"wha";s:75:"\bchar\b\s(?:\d{1,3}\s){3}|(?:\bchar\b\s\d{1,3}\s(?:\|\||or|&&|and)?\s?){3}";s:3:"ope";i:5;s:3:"tra";i:1;s:3:"nor";i:1;}}}i:320;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:22:"(?i:\\x[a-f0-9]{2}){4}";s:3:"ope";i:5;}}}i:321;a:4:{s:3:"why";s:14:"Adminer script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:47:"/_?adminer(?:(?:-\d\.\d.\d)(?:-[\w-]+)?)?\.php$";s:3:"ope";i:5;}}}i:322;a:4:{s:3:"why";s:40:"Attempt to modify NinjaFirewall settings";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"(^|\S['"])nfw_(?:options|rules)\b";s:3:"ope";i:5;}}}i:323;a:4:{s:3:"why";s:13:"Proxy attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:19:"^/%EF%BB%BFhttps?:/";s:3:"ope";i:5;}}}i:351;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"REQUEST:nixpasswd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:352;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:16:"\bact=img&img=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:353;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:15:"\bc=img&name=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:354;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:36:"^image=(?:arrow|file|folder|smiley)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:355;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:21:"\buname=.+?;\ssysctl=";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:356;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"REQUEST:sql_passwd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:357;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nowpath";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:358;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"POST:view_writable";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:359;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:11:"phpspypass=";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:360;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"POST:a";s:3:"wha";s:90:"^(?:Bruteforce|Console|Files(?:Man|Tools)|Network|Php|SecInfo|SelfRemove|Sql|StringTools)$";s:3:"ope";i:5;}}}i:361;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nst_cmd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:362;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"POST:cmd";s:3:"wha";s:206:"^(?:c(?:h_|URL)|db_query|echo\s\\.*|(?:edit|download|save)_file|find(?:_text|\s.+)|ftp_(?:brute|file_(?:down|up))|mail_file|mk|mysql(?:b|_dump)|php_eval|ps\s.*|search_text|safe_dir|sym[1-2]|test[1-8]|zend)$";s:3:"ope";i:5;}}}i:363;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"GET:p";s:3:"wha";s:65:"^(?:chmod|cmd|edit|eval|delete|headers|md5|mysql|phpinfo|rename)$";s:3:"ope";i:5;}}}i:364;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:137:"^act=(?:bind|cmd|encoder|eval|feedback|ftpquickbrute|gofile|ls|mkdir|mkfile|processes|ps_aux|search|security|sql|tools|update|upload)&d=/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:365;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"SERVER";s:3:"wha";s:36:"\b(?i)(eval|base64_decode)\s*\(.+?\)";s:3:"ope";i:5;}}}i:500;a:4:{s:3:"why";s:40:"ASCII control characters (1-8 and 14-31)";s:3:"lev";i:2;s:3:"ena";i:0;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:20:"[\x01-\x08\x0e-\x1f]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:510;a:4:{s:3:"why";s:38:"DOCUMENT_ROOT variable in HTTP request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:20:"GET|POST|REQUEST_URI";s:3:"wha";s:11:"/nothingyet";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:520;a:4:{s:3:"why";s:31:"Data URI scheme or PHP wrappers";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:58:"GET|POST|COOKIE|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:108:"^(?i:(?:expect|file|ph(?:ar|p)|zip)://.|.{0,90}\bdata:(?!image/(?:jpe?g|png|gif|svg\+xml)).*?;\s*base64.*?,)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:525;a:4:{s:3:"why";s:21:"Serialized PHP object";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:77:"^.{0,25}[;{}]?\b[OC]:\d+:"[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*":\d+:{.*?}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:531;a:4:{s:3:"why";s:24:"Suspicious bots/scanners";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:328:"(?i:acunetix|backdoor|bandit|blackwidow|BOT for JCE|core-project|dts agent|emailmagnet|ex(ploit|tract)|flood|grabber|harvest|httrack|havij|hunter|indy library|LoadTimeBot|mfibot|Microsoft URL Control|Miami Style|morfeus|nessus|NetLyzer|pmafind|scanner|Scrapy|siphon|spbot|sqlmap|survey|teleport|updown_tester|xovibot|zgrap|zmap)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:540;a:4:{s:3:"why";s:32:"Localhost IP in GET/POST request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"^(?i:127\.0\.0\.1|localhost|::1)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1007;a:4:{s:3:"why";s:26:"phpMyAdmin hacking attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/scripts/(?:setup|signon)\.php";s:3:"ope";i:5;}}}i:1011;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:14:"/uploadify.php";s:3:"ope";i:3;}}}i:1350;a:4:{s:3:"why";s:21:"Arbitrary File Upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/fckeditor/editor/filemanager/";s:3:"ope";i:3;}}}i:1351;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:15:"/wp-config.php$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1352;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"houzez_register";s:3:"ope";i:1;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:9:"POST:role";s:3:"wha";s:56:"^(?:houzez_(?:agency|agent|buyer|seller|owner|manager))$";s:3:"ope";i:6;}}s:3:"cpb";s:14:"manage_options";}i:1353;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:36:"houzez_register_user_with_membership";s:3:"ope";i:1;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:14:"POST:user_role";s:3:"wha";s:56:"^(?:houzez_(?:agency|agent|buyer|seller|owner|manager))$";s:3:"ope";i:6;}}s:3:"cpb";s:14:"manage_options";}i:1359;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:28:"POST:wpda_role|GET:wpda_role";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:13:"promote_users";}i:1360;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:18:"/am-member/license";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:blowf";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1361;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"shortcode_addons_data";s:3:"ope";i:1;}}}i:1362;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:blowfish";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:blowf";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1363;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"GET:yrc_nuke";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1364;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"GET:yrc_clear_cache";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1365;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"um_get_members";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:sorting";s:3:"wha";s:2:"\W";s:3:"ope";i:5;}}}i:1366;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:21:"/wp-admin/install.php";s:3:"ope";i:3;}}}i:1369;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:13:"GET:post_type";s:3:"wha";s:15:"acf-field-group";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:post_status";s:3:"wha";s:1:""";s:3:"ope";i:3;}}}i:1370;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:form_request";s:3:"wha";s:15:"jssupportticket";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"REQUEST:task";s:3:"wha";s:9:"savetheme";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1371;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"bit_fm_connector";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"REQUEST:cmd";s:3:"wha";s:3:"put";s:3:"ope";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1374;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"themify_plupload";s:3:"ope";i:1;}}s:3:"cpb";s:12:"upload_files";}i:1375;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"themify_plupload_customizer";s:3:"ope";i:1;}}s:3:"cpb";s:18:"edit_theme_options";}i:1376;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"tbuilder_plupload_layout";s:3:"ope";i:1;}}s:3:"cpb";s:9:"edit_post";}i:1377;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:22:"tb_update_global_style";s:3:"ope";i:1;}}s:3:"cpb";s:9:"edit_post";}i:1378;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"gsf_upload_fonts";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1379;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:option";s:3:"wha";s:23:"mo_wpns_change_password";s:3:"ope";i:1;}}}i:1380;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"save_footer_text";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1385;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"atbdp_plugins_bulk_action";s:3:"ope";i:1;}}}i:1399;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"save_config";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:config";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1401;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"wpt_admin_update_notice_option";s:3:"ope";i:1;}}}i:1404;a:4:{s:3:"why";s:11:"WP backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:12:"wp_is_mobile";s:3:"ope";i:1;}}}i:1409;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:32:"elementor_upload_and_install_pro";s:3:"ope";i:1;}}}i:1410;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"install_requirements";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:plugin";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1412;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"^(?:zip_(ngg_)?upload)$";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:13:"FILES:zipFile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1414;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:68:"^(antihacker|cardealer|stopbadbots|wpmemory|wptools)_install_plugin$";s:3:"ope";i:5;}}}i:1415;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"heateor_sss_import_config";s:3:"ope";i:1;}}}i:1416;a:4:{s:3:"why";s:19:"Unauthorized access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:9:"mmr_files";s:3:"ope";i:1;}}}i:1417;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"hdi_install_demo";s:3:"ope";i:1;}}}i:1418;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:17:"/omapp/v1/support";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:41:"manage_options|optin_monster_api_menu_cap";}i:1419;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"updraft_central_ajax";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1420;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:19:"/aioseo/v1/htaccess";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:21:"aioseo_tools_settings";}i:1421;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:27:"/frm-admin/v1/install-addon";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:31:"manage_options|activate_plugins";}i:1422;a:4:{s:3:"why";s:25:"Unauthorized file edition";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"GET:action|POST:action";s:3:"wha";s:35:"^(?:update|edit-theme-plugin-file)$";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:9:"POST:file";s:3:"wha";s:27:"^(?:ninjafirewall|nfwplus)/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1423;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"POST:wcuf_file_name";s:3:"wha";s:4:".php";s:3:"ope";i:3;}}}i:1424;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"do_button_job_later";s:3:"ope";i:1;}}}i:1425;a:4:{s:3:"why";s:10:"Stored XSS";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:4:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:121:"<(?i)(?:(?:a|abbr|acronym)\b.+?title|(?:blockquote|q)\b.+?cite|del\b.+?datetime)\s*=\s*['"][^>]+?on[a-z]{3,18}\s*=\s*.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1426;a:4:{s:3:"why";s:22:"Excessive payload size";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:13:"^(?s).{65000}";s:3:"ope";i:5;}}}i:1427;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:29:"/getwid/v1/get_remote_content";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:10:"edit_posts";}i:1428;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:45:"GET:do_reset_wordpress|GET:ai_reset_wordpress";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1429;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"woosea_save_adwords_conversion_id";s:3:"ope";i:1;}}}i:1430;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^b2bking(?:downloadpricelist|_price_import|rejectuser|approveuser|_approve_order)$";s:3:"ope";i:5;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1431;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"qppr_save_quick_redirect";s:3:"ope";i:1;}}}i:1432;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:26:"/api/flutter_user/register";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:3:"RAW";s:3:"wha";s:26:"":"(administrator|editor)"";s:3:"ope";i:5;}}}i:1433;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:37:"/api/flutter_user/update_user_profile";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:1434;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:47:"SERVER:HTTP_CONTENT_DIR|SERVER:HTTP_CONTENT_ABS";s:3:"wha";s:4:"php:";s:3:"ope";i:4;}}}i:1435;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:31:"wpas_import_product_from_amazon";s:3:"ope";i:1;}}s:3:"cpb";s:6:"import";}i:1436;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"importJSONTable";s:3:"ope";i:1;}}}i:1437;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"POST:sgpb-is-preview";s:3:"wha";s:1:"1";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:post_ID";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:14:"manage_options";}i:1438;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"GOTMLS_load_update";s:3:"ope";i:1;}}s:3:"cpb";s:16:"activate_plugins";}i:1439;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:16:"POST:option_page";s:3:"wha";s:47:"^inspire_checkout_fields_(checkboxes|settings)$";s:3:"ope";i:5;}}}i:1440;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:34:"user_registration_form_save_action";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1441;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"wsal-setup";s:3:"ope";i:1;}}}i:1442;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:94:"^((user|coupon|product_(reviews|comments))_csv|woocommerce_(csv|xml)(_order)?)_import_request$";s:3:"ope";i:5;}}}i:1443;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"gmwd_setup";s:3:"ope";i:1;}}}i:1444;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"aj_steps";s:3:"ope";i:1;}}}i:1445;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"REQUEST:cstu_set_token";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:13:"REQUEST:token";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1446;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:32:"SERVER:HTTP_X_WORDABLE_SIGNATURE";s:3:"wha";s:17:"^([^=]+|.*?=\s*)$";s:3:"ope";i:5;}}}i:1447;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:41:"^wps_ic_save_(?:popup|excludes)_settings$";s:3:"ope";i:5;}}}i:1448;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"responsive-ready-sites-";s:3:"ope";i:3;}}}i:1449;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"^cfp-(?:new-post|connect)$";s:3:"ope";i:5;}}}i:1450;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:kds_password";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:21:"REQUEST:__kds_docImgs";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:1451;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:27:"POST:lang_default|POST:lang";s:3:"wha";s:10:"^[\w\d-]+$";s:3:"ope";i:6;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"add_to_wishlist";s:3:"ope";i:1;}}}i:1452;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wcfm_ajax_controller";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:34:"REQUEST:wcfm_customers_manage_form";s:3:"wha";s:11:"customer_id";s:3:"ope";i:3;}}s:3:"cpb";s:14:"manage_options";}i:1453;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"wfu_ajax_action_ask_server";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:17:"REQUEST:filenames";s:3:"wha";s:1:"/";s:3:"ope";i:3;}}}i:1454;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/hc/v1/themehunk-import";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1455;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"handle_import";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"POST:template_id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:15:"install_plugins";}i:1457;a:4:{s:3:"why";s:20:"Suspicious shortcode";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"parse-media-shortcode";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:14:"POST:shortcode";s:3:"wha";s:39:"^\[(audio|embed|playlist|video|gallery)";s:3:"ope";i:6;s:3:"nor";i:1;}}}i:1458;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"svx_ajax_factory";s:3:"ope";i:1;}}s:3:"cpb";s:18:"manage_woocommerce";}i:1459;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:31:"mk_check_filemanager_php_syntax";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1461;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:36:"FILES:wp_advanced_search_file_import";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1462;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:38:"bookingpress_save_lite_wizard_settings";s:3:"ope";i:1;}}}i:1464;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:84:"^(?:tutor_add_instructor|instructor_approval_action|tutor_option_save|setup_action)$";s:3:"ope";i:5;}}}i:1466;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:294:"POST:ghazale-sds-submit-field-name|POST:ghazale_sds_edit_field|POST:submit-update-single-entry|POST:sds-submit-upload-csv-file|GET:sds-total-del-form-table|GET:sds-total-del-input-table-and-corresponding-form|GET:sds-delete-field-id|GET:sds-del-data-input-table|GET:sds-del-entry-first-entry-id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1467;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^(epsilon_framework_ajax_action|(welcome_screen|epsilon_dashboard)_ajax_callback)$";s:3:"ope";i:5;}}}i:1468;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:10:"dmm_export";s:3:"ope";i:1;}}}i:1469;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:29:"/api/flutter_user/apple_login";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:21:"SERVER:REQUEST_METHOD";s:3:"wha";s:3:"GET";s:3:"ope";i:1;}}}i:1471;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:12:"/readme.html";s:3:"ope";i:3;}}}i:1472;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:23:"GET:SuperSocializerAuth";s:3:"wha";s:11:"LiveJournal";s:3:"ope";i:1;}}}i:1474;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"elementor_ajax";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:34:"pro_woocommerce_update_page_option";s:3:"ope";i:3;}}s:3:"cpb";s:33:"manage_options|manage_woocommerce";}i:1475;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"sgpb_autosave";s:3:"ope";i:1;}}}i:1481;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"GET:Action|GET:OTPAction";s:3:"wha";s:99:"^(?:EWD_OTP_AddOrder|EWD_UASP_AddAppointment|UPCP_AddProduct|EWD_URP_ImportReviewsFrom)Spreadsheet$";s:3:"ope";i:5;}}}i:1482;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:19:"^{"save_builder":{"";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:93:""url":"[^"]*?(?i:javascript)|"(?:custom)?_attributes":"(?:(?![^\\]").)*?\b(?i)on[a-z]{3,29}\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1484;a:4:{s:3:"why";s:16:"Suspicious login";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:13:"/wp-login.php";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:8:"POST:log";s:3:"wha";s:122:"^(wpsecuritypatch|wpnew_|server_admin|foxilitrix|system_not_delete_|admin_sweet|AnonymousFox|adminlin|cron-.{40}$)|['"<>;]";s:3:"ope";i:5;}}}i:1485;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:35:"HTTP_X_WCPAY_PLATFORM_CHECKOUT_USER";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1486;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:rp_key";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:24:"/wp-admin/admin-ajax.php";s:3:"ope";i:3;}}}i:1487;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/rankmath/v1/updateMeta";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:3:"RAW";s:3:"wha";s:28:"capabilities][administrator]";s:3:"ope";i:3;}}}i:1488;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"export_admin_table";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"REQUEST:filename";s:3:"wha";s:6:"\.csv$";s:3:"ope";i:6;}}}i:1489;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:foobar";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:93:"^TotalSoftPoll_(Clone(?:_Set)?|Del(?:_Set)?|Edit(?:_Q_M|_Ans|_Set)?|Theme_(?:Clone|Edit1?)?)$";s:3:"ope";i:5;}}}i:1490;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:45:"GET:edd_action|GET:edd-action|POST:edd-action";s:3:"wha";s:19:"user_reset_password";s:3:"ope";i:1;}}}i:1491;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:security";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"update_options";s:3:"ope";i:1;}}}i:1492;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"htmega_ajax_register";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:reg_role";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1493;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"nf_download_all_subs";s:3:"ope";i:1;}}}i:1494;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"googlesitekit_proxy_setup";s:3:"ope";i:1;}}}i:1495;a:4:{s:3:"why";s:50:"ThemeREX Addons unauthenticated function injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/trx_addons/v2/get/sc_layout";s:3:"ope";i:4;s:3:"nor";i:1;}}}i:1496;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:30:"/rankmath/v1/updateRedirection";s:3:"ope";i:4;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:22:"REQUEST:redirectionUrl";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1497;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"POST:bbp-forums-role";s:3:"wha";s:13:"bbp_keymaster";s:3:"ope";i:1;}}}i:1498;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"_ning_upload_image";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1499;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"st_filter_tour_ajax_location";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:id_location";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1500;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"change_klarna_addon_status";s:3:"ope";i:1;}}}i:1501;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"gdlr_lms_cancel_booking";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:7:"POST:id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1502;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:rm_slug";s:3:"wha";s:12:"rm_user_edit";s:3:"ope";i:1;}}}i:1503;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:81:"^(rm_save_form_view_sett|set_default_form|import_first|rm_admin_upload_template)$";s:3:"ope";i:5;}}}i:1504;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"qsm_upload_image_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:10:"FILES:file";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1505;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"qsm_remove_file_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:file_url";s:3:"wha";s:15:"^qsmfileupload_";s:3:"ope";i:6;}}}i:1506;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:28:"GET:alg_wc_pif_download_file";s:3:"wha";s:7:"\.[\\/]";s:3:"ope";i:5;s:3:"tra";i:3;}}}i:1507;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:35:"kaliforms_form_delete_uploaded_file";s:3:"ope";i:1;}}}i:1508;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"kaliforms_update_option_ajax";s:3:"ope";i:1;}}}i:1509;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1510;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"iconset_uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1511;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"wmuUploadFiles";s:3:"ope";i:1;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1512;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"iva_bh_import_ajax_action";s:3:"ope";i:1;}}}i:1513;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"stm_listing_register";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:23:""role":"(?!user|agency)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1514;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:16:"/1/api/ulisting-";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:163:"/1/api/ulisting-(?:builder/listing-(?:single-layout|type-layout/(?:save_layout|delete-layout)|item-card-layout|single-page)|user/(?:search|role/save)|email|import)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1515;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:26:"GET:listing_id|GET:user_id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:39:"/1/api/ulisting-page-statistics/listing";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1516;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"backup_guard_importBackup";s:3:"ope";i:1;}}}i:1517;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:133:"POST:ct-ultimate-gdpr-export|POST:ct-ultimate-gdpr-import|POST:ct-ultimate-gdpr-export-services|POST:ct-ultimate-gdpr-import-services";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1518;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:148:"^(?:wpcf7r_migrate_all_forms|wpcf7r_reset_settings|import_from_debug|wpcf7r_extension_update|deactivate_wpcf7r_extension|activate_wpcf7r_extension)$";s:3:"ope";i:5;}}}i:1519;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"ninja_forms_sendwp_remote_install";s:3:"ope";i:1;}}}i:1520;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"^kiwi_social_share_[sg]et_option$";s:3:"ope";i:5;}}}i:1521;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"GET:backup-migration";s:3:"wha";s:13:"PROGRESS_LOGS";s:3:"ope";i:1;}}}i:1522;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"superpwa_splashscreen_uploader";s:3:"ope";i:1;}}}i:1523;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:4:"POST";s:3:"wha";s:27:"\bpagepath=['"]?\.\./\.\./.";s:3:"ope";i:5;}}}i:1524;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"usces_download_system_information";s:3:"ope";i:1;}}s:3:"cpb";s:13:"administrator";}i:1525;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:42:"REQUEST:member_action|REQUEST:order_action";s:3:"wha";s:35:"^dl(?:order|product|member)newlist$";s:3:"ope";i:5;}}s:3:"cpb";s:13:"administrator";}i:1526;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"cn_save_config";s:3:"ope";i:1;}}}i:1527;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:56:"FILES:rp_wcdpd_settings|REQUEST:rp_wcdpd_export_settings";s:3:"wha";s:2:"^.";s:3:"ope";i:5;}}s:3:"cpb";s:15:"manage_rp_wcdpd";}i:1528;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wmc_bulk_fixed_price";s:3:"ope";i:1;}}s:3:"cpb";s:13:"edit_products";}i:1529;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:20:"REQUEST:wp_automatic";s:3:"wha";s:8:"download";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:link";s:3:"wha";s:55:"httpz://[a-zA-Z0-9]+\.[a-zA-Z0-9]+\.hop\.clickbank\.net";s:3:"ope";i:6;}}}i:1530;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:58:"SERVER:LSCACHE_VARY_VALUE|SERVER:HTTP_X_LSCACHE_VARY_VALUE";s:3:"wha";s:1:"<";s:3:"ope";i:3;}}}i:1531;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"upload_file";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:38:"FILES:bfdc641563b7bdb53a7b7fb0e49cf9f1";s:3:"tmp";s:0:"";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1532;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"POST:social_site";s:3:"wha";s:4:"true";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:24:"POST:user_id_social_site";s:3:"wha";s:2:"^.";s:3:"ope";i:5;}}s:3:"cpb";s:10:"edit_users";}i:1533;a:5:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:33:"redux/v1/templates/plugin-install";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1534;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:38:"jobsearch_job_integrations_settin_save";s:3:"ope";i:1;}}}i:1535;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:34:"POST:jobsearch_allocs_setingsubmit";s:3:"wha";s:1:"1";s:3:"ope";i:1;}}}i:1536;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:import";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"301options";s:3:"ope";i:1;}}}i:1537;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:action";s:3:"wha";s:11:"omgf-update";s:3:"ope";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1538;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:27:"POST:plugin|POST:ajax_nonce";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"install_plugin";s:3:"ope";i:1;}}s:3:"cpb";s:15:"install_plugins";}i:1539;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"woo_product_pagination_product";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:20:"REQUEST:templateInfo";s:3:"wha";s:2:"..";s:3:"ope";i:3;}}}i:1540;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"duplicator_download";s:3:"ope";i:1;}}}i:1541;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"^bulk301(?:export|clearlist)$";s:3:"ope";i:5;}}}i:1542;a:5:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"FILES:301_bulk_redirects";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1543;a:5:{s:3:"why";s:33:"WP vulnerability (CVE-2019-15858)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:27:"FILES:wbcr_inp_import_files";s:3:"wha";s:0:"";s:3:"ope";i:7;}}s:3:"cpb";s:17:"unfiltered_upload";}i:1544;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:5:"close";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:post";s:3:"wha";s:5:"^\d+$";s:3:"ope";i:5;}}}i:1545;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:43:"/ShortCodeAddonsUltimate/v2/addons_settings";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1546;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:35:"/oxilabtabsultimate/v1/oxi_settings";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1547;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"POST:php_everywhere_code";s:3:"wha";s:5:"<?php";s:3:"ope";i:4;s:3:"nor";i:1;}}s:3:"cpb";s:14:"manage_options";}i:1548;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST:cmb";s:3:"wha";s:4:"user";s:3:"ope";i:1;}}}i:999;a:3:{i:118;i:1;i:123;i:1;i:1422;i:1;}}