Web Application Security-ModSecurity Commercial Rules, Update for June 2018

ModSecurity Rules from Trustwave SpiderLabs include custom virtual patches for public vulnerabilities.

Release Summary

  • Joomla! Component Ek Rishta 2.10 username SQLi (2180087)
  • Joomla! Component Ek Rishta 2.10 SQLi CVE-2018-12254(2180088)
  • Joomla! Component Ek Rishta 2.10 cid SQLi (2180089)
  • Joomla! Component Jomres 9.11.2 CSRF (2180090)
  • WordPress 4.9.6 - Arbitrary File Deletion (2180091)
  • WordPress Plugin Booking Calendar 3.0.0 1.12.20 SQLi (2180092)
  • WordPress Plugin Booking Calendar 3.0.0 1.12.20 XSS (2180093)
  • WordPress Plugin Contact Form Maker 1.12.20 SQLi (2180094)
  • WordPress Plugin Google Map 4.0.4 SQLi (2180095)
  • WordPress Plugin iThemes Security 7.0.3 SQLi CVE-2018-12636(2180096)
  • WordPress Plugin Ultimate Form Builder 1.3.7 SQLi (2180097)
  • Joomla! Component Solidres 2.5.1 SQLi CVE-2018-5980(2180098)
  • Joomla! Component JS Autoz 1.0.9 SQLi CVE-2018-6006(2180099)
  • Joomla! Component Zh YandexMap 6.2.1.0 SQLi CVE-2018-6604(2180100)
  • Joomla! Component Zh GoogleMap 8.4.0.0 SQLi CVE-2018-6582(2180101)