This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.
This signature detects attempts to exploit a remote command execution vulnerability in Basilic which may result in arbitrary code to be executed.
Basilic is a PHP-based automated bibliography server.
The application is prone to a remote command-execution vulnerability because it fails to sanitize user supplied input to the 'file' parameter of the 'basilic/Config/diff.php' script.
An attacker can exploit this issue to execute arbitrary commands within the context of the vulnerable application.
- Basilic 1.5.14 is vulnerable; other versions may also be affected.