|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|a:301:{i:1;a:4:{s:3:"why";s:19:"Directory traversal";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_USER_AGENT|PHP_SELF|PATH_INFO";s:3:"wha";s:28:"(?:\.{2}[\\/]+){2}\b[a-zA-Z]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:2;a:4:{s:3:"why";s:32:"ASCII character 0x00 (NULL byte)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:88:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER|REQUEST_URI|PHP_SELF|PATH_INFO|FILES";s:3:"wha";s:3:"\x0";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"noc";i:1;}}}i:3;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:29:"\b(?:proc/self/|etc/passwd)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:4;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:13:"\betc/passwd$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:5;a:4:{s:3:"why";s:20:"Local file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:33:"GET|COOKIE|SERVER:HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}\s*sys_get_temp_dir\b";s:3:"ope";i:5;}}}i:7;a:4:{s:3:"why";s:19:"XML External Entity";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:51:"<!ENTITY[\s+]+(?:%[\s+]+)?\w+[\s+]+SYSTEM[\s+]+["']";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:8;a:4:{s:3:"why";s:15:"Suspicious file";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:50;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:24:"GET|POST|HTTP_USER_AGENT";s:3:"wha";s:33:"^(?i:https?|ftp)://.+/[^&/\s]+\?$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:51;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"^(?i)https?://(?:[hp]astebin\.com|textbin\.net)/raw/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:52;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:66:"\b(?i)(?:include|require)(?:_once)?\s*.{0,10}["'](?:https?|ftp)://";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:53;a:4:{s:3:"why";s:21:"Remote file inclusion";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:33:"^(?i:ftp)://(?:.+?:.+?\@)?[^/]+/.";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:100;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:111:"<(?i:applet|div|embed|form|i?frame(?:set)?|i(?:mg|sindex)|link|m(?:eta|arquee)|object|script|textarea)\b.*=.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:101;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:78:"\W(?:background(-image)?|-moz-binding)\s*:[^}]*?\burl\s*\([^)]+?(https?:)?//\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:102;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:32:"GET|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:134:"<.+?(?i)\b(?:href|(?:form)?action|background|code|data|location|name|poster|src|value)\s*=\s*\\?['"]?(?:(?:f|ht)tps?:)?\\?/\\?/\w+\.\w";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:104;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?:alert|confirm|eval|expression|prompt|set(?:Timeout|Interval)|String\s*\.\s*fromCharCode|\.\s*substr)\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:105;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:69:"\bdocument\s*\.\s*(?:body|cookie|domain|location|open|write(?:ln)?)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:106;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:36:"\blocation\s*\.\s*(?:href|replace)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:107;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:26:"GET|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:35:"\bwindow\s*\.\s*(?:open|location)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:108;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:35:"(?i)<style\b.*?>.*?<\\?/style\b.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:109;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:50:"\beval\s*\(\s*String\s*\.\s*fromCharCode\s*\(\s*\d";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:110;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:36:"(?i)<[a-z].+?\bon[a-z]{3,29}\s*=.{5}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:111;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:62:"(?i)<[a-z].+?\bon[a-z]{3,19}\s*=\s*(?!"return false;").{5}.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:112;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:43:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:113;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:4:"POST";s:3:"wha";s:43:"<.+?(?i)[a-z]+\s*=.*?(?:java|vb)script:.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:114;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:64:"QUERY_STRING|GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:35:"(?i)<script\b.*?>.*?<\\?/script.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:115;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"POST|RAW";s:3:"wha";s:35:"(?i)<script\b.*?>.*?<\\?/script.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:116;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:48:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|RAW";s:3:"wha";s:35:"<x:script\b.*?>.*?<\\?/x:script.*?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:117;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:42:"[{}+[\]\s]\+\s*\[\s*]\s*\)\s*\[[{!}+[\]\s]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:118;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:38:"\+A(?:Dw|ACIAPgA8)-.+?\+AD4(?:APAAi)?-";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:119;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:43:"POST|GET|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:349:"(?i)[\s"'\x60;,\/0-9=\x0B\x09\x0C(]+on(?:abort|blur|change|click|close|dblclick|dragdrop|endevent|error|exit|focus(?:in|out)?|formchange|form(?:data|input)|input|key(?:down|press|statuschange|up)|load[a-z]{0,10}|(?:mouse|pointer)[a-z]{2,10}|move|move(?:end|start)|reset|resize|noupdate|scroll|select|submit|success|svgload|timeout|unload)\s*[=;,|'"]";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:120;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"(?i)<[a-z]+\\?/[a-z]+.+?=.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:121;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:67:"\batob\s*(?:['"\x60]\s*\]\s*)?\(\s*(['"\x60])[a-zA-Z0-9/+=]+\1\s*\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:122;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:90:"\[\s*\]\s*\[\s*['"\x60]filter['"\x60]\s*\]\s*\[\s*['"\x60]constructor['"\x60]\s*\]\s*\(\s*";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:123;a:4:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:3:"GET";s:3:"wha";s:44:"\b(?:document|window|this)\s*\[.+?\]\s*[\[(]";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}}i:128;a:5:{s:3:"why";s:22:"Attribute JS injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"POST|GET|SERVER:HTTP_REFERER|SERVER:HTTP_USER_AGENT";s:3:"wha";s:37:"(?i)(?:\W|^)javascript:(?!void\().{8}";s:3:"ope";i:5;s:3:"nor";i:1;}}s:3:"cpb";s:15:"unfiltered_html";}i:125;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:167:"(?:(?:\b(?:self|this|top|window)\s*\[.+?\]|\(\s*(?:alert|confirm|eval|expression|prompt)\s*\)|\[.*?\]\s*\.\s*find)|(?:\.\s*(?:re(?:ject|place)|constructor)))\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:126;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:73:"\b(\w+)\s*=\s*(?:alert|confirm|eval|expression|prompt)\s*[;,]\1\s*\(.*?\)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:127;a:5:{s:3:"why";s:20:"Cross-site scripting";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:19:"GET|HTTP_USER_AGENT";s:3:"wha";s:115:"\bFunction\s*[({].*?[})]\s*\(.*?\)|\bfunction\s*\(.+?\)\s*{.+?}|(?:\[|new)\s*class\s*extends\b|\bArray\s*.\s*from\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:2;}}s:3:"cpb";s:15:"unfiltered_html";}i:150;a:4:{s:3:"why";s:21:"Mail header injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:53:"\x0A\b(?i:(?:reply-)?to|b?cc|content-[td]\w)\s*:.*?\@";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"noc";i:1;}}}i:153;a:4:{s:3:"why";s:21:"SSI command injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:56:"<!--#(?:config|echo|exec|flastmod|fsize|include)\b.+?-->";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:154;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:35:"COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:31:"(?s:<\?.+)|#!/(?:usr|bin)/.+?\s";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:155;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:405:"(?:<\?(?![Xx][Mm][Ll]).*?(?:\$_?(?:COOKIE|ENV|FILES|GLOBALS|(?:GE|POS|REQUES)T|SE(RVER|SSION))\s*[=\[)]|\b(?i:array_map|assert|base64_(?:de|en)code|curl_exec|eval|(?:ex|im)plode|file(?:_get_contents)?|fsockopen|function_exists|gzinflate|move_uploaded_file|passthru|[ep]reg_replace|phpinfo|stripslashes|strrev|substr|system|(?:shell_)?exec)\s*(?:/\*.+?\*/\s*)?\())|#!/(?:usr|bin)/.+?\s|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:156;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:31:"GET|POST|COOKIE|HTTP_USER_AGENT";s:3:"wha";s:115:"\b(?i:eval)\s*\(\s*(?i:base64_decode|exec|file_get_contents|gzinflate|passthru|shell_exec|stripslashes|system)\s*\(";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:160;a:4:{s:3:"why";s:40:"Shellshock vulnerability (CVE-2014-6271)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:10:"GET|SERVER";s:3:"wha";s:16:"^\s*\(\s*\)\s*\{";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:250;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:14:"GET|POST|FILES";s:3:"wha";s:43:"^[-\d';].+\w.+(?:--[\x00-\x20\x7f]*|#|/\*)$";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:274:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|select|(?:pg_)?sleep|substring|table|truncate|union|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:251;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:49:"(?i)(?:\b|\d)(?:ceil|concat|conv|floor|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:35:"(?i)(?:\b|\d)(?:pi\s*\(.*?\).+?){3}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:252;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:18:"(?:/\*.*?\*/.+){2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:274:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|select|(?:pg_)?sleep|substring|table|truncate|union|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:253;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"GET|POST|COOKIE";s:3:"wha";s:43:"^(?i:admin(?:istrator)?)['"].*?(?:--|#|/\*)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:254;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:84:"(?i)\b[-\w]+@(?:[-a-z0-9]+\.)+[a-z]{2,8}'.{0,20}[^a-z](?:\band\b|&&).{0,20}=[\s/*]*'";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:256;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:96:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|)\s*(?:\d+\s*)+(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)(?:\s*\d)+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:257;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:99:"(?:\band\b|\bor\b|\bhaving\b|&&|\|\|).{0,250}\b(\w+)\b\s*(?:[!<]?=|=>?|[<>]|(?:not\s+)?like)\s*\1\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:258;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:15:"GET|POST|SERVER";s:3:"wha";s:65:".{5}\bfrom\b.{1,30}\b(?:information|performance)_schema\s*\.\s*\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:259;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:53:"^-?\d+.{0,30}(?:\band\b.{0,30})?\b(?i:union|select)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:261:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:260;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|POST|FILES";s:3:"wha";s:63:"^(?:\b(?:null|and|or)\b|\|\||&&)?\s*union\s+(?:all\s+)?select\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:261;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:51:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|REQUEST_URI";s:3:"wha";s:52:"(?:\b(?:null|and|or)\b|\|\||&&)\s*.{0,50}\bselect\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:267:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:262;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:6:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:36:"^.{0,10}\bselect\b\s.{1,50}\bfrom\b.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;s:3:"cap";i:1;}i:2;a:3:{s:3:"wha";s:273:"(?i)(?:\b|\d)(?:alter|(?:group_)?concat(?:_ws)?|benchmark|create|database|delete|drop|(?:dump|out)file|extractvalue|grant|insert|is\s+(?:not\s+)?null|limit|load(?:_file)?|order\s+by|password|rename|r?like|(?:pg_)?sleep|substring|table|truncate|union|update|version|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:263;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:45:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:16:"union all select";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:264;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:13:"select concat";s:3:"ope";i:3;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:265;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:4:"POST";s:3:"wha";s:48:"^.{0,15}\bunion\s+select\b.{1,100}(from|where)\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:267;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:179:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\balter\s+(?:(?:database|schema)\b|table\s+.{1,70}\s+rename\b|(?:ignore\s+)?table\b|user\b(?:\s+if\s+exists\s)?.{1,38}@).{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:268;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:187:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bcreate\s+(?:(?:database|schema|(?:temporary\s+)?table)\s+(?:if\s+not\s+exists\b)?.{1,70}|user\s+.{1,38}@.{1,38}\s+identified\s+by\s+)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:269;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:186:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bdrop\s+(?:(?:table\b|index\b.{1,60}\son\b|(?:database|schema)\s+(?:if\s+exists\b)?).{1,70}|user\s+(?:if\s+exists\b)?.{1,38}@.{1,38})";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:270;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:92:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\brename\s+table\s+.{1,70}\s+to\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:271;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:151:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bload\s+data\s+(?:(?:low_priority\s+|concurrent\s+)?local\s+)?infile\b.{1,500}\binto\s+table\b.{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:272;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:79:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\btruncate\s+table\s.{1,70}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:273;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:110:"^.{0,30}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,20})?\bselect\b.{1,200}\binto\s+(?:(?:dump|out)file\s|@\w).{10}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:274;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:77:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bload_file\s+/.{3,15}/\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:275;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:113:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bdelete\b.{1,100}\bfrom\b.{1,100}\bwhere\b.{1,100}(?:=|null)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:276;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:124:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bset\s+password\b(?:\s+for\s.{1,38}@.{1,60}=|\s*=.+?\bwhere\s+user\s*=)";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:277;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:74:"(?i)(?:\b|\d)insert\b.+?(?:\b|\d)into\b.{1,150}(?:\b|\d)values\b.*?\(.+?\)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:278;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:86:"^.{0,50}(?:(?:\b(?:and|or|union)\b|\|\||&&).{0,30})?\bupdate\s.{1,100}\bset\s.{1,50}=.";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:279;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:60:"\bgroup\s+\bby\s.{1,200}\bhaving\s.{1,50}(?:[!<]?=|=>?|[<>])";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:280;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:25:"^.{0,10}\border\s+by\s+\d";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:281;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"^.{0,10}\band\s+extractvalue\s+\w";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:282;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:33:"\bbenchmark\s+\d{5,10}\s+[a-z]{2}";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:283;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"\bfloor\s+rand\s+(?:\d+\s*)?\*\s*\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:284;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"\bcase\b.+?\bwhen\b.+?\bthen\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:285;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:29:"^.{0,100}\s(?:pg_)?sleep\s\d+";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:286;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:30:"(?i)\d\s+procedure\s+analyse\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:287;a:4:{s:3:"why";s:13:"SQL injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:59:"waitfor\s+delay\s*\d+(?:\.\d+)?:\d+(?:\.\d+)?:\d+(?:\.\d+)?";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:1;}}}i:300;a:4:{s:3:"why";s:13:"Leading quote";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"GET";s:3:"wha";s:14:"^(?:'|%22|%27)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:301;a:4:{s:3:"why";s:41:"Potential reflected file download attempt";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:31:"(?i)^[^?]*\.(?:bat|cmd)(?:\W|$)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:302;a:4:{s:3:"why";s:12:"PHP variable";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:22:"QUERY_STRING|PATH_INFO";s:3:"wha";s:44:"\bHTTP_RAW_POST_DATA|HTTP_(?:POS|GE)T_VARS\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:303;a:4:{s:3:"why";s:18:"phpinfo.php access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:11:"phpinfo.php";s:3:"ope";i:4;}}}i:304;a:4:{s:3:"why";s:21:"Malformed Host header";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:9:"HTTP_HOST";s:3:"wha";s:20:"[^-a-zA-Z0-9._:\[\]]";s:3:"ope";i:5;}}}i:305;a:4:{s:3:"why";s:23:"PHP handler obfuscation";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:51:"[^/]\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b\.";s:3:"ope";i:5;}}}i:306;a:4:{s:3:"why";s:26:"Bogus user-agent signature";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"SERVER:HTTP_USER_AGENT";s:3:"wha";s:50:"\b(?:compatible; MSIE [1-6]|(?i)Mozilla/[0-3])\.\d";s:3:"ope";i:5;}}}i:307;a:4:{s:3:"why";s:52:"Excessive user-agent string length (400+ characters)";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:7:"^.{400}";s:3:"ope";i:5;}}}i:308;a:4:{s:3:"why";s:30:"Suspicious multibyte character";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:44:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:14:"[\xaf\xbf]\x27";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:309;a:4:{s:3:"why";s:24:"PHP predefined variables";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:65:"QUERY_STRING|PATH_INFO|COOKIE|SERVER:HTTP_USER_AGENT|HTTP_REFERER";s:3:"wha";s:141:"\b(?:\$?_(COOKIE|ENV|FILES|(?:GE|POS|REQUES)T|SE(RVER|SSION))|HTTP_(?:(?:POST|GET)_VARS|RAW_POST_DATA)|GLOBALS)\s*[=\[)]|\W\$\{\s*['"]\w+['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:310;a:4:{s:3:"why";s:30:"Access to a configuration file";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"SCRIPT_NAME|GET";s:3:"wha";s:81:"\b(?i:(?:conf(?:ig(?:ur(?:e|ation)|\.inc|_global)?)?)|settings?(?:\.?inc)?)\.php$";s:3:"ope";i:5;}}}i:311;a:4:{s:3:"why";s:27:"Large set of Hex characters";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:23:"(?i:\\x[a-f0-9]{2}){25}";s:3:"ope";i:5;}}}i:312;a:4:{s:3:"why";s:16:"Non-compliant IP";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:177:"HTTP_X_FORWARDED_FOR|HTTP_CF_CONNECTING_IP|HTTP_CLIENT_IP|HTTP_FORWARDED_FOR|HTTP_INCAP_CLIENT_IP|HTTP_X_CLUSTER_CLIENT_IP|HTTP_X_FORWARDED|HTTP_X_REAL_IP|HTTP_X_SUCURI_CLIENTIP";s:3:"wha";s:28:"[^.0-9a-fA-F:\x20,unkow\[\]]";s:3:"ope";i:5;}}}i:313;a:4:{s:3:"why";s:31:"PHP-CGI exploit (CVE-2012-1823)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:19:"^-[bcndfiswzT].{20}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:315;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:61:">.*?/[./]*dev/[./]*(?:tc|ud)p/[./]*[^/]{5,255}/[./]*\d{1,5}\b";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:316;a:4:{s:3:"why";s:13:"Reverse shell";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:81:"GET|HTTP_HOST|SERVER:HTTP_USER_AGENT|QUERY_STRING|SERVER:HTTP_REFERER|HTTP_COOKIE";s:3:"wha";s:72:"\bnc\s+(?:\d+(\.\d+){3}\s+\d+|-\w+\s+(?:\d+|/[\w/]+\s+\d+(\.\d+){3}\s+))";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:317;a:4:{s:3:"why";s:17:"Hidden PHP script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:53:"/\.[^/]+\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:318;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:36:"(?i:\bchr\s*\(\s*\d{1,3}\s*\).+?){4}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:319;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:5:{s:3:"whe";s:50:"GET|POST|COOKIE|HTTP_REFERER|HTTP_USER_AGENT|FILES";s:3:"wha";s:52:"(?i)concat|select|database|insert|update|union|table";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"cap";i:1;}i:2;a:4:{s:3:"wha";s:75:"\bchar\b\s(?:\d{1,3}\s){3}|(?:\bchar\b\s\d{1,3}\s(?:\|\||or|&&|and)?\s?){3}";s:3:"ope";i:5;s:3:"tra";i:1;s:3:"nor";i:1;}}}i:320;a:4:{s:3:"why";s:15:"Obfuscated data";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:39:"GET|COOKIE|HTTP_REFERER|HTTP_USER_AGENT";s:3:"wha";s:22:"(?i:\\x[a-f0-9]{2}){4}";s:3:"ope";i:5;}}}i:321;a:4:{s:3:"why";s:14:"Adminer script";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:47:"/_?adminer(?:(?:-\d\.\d.\d)(?:-[\w-]+)?)?\.php$";s:3:"ope";i:5;}}}i:322;a:4:{s:3:"why";s:40:"Attempt to modify NinjaFirewall settings";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"(^|\S['"])nfw_(?:options|rules)\b";s:3:"ope";i:5;}}}i:323;a:4:{s:3:"why";s:13:"Proxy attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:19:"^/%EF%BB%BFhttps?:/";s:3:"ope";i:5;}}}i:351;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"REQUEST:nixpasswd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:352;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:16:"\bact=img&img=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:353;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:15:"\bc=img&name=\w";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:354;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:36:"^image=(?:arrow|file|folder|smiley)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:355;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:21:"\buname=.+?;\ssysctl=";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:356;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"REQUEST:sql_passwd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:357;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nowpath";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:358;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:18:"POST:view_writable";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:359;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:6:"COOKIE";s:3:"wha";s:11:"phpspypass=";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:360;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"POST:a";s:3:"wha";s:90:"^(?:Bruteforce|Console|Files(?:Man|Tools)|Network|Php|SecInfo|SelfRemove|Sql|StringTools)$";s:3:"ope";i:5;}}}i:361;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:nst_cmd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:362;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"POST:cmd";s:3:"wha";s:206:"^(?:c(?:h_|URL)|db_query|echo\s\\.*|(?:edit|download|save)_file|find(?:_text|\s.+)|ftp_(?:brute|file_(?:down|up))|mail_file|mk|mysql(?:b|_dump)|php_eval|ps\s.*|search_text|safe_dir|sym[1-2]|test[1-8]|zend)$";s:3:"ope";i:5;}}}i:363;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:5:"GET:p";s:3:"wha";s:65:"^(?:chmod|cmd|edit|eval|delete|headers|md5|mysql|phpinfo|rename)$";s:3:"ope";i:5;}}}i:364;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"QUERY_STRING";s:3:"wha";s:137:"^act=(?:bind|cmd|encoder|eval|feedback|ftpquickbrute|gofile|ls|mkdir|mkfile|processes|ps_aux|search|security|sql|tools|update|upload)&d=/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:365;a:4:{s:3:"why";s:14:"Shell/backdoor";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:6:"SERVER";s:3:"wha";s:36:"\b(?i)(eval|base64_decode)\s*\(.+?\)";s:3:"ope";i:5;}}}i:500;a:4:{s:3:"why";s:40:"ASCII control characters (1-8 and 14-31)";s:3:"lev";i:2;s:3:"ena";i:0;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:20:"[\x01-\x08\x0e-\x1f]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:510;a:4:{s:3:"why";s:38:"DOCUMENT_ROOT variable in HTTP request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:5:{s:3:"whe";s:20:"GET|POST|REQUEST_URI";s:3:"wha";s:11:"/nothingyet";s:3:"ope";i:5;s:3:"nor";i:1;s:3:"tra";i:3;}}}i:520;a:4:{s:3:"why";s:31:"Data URI scheme or PHP wrappers";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:58:"GET|POST|COOKIE|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:99:"^(?i:(?:expect|file|ph(?:ar|p)|zip)://.|.{0,90}\bdata:(?!image/(?:jpe?g|png|gif)).*?;\s*base64.*?,)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:525;a:4:{s:3:"why";s:21:"Serialized PHP object";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:51:"GET|POST|SERVER:HTTP_USER_AGENT|SERVER:HTTP_REFERER";s:3:"wha";s:83:"^.{0,25}[;{}]?\b[OC]:\+?\d+:"[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*":\+?\d+:{.*?}";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:531;a:4:{s:3:"why";s:24:"Suspicious bots/scanners";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:15:"HTTP_USER_AGENT";s:3:"wha";s:321:"(?i:acunetix|backdoor|bandit|blackwidow|BOT for JCE|core-project|dts agent|emailmagnet|ex(ploit|tract)|flood|grabber|harvest|httrack|havij|hunter|indy library|LoadTimeBot|mfibot|Microsoft URL Control|Miami Style|morfeus|nessus|NetLyzer|pmafind|scanner|siphon|spbot|sqlmap|survey|teleport|updown_tester|xovibot|zgrap|zmap)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:540;a:4:{s:3:"why";s:32:"Localhost IP in GET/POST request";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:33:"^(?i:127\.0\.0\.1|localhost|::1)$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1007;a:4:{s:3:"why";s:26:"phpMyAdmin hacking attempt";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/scripts/(?:setup|signon)\.php";s:3:"ope";i:5;}}}i:1011;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:14:"/uploadify.php";s:3:"ope";i:3;}}}i:1350;a:4:{s:3:"why";s:21:"Arbitrary File Upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:30:"/fckeditor/editor/filemanager/";s:3:"ope";i:3;}}}i:1351;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:8:"GET|POST";s:3:"wha";s:15:"/wp-config.php$";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1352;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:58:"POST:wcfm_membership_settings_form|POST:wcfm_settings_form";s:3:"wha";s:1:"<";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"wcfm_ajax_controller";s:3:"ope";i:1;}}}i:1353;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"sif_upload_file";s:3:"ope";i:1;}}}i:1354;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:28:"REQUEST:cwp_rev_product_name";s:3:"wha";s:6:"[<>'"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1357;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"import_widget_data";s:3:"ope";i:1;}}}i:1360;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"^tinvwl_(ex|im)port_settings$";s:3:"ope";i:5;}}}i:1361;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"POST:tccj-update";s:3:"wha";s:6:"Update";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:17:"POST:tccj-content";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1362;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:15:"wp-export-users";s:3:"ope";i:1;}}}i:1363;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:41:"POST:wpcr3_f1|POST:wpcr3_f2|POST:wpcr3_f3";s:3:"wha";s:1:""";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:10:"wpcr3-ajax";s:3:"ope";i:1;}}}i:1364;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"wdr_ajax";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:method";s:3:"wha";s:14:"get_price_html";s:3:"ope";i:2;}}}i:1365;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"^wp_ajax_try_2020_";s:3:"ope";i:5;}}}i:1366;a:4:{s:3:"why";s:24:"Unauthorized file access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:21:"/wp-admin/install.php";s:3:"ope";i:3;}}}i:1367;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"rmp_upload_theme_file";s:3:"ope";i:1;}}}i:1368;a:4:{s:3:"why";s:19:"Unauthorized access";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"my_wpc_fetch_authkey";s:3:"ope";i:1;}}}i:1369;a:4:{s:3:"why";s:12:"Invalid path";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:12:"POST:snapdir";s:3:"wha";s:3:"://";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:1370;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"c37_wpl_import_template";s:3:"ope";i:1;}}}i:1371;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:69:"^update_(?:shipment_status_email_status|enable_late_shipments_email)$";s:3:"ope";i:5;}}s:3:"cpb";s:18:"manage_woocommerce";}i:1372;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:160:"COOKIE:EWD_URP_Karma_IDs|COOKIE:EWD_URP_Reviewed_Products|COOKIE:njt_gdpr_allow_permissions|COOKIE:usces_cookie|COOKIE:fdm_cart|COOKIE:thimpress_hotel_booking_1";s:3:"wha";s:69:"\b[OC]:\+?\d+:"[a-zA-Z_\x7f-\xff][a-zA-Z0-9_\x7f-\xff]*":\+?\d+:{.*?}";s:3:"ope";i:5;}}}i:1373;a:4:{s:3:"why";s:15:"WP-VCD backdoor";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:16:"REQUEST:password";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:22:"^change_(domain|code)$";s:3:"ope";i:5;}}}i:1374;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"theplus_ajax_register";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:24:"REQUEST:tp_user_reg_role";s:3:"wha";s:37:"^(?:subscriber|customer|contributor)$";s:3:"ope";i:6;}}}i:1377;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"cli_policy_generator";s:3:"ope";i:1;}}}i:1378;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:21:"/wp-file-manager/lib/";s:3:"ope";i:3;}}}i:1379;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:17:"POST:lastParentId";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:12:"POST:orderBy";s:3:"wha";s:2:"\W";s:3:"ope";i:5;}}}i:1380;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:25:"GET:awdr_switch_plugin_to";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1381;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"download-lp-users";s:3:"wha";s:3:"yes";s:3:"ope";i:1;}}}i:1382;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:12:"REQUEST:page";s:3:"wha";s:14:"wps_pages_page";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:6:"GET:ID";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1383;a:4:{s:3:"why";s:19:"Unauthorized action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:30:"REQUEST:custom_field_user_role";s:3:"wha";s:20:"administrator|editor";s:3:"ope";i:5;}}}i:1385;a:4:{s:3:"why";s:33:"WP vulnerability (CVE-2019-15896)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"FILES:llms_import";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1386;a:4:{s:3:"why";s:30:"Unauthenticated options update";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"POST:update";s:3:"wha";s:39:"^rr-update-(options|support(-prompt)?)$";s:3:"ope";i:5;}}}i:1387;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:17:"POST:eeFileAction";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1388;a:4:{s:3:"why";s:31:"jQuery unrestricted file upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:21:"/server/php/index.php";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:11:"FILES:files";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1389;a:4:{s:3:"why";s:33:"WP vulnerability (CVE-2019-17231)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:22:"onetone_options_import";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"POST:options";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1390;a:4:{s:3:"why";s:17:"WP options import";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"import_settings";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:10:"POST:value";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1391;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"dnd_codedropz_upload_delete";s:3:"ope";i:1;}}}i:1392;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:22:"/connector.minimal.php";s:3:"ope";i:3;}}}i:1393;a:4:{s:3:"why";s:30:"Unauthenticated options change";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:22:"POST:dpc_save_settings";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1394;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:53:"POST:file|POST:restore_script_url|POST:xcloner_action";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"restore_backup";s:3:"ope";i:1;}}}i:1395;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"post_grid_import_xml_layouts";s:3:"ope";i:1;}}}i:1396;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:46:"ait-csv-import-export/admin/upload-handler.php";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:10:"FILES:file";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:1397;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:16:"POST:delete_file";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1398;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:126:"^(?:uploadFontIcon|kaswaraImportDemo|importShortcodeData|importCf7Styles|deleteFontIcon|kaswaraCustomCode|kaswaraCf7Designer)$";s:3:"ope";i:5;}}}i:1399;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:34:"POST:berocket_aapf_wizard_settings";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1400;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:10:"ssb_import";s:3:"ope";i:1;}}}i:1401;a:4:{s:3:"why";s:33:"WP vulnerability (CVE-2019-17228)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:21:"FILES:import_settings";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1402;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:9:"connector";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"REQUEST:cmd";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1403;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:11:"nxs_snap_aj";s:3:"ope";i:1;}}}i:1404;a:4:{s:3:"why";s:27:"Freemius SDK <2.2.4 exploit";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"GET:action|POST:action";s:3:"wha";s:16:"fs_set_db_option";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:option_name";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1405;a:4:{s:3:"why";s:19:"Unauthorized upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:27:"/js/swfupload/js/upload.php";s:3:"ope";i:3;}}}i:1406;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:118:"^(?:wpdeveloper_(?:install|upgrade|activate)_plugin|save_(?:setup_wizard_data|eael_elements_data|settings_with_ajax))$";s:3:"ope";i:5;}}}i:1408;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:14:"/thrive/kraken";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:1409;a:4:{s:3:"why";s:28:"Unrestricted REST API access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:61:"/visualizer/v1/(upload-data|update-chart|get-permission-data)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1410;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:17:"slp_change_option";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:60:"formdata\[option_name\]=user_meta\[((?!locations_per_page).)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1411;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"upload-remote-file";s:3:"ope";i:1;}}}i:1412;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:18:"POST:uploadsDirURL";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:15:"POST:uploadsDir";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1414;a:4:{s:3:"why";s:13:"Potential XSS";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:9:"slimtrack";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:10:"REQUEST:pl";s:3:"wha";s:4:"['"]";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1415;a:4:{s:3:"why";s:18:"Potential XSS/SQLi";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"fv_wp_flowplayer_email_signup";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:13:"REQUEST:email";s:3:"wha";s:1:"<";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:1416;a:4:{s:3:"why";s:19:"Unauthorized access";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:9:"mmr_files";s:3:"ope";i:1;}}}i:1417;a:4:{s:3:"why";s:27:"Unauthorized options update";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"POST:wuev_form_type";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1418;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"ai_ajax_backend";s:3:"ope";i:1;}}}i:1419;a:4:{s:3:"why";s:27:"Unauthenticated file upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:9:"epl-tools";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:epl_import";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1421;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"crellyslider_importSlider";s:3:"ope";i:1;}}}i:1422;a:4:{s:3:"why";s:25:"Unauthorized file edition";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:22:"GET:action|POST:action";s:3:"wha";s:35:"^(?:update|edit-theme-plugin-file)$";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:9:"POST:file";s:3:"wha";s:27:"^(?:ninjafirewall|nfwplus)/";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1423;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:19:"POST:wcuf_file_name";s:3:"wha";s:4:".php";s:3:"ope";i:3;}}}i:1424;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"do_button_job_later";s:3:"ope";i:1;}}}i:1425;a:4:{s:3:"why";s:10:"Stored XSS";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:4:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:121:"<(?i)(?:(?:a|abbr|acronym)\b.+?title|(?:blockquote|q)\b.+?cite|del\b.+?datetime)\s*=\s*['"][^>]+?on[a-z]{3,18}\s*=\s*.+?>";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1426;a:4:{s:3:"why";s:22:"Excessive payload size";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:author";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:12:"POST:comment";s:3:"wha";s:13:"^(?s).{65000}";s:3:"ope";i:5;}}}i:1427;a:4:{s:3:"why";s:21:"Arbitrary file upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:23:"FILES:xl_required_files";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1428;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:45:"GET:do_reset_wordpress|GET:ai_reset_wordpress";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1429;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"woosea_save_adwords_conversion_id";s:3:"ope";i:1;}}}i:1430;a:4:{s:3:"why";s:19:"Unauthenticated XSS";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:15:"POST:action_rcs";s:3:"wha";s:33:"action_rcs_page_setting_save_post";s:3:"ope";i:1;}}}i:1431;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:24:"qppr_save_quick_redirect";s:3:"ope";i:1;}}}i:1432;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:26:"/api/flutter_user/register";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:3:"RAW";s:3:"wha";s:26:"":"(administrator|editor)"";s:3:"ope";i:5;}}}i:1433;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:37:"/api/flutter_user/update_user_profile";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:1434;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:20:"facebook-like-button";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:12:"REQUEST:edit";s:3:"wha";s:1:"1";s:3:"ope";i:1;}}}i:1435;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:17:"save_gallery_data";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:18:"REQUEST:categories";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1436;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:15:"importJSONTable";s:3:"ope";i:1;}}}i:1437;a:4:{s:3:"why";s:29:"Unauthenticated option update";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:17:"GET:yp_remote_get";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:24:"POST:yp_json_import_data";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1438;a:4:{s:3:"why";s:27:"Unauthorized options update";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:17:"yuzo-related-post";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:17:"POST:save_options";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1439;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:16:"POST:option_page";s:3:"wha";s:47:"^inspire_checkout_fields_(checkboxes|settings)$";s:3:"ope";i:5;}}}i:1440;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:76:"GET:swpsmtp_action|POST:swpsmtp_export_settings|POST:swpsmtp_import_settings";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1441;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"wsal-setup";s:3:"ope";i:1;}}}i:1442;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:94:"^((user|coupon|product_(reviews|comments))_csv|woocommerce_(csv|xml)(_order)?)_import_request$";s:3:"ope";i:5;}}}i:1443;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"gmwd_setup";s:3:"ope";i:1;}}}i:1444;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"aj_steps";s:3:"ope";i:1;}}}i:1445;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:13:"GET:swp_debug";s:3:"wha";s:12:"load_options";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"GET:swp_url";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1446;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:32:"SERVER:HTTP_X_WORDABLE_SIGNATURE";s:3:"wha";s:17:"^([^=]+|.*?=\s*)$";s:3:"ope";i:5;}}}i:1447;a:4:{s:3:"why";s:27:"Unauthorized options change";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:51:"POST:wp_db_backup_email_id|POST:wp_db_exclude_table";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1448;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"responsive-ready-sites-";s:3:"ope";i:3;}}}i:1449;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"^cfp-(?:new-post|connect)$";s:3:"ope";i:5;}}}i:1450;a:4:{s:3:"why";s:21:"Arbitrary file upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:21:"wccs_upload_file_func";s:3:"ope";i:1;}}}i:1451;a:4:{s:3:"why";s:21:"Arbitrary file upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:11:"POST:action";s:3:"wha";s:21:"wccs_upload_file_func";s:3:"ope";i:1;}}}i:1452;a:4:{s:3:"why";s:21:"Arbitrary file upload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:12:"wpsc_tickets";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:10:"FILES:file";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:1453;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"wfu_ajax_action_ask_server";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:17:"REQUEST:filenames";s:3:"wha";s:1:"/";s:3:"ope";i:3;}}}i:1455;a:4:{s:3:"why";s:20:"Suspicious shortcode";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:21:"parse-media-shortcode";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:14:"POST:shortcode";s:3:"wha";s:47:"\W\w+=(?:"[^"]*['<=][^"]*"|'[^']*["<=][^']*')\W";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1456;a:4:{s:3:"why";s:27:"Unauthorized options change";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:4:"save";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"REQUEST:updated";s:3:"wha";s:4:"true";s:3:"ope";i:1;}}}i:1457;a:4:{s:3:"why";s:28:"Unauthorized settings change";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:40:"POST:wplc_custom_css|POST:wplc_custom_js";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:23:"POST:wplc_save_settings";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1458;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:32:"9284c7ff7e1ab0302c646cad106cbacd";s:3:"exe";s:3:"md5";s:3:"ope";i:1;}}}i:1459;a:4:{s:3:"why";s:28:"Unauthorized settings change";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"update_zb_fbc_code";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:domain";s:3:"wha";s:6:"[<'";]";s:3:"ope";i:5;}}}i:1460;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:22:"^(de)?activate_plugin$";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:10:"GET:plugin";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1461;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:36:"FILES:wp_advanced_search_file_import";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1462;a:4:{s:3:"why";s:30:"Unauthenticated options change";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:83:"^nd_(?:options|travel|rst|learning|donations|booking)_import_settings_php_function$";s:3:"ope";i:5;}}}i:1463;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"companion_disable_popup";s:3:"ope";i:1;}}}i:1464;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:84:"^(?:tutor_add_instructor|instructor_approval_action|tutor_option_save|setup_action)$";s:3:"ope";i:5;}}}i:1465;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:action";s:3:"wha";s:23:"lrgawidget_setProfileID";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"POST:property_id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1466;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:294:"POST:ghazale-sds-submit-field-name|POST:ghazale_sds_edit_field|POST:submit-update-single-entry|POST:sds-submit-upload-csv-file|GET:sds-total-del-form-table|GET:sds-total-del-input-table-and-corresponding-form|GET:sds-delete-field-id|GET:sds-del-data-input-table|GET:sds-del-entry-first-entry-id";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1467;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:82:"^(epsilon_framework_ajax_action|(welcome_screen|epsilon_dashboard)_ajax_callback)$";s:3:"ope";i:5;}}}i:1468;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:10:"dmm_export";s:3:"ope";i:1;}}}i:1469;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:37:"/wp-json/api/flutter_user/apple_login";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:21:"SERVER:REQUEST_METHOD";s:3:"wha";s:3:"GET";s:3:"ope";i:1;}}}i:1470;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:28:"GET:stripe_access_token_test";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1471;a:4:{s:3:"why";s:24:"Unrestricted file access";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:12:"/readme.html";s:3:"ope";i:3;}}}i:1472;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:23:"GET:SuperSocializerAuth";s:3:"wha";s:11:"LiveJournal";s:3:"ope";i:1;}}}i:1473;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:9:"elementor";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:22:"REQUEST:elementor-mode";s:3:"wha";s:4:"safe";s:3:"ope";i:1;}}}i:1474;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"elementor_ajax";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:70:""enable_(safe_mode|svg_uploads)|pro_assets_manager_custom_icon_upload"";s:3:"ope";i:5;}}}i:1475;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:13:"sgpb_autosave";s:3:"ope";i:1;}}}i:1476;a:4:{s:3:"why";s:18:"Suspicious payload";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:145:"(?i:SPY\s*H4X3R)|\bwordprestadmin\b|\bdevelopfirstline\.com|\bdigestcolect\.com|\btrackstatisticsss\.com|\bbalantfromsun\.com|\bwow-robotics\.xyz";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1477;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:21:"SERVER:REQUEST_METHOD";s:3:"wha";s:4:"POST";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:35:"REQUEST:gdpr_save_priv_pol_settings";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1478;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:1;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:7:"wp_gdpr";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:21:"REQUEST:action_switch";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1479;a:4:{s:3:"why";s:23:"Suspicious HTTP_REFERER";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:19:"SERVER:HTTP_REFERER";s:3:"wha";s:8:"../../..";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:1481;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"GET:Action|GET:OTPAction";s:3:"wha";s:99:"^(?:EWD_OTP_AddOrder|EWD_UASP_AddAppointment|UPCP_AddProduct|EWD_URP_ImportReviewsFrom)Spreadsheet$";s:3:"ope";i:5;}}}i:1482;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:19:"^{"save_builder":{"";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:15:"REQUEST:actions";s:3:"wha";s:93:""url":"[^"]*?(?i:javascript)|"(?:custom)?_attributes":"(?:(?![^\\]").)*?\b(?i)on[a-z]{3,29}\b";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1483;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"fruitful_theme_options_action";s:3:"ope";i:1;}}}i:1484;a:4:{s:3:"why";s:16:"Suspicious login";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:13:"/wp-login.php";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:8:"POST:log";s:3:"wha";s:99:"^(server_admin|foxilitrix|system_not_delete_|admin_sweet|AnonymousFox|adminlin|cron-.{40}$)|['"<>;]";s:3:"ope";i:5;}}}i:1485;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:17:"REQUEST:lp-action";s:3:"wha";s:14:"accept-request";s:3:"ope";i:1;}}}i:1486;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:63:"^(learnpress_(be_teacher|plugin_install)|accept-to-be-teacher)$";s:3:"ope";i:5;}}}i:1487;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:23:"/rankmath/v1/updateMeta";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:3:"RAW";s:3:"wha";s:28:"capabilities][administrator]";s:3:"ope";i:3;}}}i:1488;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"export_admin_table";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"REQUEST:filename";s:3:"wha";s:6:"\.csv$";s:3:"ope";i:6;}}}i:1489;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:foobar";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:93:"^TotalSoftPoll_(Clone(?:_Set)?|Del(?:_Set)?|Edit(?:_Q_M|_Ans|_Set)?|Theme_(?:Clone|Edit1?)?)$";s:3:"ope";i:5;}}}i:1490;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"vcv-admin-ajax";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:18:"REQUEST:vcv-action";s:3:"wha";s:24:"settings:save:adminNonce";s:3:"ope";i:1;}}}i:1491;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"vcv-admin-ajax";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:15:"REQUEST:vcv-zip";s:3:"wha";s:55:"<(?i:applet|embed|i?frame(?:set)?|meta|object|script)\b";s:3:"exm";s:25:"base64_decode|zlib_decode";s:3:"ope";i:5;}}}i:1492;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:17:"vcv-global-css-js";s:3:"ope";i:1;}}}i:1493;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"^xoo_aff_(?:save|reset)_settings$";s:3:"ope";i:5;}}}i:1494;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"googlesitekit_proxy_setup";s:3:"ope";i:1;}}}i:1495;a:4:{s:3:"why";s:50:"ThemeREX Addons unauthenticated function injection";s:3:"lev";i:2;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:28:"/trx_addons/v2/get/sc_layout";s:3:"ope";i:3;s:3:"nor";i:1;}}}i:1496;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:30:"REQUEST_URI|REQUEST:rest_route";s:3:"wha";s:30:"/rankmath/v1/updateRedirection";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:3:{s:3:"whe";s:22:"REQUEST:redirectionUrl";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1497;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"POST:bbp-forums-role";s:3:"wha";s:13:"bbp_keymaster";s:3:"ope";i:1;}}}i:1498;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:18:"_ning_upload_image";s:3:"ope";i:1;}}}i:1499;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"st_filter_tour_ajax_location";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:15:"GET:id_location";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1500;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:26:"change_klarna_addon_status";s:3:"ope";i:1;}}}i:1501;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:23:"gdlr_lms_cancel_booking";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:7:"POST:id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}}}i:1502;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:12:"POST:rm_slug";s:3:"wha";s:12:"rm_user_edit";s:3:"ope";i:1;}}}i:1503;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:81:"^(rm_save_form_view_sett|set_default_form|import_first|rm_admin_upload_template)$";s:3:"ope";i:5;}}}i:1504;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"qsm_upload_image_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:10:"FILES:file";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}}}i:1505;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:27:"qsm_remove_file_fd_question";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:13:"POST:file_url";s:3:"wha";s:15:"^qsmfileupload_";s:3:"ope";i:6;}}}i:1506;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:4:{s:3:"whe";s:28:"GET:alg_wc_pif_download_file";s:3:"wha";s:7:"\.[\\/]";s:3:"ope";i:5;s:3:"tra";i:3;}}}i:1507;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:35:"kaliforms_form_delete_uploaded_file";s:3:"ope";i:1;}}}i:1508;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:28:"kaliforms_update_option_ajax";s:3:"ope";i:1;}}}i:1509;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:8:"uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1510;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:16:"iconset_uploader";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:16:"FILES:uploadfile";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1511;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:5:"FILES";s:3:"wha";s:45:"\.(?:ph(?:p([34x7]|5\d?)?|t(ml)?|ar)|html?)\b";s:3:"ope";i:5;}i:2;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:14:"wmuUploadFiles";s:3:"ope";i:1;}}}i:1512;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"iva_bh_import_ajax_action";s:3:"ope";i:1;}}}i:1513;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:20:"stm_listing_register";s:3:"ope";i:1;}i:2;a:4:{s:3:"whe";s:3:"RAW";s:3:"wha";s:23:""role":"(?!user|agency)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1514;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:16:"/1/api/ulisting-";s:3:"ope";i:3;s:3:"nor";i:1;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:163:"/1/api/ulisting-(?:builder/listing-(?:single-layout|type-layout/(?:save_layout|delete-layout)|item-card-layout|single-page)|user/(?:search|role/save)|email|import)";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1515;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:26:"GET:listing_id|GET:user_id";s:3:"wha";s:2:"\D";s:3:"ope";i:5;}i:2;a:4:{s:3:"whe";s:11:"REQUEST_URI";s:3:"wha";s:39:"/1/api/ulisting-page-statistics/listing";s:3:"ope";i:5;s:3:"nor";i:1;}}}i:1516;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:25:"backup_guard_importBackup";s:3:"ope";i:1;}}}i:1517;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:133:"POST:ct-ultimate-gdpr-export|POST:ct-ultimate-gdpr-import|POST:ct-ultimate-gdpr-export-services|POST:ct-ultimate-gdpr-import-services";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1518;a:4:{s:3:"why";s:16:"WP vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:148:"^(?:wpcf7r_migrate_all_forms|wpcf7r_reset_settings|import_from_debug|wpcf7r_extension_update|deactivate_wpcf7r_extension|activate_wpcf7r_extension)$";s:3:"ope";i:5;}}}i:1519;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"ninja_forms_sendwp_remote_install";s:3:"ope";i:1;}}}i:1520;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"^kiwi_social_share_[sg]et_option$";s:3:"ope";i:5;}}}i:1521;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:20:"GET:backup-migration";s:3:"wha";s:13:"PROGRESS_LOGS";s:3:"ope";i:1;}}}i:1522;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:30:"superpwa_splashscreen_uploader";s:3:"ope";i:1;}}}i:1523;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:4:"POST";s:3:"wha";s:27:"\bpagepath=['"]?\.\./\.\./.";s:3:"ope";i:5;}}}i:1524;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:33:"usces_download_system_information";s:3:"ope";i:1;}}s:3:"cpb";s:13:"administrator";}i:1525;a:5:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:42:"REQUEST:member_action|REQUEST:order_action";s:3:"wha";s:35:"^dl(?:order|product|member)newlist$";s:3:"ope";i:5;}}s:3:"cpb";s:13:"administrator";}i:1536;a:4:{s:3:"why";s:16:"WP Vulnerability";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:import";s:3:"wha";s:0:"";s:3:"ope";i:7;}i:2;a:3:{s:3:"whe";s:8:"GET:page";s:3:"wha";s:10:"301options";s:3:"ope";i:1;}}}i:1537;a:4:{s:3:"why";s:14:"Code injection";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:11:"POST:action";s:3:"wha";s:20:"td_ajax_update_panel";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"POST:td_ads";s:3:"wha";s:1:"<";s:3:"ope";i:3;}}}i:1538;a:4:{s:3:"why";s:21:"Remote code execution";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:47:"POST:dbname|POST:dbuser|POST:dbport|POST:dbhost";s:3:"wha";s:1:"'";s:3:"ope";i:3;}i:2;a:3:{s:3:"whe";s:16:"POST:action_ajax";s:3:"wha";s:1:"3";s:3:"ope";i:1;}}}i:1539;a:4:{s:3:"why";s:21:"Remote code execution";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:21:"SERVER:REQUEST_METHOD";s:3:"wha";s:4:"POST";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:11:"SCRIPT_NAME";s:3:"wha";s:14:"/installer.php";s:3:"ope";i:3;}}}i:1540;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:19:"duplicator_download";s:3:"ope";i:1;}}}i:1541;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:14:"REQUEST:action";s:3:"wha";s:29:"^bulk301(?:export|clearlist)$";s:3:"ope";i:5;}}}i:1542;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:24:"FILES:301_bulk_redirects";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1543;a:4:{s:3:"why";s:33:"WP vulnerability (CVE-2019-15858)";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:1:{i:1;a:3:{s:3:"whe";s:27:"FILES:wbcr_inp_import_files";s:3:"wha";s:0:"";s:3:"ope";i:7;}}}i:1544;a:4:{s:3:"why";s:22:"Unauthenticated action";s:3:"lev";i:3;s:3:"ena";i:1;s:3:"cha";a:2:{i:1;a:3:{s:3:"whe";s:10:"GET:action";s:3:"wha";s:5:"close";s:3:"ope";i:1;}i:2;a:3:{s:3:"whe";s:8:"GET:post";s:3:"wha";s:5:"^\d+$";s:3:"ope";i:5;}}}i:999;a:8:{i:108;i:1;i:110;i:1;i:112;i:1;i:114;i:1;i:118;i:1;i:123;i:1;i:1369;i:1;i:1422;i:1;}s:7:"dropins";s:10992:"PD9waHAgLy8gTmluamFGaXJld2FsbCdzIGRyb3BpbnMucGhwIH4gRG8gbm90IGRlbGV0ZSB0aGlzIGZpbGUhCiBpZiAoISBkZWZpbmVkKCAnTkZXX0VOR0lORV9WRVJTSU9OJyApICkgeyBkaWUoICdGb3JiaWRkZW4nICk7IH0gaWYgKGRlZmluZWQoJ1dQX0NMSScpICYmIFdQX0NMSSApIHsgcmV0dXJuOyB9IGlmICghIGlzX3N1cGVyX2FkbWluKCkgKSB7IGlmICggaXNzZXQoICRfUkVRVUVTVFsnYWN0aW9uJ10gKSApIHsgaWYgKCAkX1JFUVVFU1RbJ2FjdGlvbiddID09ICd1YWVsX3JlZ2lzdGVyX3VzZXInICkgeyBpZiAoISBnZXRfb3B0aW9uKCAndXNlcnNfY2FuX3JlZ2lzdGVyJyApICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjAyICk7IH0gfSBlbHNlIHsgJG5md19hY3RfaGFzaCA9IHNoYTEoICRfUkVRVUVTVFsnYWN0aW9uJ10gKTsgaWYgKCAkbmZ3X2FjdF9oYXNoID09ICcwODU2N2JhMzdlMDg3ZWIwOGRlNGQyMzQwMTkyZTA3NjE2YTcyZDMxJyAmJiBpc3NldCggJF9QT1NUWydpZCddICkgKSB7ICRwb3N0ID0gZ2V0X3Bvc3QoIChpbnQpJF9QT1NUWydpZCddICk7IGlmICghIGVtcHR5KCAkcG9zdC0+cG9zdF9wYXNzd29yZCApIHx8ICRwb3N0LT5wb3N0X3N0YXR1cyAhPSAncHVibGlzaCcgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MDgpOyB9IH0gZWxzZWlmICggJG5md19hY3RfaGFzaCA9PSAnYzk2ZjAyOWMwMjYxMTZlYmNmMzFhYTMzMDVjMWYzYzMxNjAwZGZiYicgKSB7IGlmICghIGN1cnJlbnRfdXNlcl9jYW4oJ3B1Ymxpc2hfcGFnZXMnKSApIHsgbmZ3X2Ryb3Bpbl9ibG9jayggIlJFUVVFU1Q6YWN0aW9uID0geyRfUkVRVUVTVFsnYWN0aW9uJ119IiwgMywgMTYwOSk7IH0gfSBlbHNlaWYoICRuZndfYWN0X2hhc2ggPT0gJzBlZTZjYTJjZjAxMmE5ZTg1OTg2NGE3MThkNzBkZGU1ZWJiMDFmZjUnICkgeyBpZiAoISBlbXB0eSggJF9SRVFVRVNUWydzdGF0dXMnXSApICYmICRfUkVRVUVTVFsnc3RhdHVzJ10gPT09ICdkaXNhYmxlLWNtcCcgJiYgZ2V0X29wdGlvbignbml0ZW9DU19jb3VudGVyX2RhdGUnICkgPiB0aW1lKCkgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MTApOyB9IH0gZWxzZWlmICggJG5md19hY3RfaGFzaCA9PSAnZWYzYzljM2UwNjdjMDI1ZjZlNTM5ZjU2ODkzNmFhNTY3YjIyM2I2NycgJiYgISBjdXJyZW50X3VzZXJfY2FuKCAndW5maWx0ZXJlZF9odG1sJyApICkgeyBpZiAoIHByZWdfbWF0Y2goJy92Y19yYXdfKD86aHRtbHxqcyl8Y3VzdG9tX29uY2xpY2tfY29kZS8nLCAkX1BPU1RbJ2NvbnRlbnQnXSApICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjAxICk7IH0gfSBlbHNlaWYgKCAkbmZ3X2FjdF9oYXNoID09ICc3MDVkZjgxNjBjYWFmNDc4MGFmY2ZlNDc2NmZjNzlhMmJiMjkxM2NmJyAmJiBpc3NldCggJF9QT1NUWydpZCddICkgKSB7IGlmICggbmZ3X2Ryb3Bpbl9jYW5fZWRpdF9wb3N0KCAkX1BPU1RbJ2lkJ10gKSA9PSB0cnVlICkgeyByZXR1cm47IH0gbmZ3X2Ryb3Bpbl9ibG9jayggIlJFUVVFU1Q6YWN0aW9uID0geyRfUkVRVUVTVFsnYWN0aW9uJ119IiwgMywgMTYxMSApOyB9IGVsc2VpZiAoICRuZndfYWN0X2hhc2ggPT0gJzE5NzFlZmU3NmU3OTExMWU3MDdiOWNlNDIzNzU1ZDgzNTQ5M2YyYTYnICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjEyICk7IH0gZWxzZWlmICggJG5md19hY3RfaGFzaCA9PSAnY2JjMjdkZDgxNGY3ZTA2M2M0MDlhMjNkNGYyYTA2NGY4NmM3ZjUyOScgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MTMgKTsgfSBlbHNlaWYgKCAkbmZ3X2FjdF9oYXNoID09ICc0Y2MwNWJlYmQ2ZmY5YmFkYWY4Zjg0ODY0M2U5NGQ4NDNkN2I0NzUzJyApIHsgaWYgKCEgZW1wdHkoICRfUE9TVFsndXNlcl9pZCddICkgJiYgJF9QT1NUWyd1c2VyX2lkJ10gPT0gZ2V0X2N1cnJlbnRfdXNlcl9pZCgpICkgeyByZXR1cm47IH0gbmZ3X2Ryb3Bpbl9ibG9jayggIlJFUVVFU1Q6YWN0aW9uID0geyRfUkVRVUVTVFsnYWN0aW9uJ119IiwgMywgMTYxNCApOyB9IGVsc2VpZiAoICRuZndfYWN0X2hhc2ggPT0gJ2M5YTdmZTZiODYzMTljOTg5MDk4ZWU5MDgxZThlZGU5MjlkMWRkMDEnICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjE1ICk7IH0gZWxzZWlmICggaW5fYXJyYXkoICRuZndfYWN0X2hhc2gsIGFycmF5KCAnMmU1OTFmZmIwYWI4YjRhN2NjZTk1NTQzNDMxMWNiNDdlMmY2YjhmYicsICdkZDk2Y2RiYzU5NjlkYjBjZTYzMThmM2ZhNjE2YTk4YjNlY2E5ZGVkJyApICkgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MTYgKTsgfSBlbHNlaWYgKCBpbl9hcnJheSggJG5md19hY3RfaGFzaCwgYXJyYXkoICcxZjRjMTA5Zjc5MDhjMjA3MTI1MGM3N2MxMmI5YTUyYTM0ZjJlNTBlJywgJzRjYzMwYjZhNDVkMWM1NTFhZjIzNDYwYWYyN2Q1Mjk0Y2VmMmFjNGQnLCAnNzU3OWZkNzY5MmM3OGMwMDdmYzczY2FmMDRiMjhhM2Q4MGU1NTY1OCcsICc2NTU0N2MzNTI4NzcyZjZmNWE1N2MxOTdiZjRjZTg5NmVjOGJjYjlhJywgJ2IwN2EyMDgzODFlM2U2OTdmOWQ4OGIwOGUxZmMyNTc3ZjI4MjAzNTQnICkgKSApIHsgaWYgKCEgaXNzZXQoICRfUkVRVUVTVFsnZmlsZV9pZCddICkgfHwgbmZ3X2Ryb3Bpbl9jYW5fZWRpdF9wb3N0KCAkX1JFUVVFU1RbJ2ZpbGVfaWQnXSApID09IGZhbHNlICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjE3ICk7IH0gfSBlbHNlaWYgKCAkbmZ3X2FjdF9oYXNoID09ICdmNmQxMjVmNGU2Njc1MTc3ZmNiZWMyOTkxN2YyZGVhOGFjZTYxOWI5JyApIHsgJGZpbGVfZXh0ID0gcGF0aGluZm8oJF9SRVFVRVNUWydvdXRwdXQnXVsnaW1wb3J0cyddWzBdLCBQQVRISU5GT19FWFRFTlNJT04pOyBpZiAoIWluX2FycmF5KCRmaWxlX2V4dCwgYXJyYXkoJ2xlc3MnLCAnY3NzJykpKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MTggKTsgfSB9IGVsc2VpZiAoIGluX2FycmF5KCAkbmZ3X2FjdF9oYXNoLCBhcnJheSggJ2M2MjQ3MjFmMDFhYmQwN2JhMmYyM2I3YWQxMzU0ZGFjMmNjYmM3OWInLCAnNTE3Yzk0NmQ2YzFmYzgyYzFiOWMwYzcwMzFlZjgwOGQ0NGMxMDEwNScsICcxY2MxZWMyYTc5ZTcwNDgyNDNkZWE4OGI2M2Y1Y2E2ZmU0OGEyNWZiJywgJzM4MjI1NTdkNDM4YTdkMmVkMzNmMjkxZDFmZmYwZWE0YWQzNjEwODInLCAnYWMxYzFkYmE0NTNiODJkNDE5ZjFjZjU1OTQxNjdiMDcwZjI5NzllNScsICdlMmU4MmI2N2RkOGYxNzNjMTMyM2NiOTkzODc1ODljMjgzYjUwYTE2JywgJ2JhNGE2YzhhNTIzYjA3ZGNkOGVmNmNiZjcwYmRhZmRiMjdmNzRmZWYnLCAnMTM3NTZlZTZlNjdjZTlkZjc2ZDRkYjY2M2FjN2UyOTM2YmZjMjg4NScsICcxYmY5MzYwYzUyZTYzNjk4MGI5MDA2NGJlOWExNDljMDExNjRlODUzJywgJ2VkYjc0ODBjYzUzYzY4YzFkMjY3YzhhOGEzYjJjNGI0YmEwYTk4MDAnLCAnMmNmZjAzOTAxOGJmZjM3YjlhODMwYzY1YjMyNmE3ZTRiODFmMDc5NScsICdkZmQxMzg3ZGY4YWJmZGRiNmY1MDg5YWQyYmEwNmFhNzRlMTkyYTJjJyApICkgJiYgISBjdXJyZW50X3VzZXJfY2FuKCdwdWJsaXNoX3Bvc3RzJykgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MTkpOyB9IGVsc2VpZiAoICRuZndfYWN0X2hhc2ggPT0gJzkxNzkwNjA1MDc3ODY4YjI0NDQxOTYyYzQxOGM1MmIxMDkxNjY2YmMnICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjIxKTsgfSBlbHNlaWYgKCBpbl9hcnJheSggJG5md19hY3RfaGFzaCwgYXJyYXkoICdlN2NkY2E0M2RjNWJjNWNiNjAyY2E2MjhiMGIyZjM5MzdmMTY4ZmZlJywgJ2M5MGUyNDBmZjAwYjE3NGI3OTEyZTFhYTFhMzdjYmJmNjAzODgxZDEnLCAnMjg0MTZjNzBhMjM3MjY4ZWI1MGU5NjMyM2YyYmJhMzk4YmUyOTIwYicsICdhNmFiMmYxZjg2NmY3OTZjOThjNWFkZjllYzc2NjM4MTEyYTdiYWU2JywgJ2YwMjVmMjBiZjc5ZmM3ZWUxZThlODYyNDg3N2E0NjQ1NDQ0ZGJkN2InLCAnY2FlY2JiMzUzZmFmNTIwNDI3MzY2ZGFkZjBkODk1NWE4OGQwYjFlNScsICczMGZiMThmMmRmNDE3ZTllMDJmYmMxOTM4ODhmNTFjMDQyMDNmOThjJywgJzI4MWQzNjYxZmM5MWM4MDUyYTI5YzVmZTk2YjI5NzhkN2FmNTc0ZmYnICkgKSApIHsgbmZ3X2Ryb3Bpbl9ibG9jayggIlJFUVVFU1Q6YWN0aW9uID0geyRfUkVRVUVTVFsnYWN0aW9uJ119IiwgMywgMTYyMik7IH0gZWxzZWlmICggaW5fYXJyYXkoICRuZndfYWN0X2hhc2gsIGFycmF5KCAnZWQwMjkwZGU5OTk3MjA0OGNkOGY3MDM4NGM5MDQyNDY2MTc2NTM0YScsICcyMDg2YTlhYTUwY2RhNTNiMTUxMGNjN2YwZGU1NWRlNGE1Y2EwYzI5JyApICkgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MjMpOyB9IGVsc2VpZiAoIGluX2FycmF5KCAkbmZ3X2FjdF9oYXNoLCBhcnJheSggJ2UwZTQwODlhM2UyYTQ5NDYzOTA3ZTZlM2I4OTZiYmQ4ZjY4YjAxY2InLCAnMjA1ZDNjNDJhOGFjMDFkNTM0MTZkNmRlYTBhZjYyYjIyNTI2MjQyOCcgKSApICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVDphY3Rpb24gPSB7JF9SRVFVRVNUWydhY3Rpb24nXX0iLCAzLCAxNjI0KTsgfSBlbHNlaWYgKCAkbmZ3X2FjdF9oYXNoID09ICdjNzBkNmQwMzgzOWE5NWVmM2EzYWNjMDg4YzY3YTY5YTBmY2U2YWEzJyApIHsgaWYgKCBpc3NldCggJF9QT1NUWydtZW1iZXJzaGlwaWQnXSApICYmIG5md19kcm9waW5fY2FuX2RlbGV0ZV9wb3N0KCAkX1BPU1RbJ21lbWJlcnNoaXBpZCddICkgPT0gZmFsc2UgKSB7IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUOmFjdGlvbiA9IHskX1JFUVVFU1RbJ2FjdGlvbiddfSIsIDMsIDE2MjYgKTsgfSB9IH0gfSBpZiAoIGlzc2V0KCAkX1NFUlZFUlsnUkVRVUVTVF9NRVRIT0QnXSApICYmICRfU0VSVkVSWydSRVFVRVNUX01FVEhPRCddID09ICdQT1NUJyApIHsgaWYgKCBwcmVnX21hdGNoKCAnYDEvYXBpL3VsaXN0aW5nLXVzZXIvKD86ZGVsZXRlbGlzdGluZ3xkcmFmdF9vcl9kZWxldGUpYCcsIEB1cmxkZWNvZGUoICRfU0VSVkVSWydSRVFVRVNUX1VSSSddICkgKSApIHsgJHJiID0gZmlsZV9nZXRfY29udGVudHMoJ3BocDovL2lucHV0Jyk7IGlmICggJHJiID0ganNvbl9kZWNvZGUoJHJiLCB0cnVlKSApIHsgaWYgKCEgZW1wdHkoICRyYlsndXNlcl9pZCddICkgJiYgJHJiWyd1c2VyX2lkJ10gPT0gZ2V0X2N1cnJlbnRfdXNlcl9pZCgpICkgeyBpZiAoIG5md19kcm9waW5fY2FuX2VkaXRfcG9zdCggJHJiWydsaXN0aW5nX2lkJ10gKSA9PSB0cnVlICkgeyByZXR1cm47IH0gfSB9IG5md19kcm9waW5fYmxvY2soICJSRVFVRVNUX1VSSSA9IHskX1NFUlZFUlsnUkVRVUVTVF9VUkknXX0iLCAzLCAxNjAzICk7IH0gfSB9IGlmICggKCBpc3NldCggJF9TRVJWRVJbJ1JFUVVFU1RfVVJJJ10gKSAmJiBzdHJwb3MoICRfU0VSVkVSWydSRVFVRVNUX1VSSSddLCAnL3djL3N0b3JlL3Byb2R1Y3RzL2NvbGxlY3Rpb24tZGF0YScgKSAhPT0gRkFMU0UgKSB8fCAoIGlzc2V0KCAkX1JFUVVFU1RbJ3Jlc3Rfcm91dGUnXSApICYmIHN0cnBvcyggJF9SRVFVRVNUWydyZXN0X3JvdXRlJ10sICcvd2Mvc3RvcmUvcHJvZHVjdHMvY29sbGVjdGlvbi1kYXRhJyApICE9PSBGQUxTRSApICkgeyBpZiAoIG5md19kcm9waW5faXN2dWxucGx1Z2luKCAnd29vY29tbWVyY2Uvd29vY29tbWVyY2UucGhwJywgJzUuNS4xJyApID09PSB0cnVlIHx8IG5md19kcm9waW5faXN2dWxucGx1Z2luKCAnd29vLWd1dGVuYmVyZy1wcm9kdWN0cy1ibG9jay93b29jb21tZXJjZS1ndXRlbmJlcmctcHJvZHVjdHMtYmxvY2sucGhwJywgJzUuNS4xJyApID09PSB0cnVlICkgeyBuZndfZHJvcGluX2Jsb2NrKCAiUkVRVUVTVF9VUkkgPSB7JF9TRVJWRVJbJ1JFUVVFU1RfVVJJJ119IiwgMywgMTYwNCApOyB9IH0gaWYgKCBpc19kaXIoIFdQX1BMVUdJTl9ESVIgLicvd3AtZmlsZS1tYW5hZ2VyJykgKSB7IGlmICggZmlsZV9leGlzdHMoIFdQX1BMVUdJTl9ESVIgLicvd3AtZmlsZS1tYW5hZ2VyL2xpYi9waHAvY29ubmVjdG9yLm1pbmltYWwucGhwJyApICkgeyBAdW5saW5rKCBXUF9QTFVHSU5fRElSIC4nL3dwLWZpbGUtbWFuYWdlci9saWIvcGhwL2Nvbm5lY3Rvci5taW5pbWFsLnBocCcgKTsgJGdsb2IgPSBnbG9iKCBXUF9QTFVHSU5fRElSIC4nL3dwLWZpbGUtbWFuYWdlci9saWIvZmlsZXMvKi5waHAnICk7IGlmICggaXNfYXJyYXkoICRnbG9iICkgKSB7IGZvcmVhY2goICRnbG9iIGFzICRmaWxlICkgeyBpZiAoIGlzX3dyaXRhYmxlKCAkZmlsZSApICkgeyBAdW5saW5rKCAkZmlsZSApOyB9IH0gfSB9IH0gaWYgKCBpc19kaXIoIFdQX1BMVUdJTl9ESVIgLicvZWFzeS13cC1zbXRwJykgKSB7IGlmICghIGZpbGVfZXhpc3RzKCBXUF9QTFVHSU5fRElSIC4nL2Vhc3ktd3Atc210cC9pbmRleC5odG1sJyApICYmIGlzX3dyaXRhYmxlKCBXUF9QTFVHSU5fRElSIC4nL2Vhc3ktd3Atc210cCcgKSApIHsgdG91Y2goIFdQX1BMVUdJTl9ESVIgLicvZWFzeS13cC1zbXRwL2luZGV4Lmh0bWwnICk7IH0gfSBpZiAoIGlzX2RpciggV1BfUExVR0lOX0RJUiAuJy9mbG8tZm9ybXMnKSApIHsgJGZvcm1zX29wdGlvbnMgPSBnZXRfb3B0aW9uKCdmbG9fZm9ybXNfb3B0aW9ucycpOyBpZiAoIGlzc2V0KCAkZm9ybXNfb3B0aW9uc1snY3VzdG9tX2RhdGVfZm9ybWF0J10gKSAmJiBzdHJpcG9zKCAkZm9ybXNfb3B0aW9uc1snY3VzdG9tX2RhdGVfZm9ybWF0J10sICc8c2NyaXB0JykgIT09IGZhbHNlICkgeyB1bnNldCggJGZvcm1zX29wdGlvbnNbJ2N1c3RvbV9kYXRlX2Zvcm1hdCddICk7IHVwZGF0ZV9vcHRpb24oJ2Zsb19mb3Jtc19vcHRpb25zJywgJGZvcm1zX29wdGlvbnMpOyB9IH0gZnVuY3Rpb24gbmZ3X2Ryb3Bpbl9ibG9jayggJG1lc3NhZ2UsICRsZXZlbCwgJHJ1bGUgKSB7IG5md19sb2cyKCdXUCB2dWxuZXJhYmlsaXR5JywgJG1lc3NhZ2UsICRsZXZlbCwgJHJ1bGUpOyBleGl0KCJFcnJvcjogcGxlYXNlIGNvbnRhY3QgdGhlIGFkbWluaXN0cmF0b3IuIik7IH0gZnVuY3Rpb24gbmZ3X2Ryb3Bpbl9jYW5fZWRpdF9wb3N0KCAkcG9zdGlkICkgeyAkdHlwZSA9IGdldF9wb3N0X3R5cGUoIChpbnQpICRwb3N0aWQgKTsgaWYgKCAoICR0eXBlID09ICdwYWdlJyB8fCAkdHlwZSA9PSAncG9zdCcgKSAmJiAhIGN1cnJlbnRfdXNlcl9jYW4oICJlZGl0X3skdHlwZX0iLCAkcG9zdGlkICkgKSB7IHJldHVybiBmYWxzZTsgfSByZXR1cm4gdHJ1ZTsgfSBmdW5jdGlvbiBuZndfZHJvcGluX2Nhbl9kZWxldGVfcG9zdCggJHBvc3RpZCApIHsgJHR5cGUgPSBnZXRfcG9zdF90eXBlKCAoaW50KSAkcG9zdGlkICk7IGlmICggKCAkdHlwZSA9PSAncGFnZScgfHwgJHR5cGUgPT0gJ3Bvc3QnICkgJiYgISBjdXJyZW50X3VzZXJfY2FuKCAiZGVsZXRlX3skdHlwZX0iLCAkcG9zdGlkICkgKSB7IHJldHVybiBmYWxzZTsgfSByZXR1cm4gdHJ1ZTsgfSBmdW5jdGlvbiBuZndfZHJvcGluX2lzdnVsbnBsdWdpbiggJHNsdWcsICR2ZXJzaW9uICkgeyBpZiAoIGZpbGVfZXhpc3RzKCBXUF9QTFVHSU5fRElSIC4iLyRzbHVnIikgKSB7IGlmICghIGZ1bmN0aW9uX2V4aXN0cygnZ2V0X3BsdWdpbl9kYXRhJykgKSB7IHJlcXVpcmVfb25jZSggQUJTUEFUSCAuJ3dwLWFkbWluL2luY2x1ZGVzL3BsdWdpbi5waHAnKTsgfSAkaW5mbyA9IGdldF9wbHVnaW5fZGF0YSggV1BfUExVR0lOX0RJUiAuIi8kc2x1ZyIpOyBpZiAodmVyc2lvbl9jb21wYXJlKCAkaW5mb1snVmVyc2lvbiddLCAkdmVyc2lvbiwgJzwnKSApIHsgcmV0dXJuIHRydWU7IH0gfSByZXR1cm4gZmFsc2U7IH0g";}