Below is a list of the last 500 suspicious interactions with this IP.
Last observed Tue, 14 Jul 2026 17:21:55 (Australia/Brisbane)
| Description | Count |
|---|---|
| ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | 299 |
| ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | 118 |
| ET WEB_SERVER auto_prepend_file PHP config option in uri | 10 |
| ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | 10 |
| ET WEB_SERVER PHP.//Input in HTTP POST | 10 |
| ET WEB_SERVER allow_url_include PHP config option in uri | 10 |
| ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | 10 |
| ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | 10 |
| SERVER-WEBAPP PHP PHP-CGI command execution attempt | 10 |
| ET WEB_SERVER PHP tags in HTTP POST | 10 |
| ET WEB_SERVER Generic PHP Remote File Include | 10 |
| Timestamp | Description | Protocol | Destination Port |
|---|---|---|---|
| 2026-07-14 17:21:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-14 17:21:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-14 12:31:44 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-14 12:31:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-14 12:31:43 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-14 09:51:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-14 09:51:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-13 22:01:56 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-13 22:01:56 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-13 21:25:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-13 21:25:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-13 21:25:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-13 18:52:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-13 18:52:35 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-12 18:13:22 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-12 18:13:22 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-12 02:23:05 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-12 02:23:05 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-12 00:19:31 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-12 00:19:31 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-12 00:19:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-11 21:31:49 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-11 21:31:48 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-09 10:12:10 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-09 10:12:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-09 06:16:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-09 06:16:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-08 15:09:38 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-08 15:09:37 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-08 15:09:37 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-08 14:49:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-08 14:49:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-07 07:22:16 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-07 07:22:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-06 20:41:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-06 20:41:42 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-06 15:24:03 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-06 15:24:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-06 15:24:02 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-06 12:22:49 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-07-06 12:22:48 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-05 02:21:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-05 02:21:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-04 16:17:53 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-04 16:17:52 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-04 01:41:12 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-04 01:41:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-03 21:10:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-03 21:10:14 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-02 23:01:47 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-07-02 23:01:47 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-30 04:35:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-30 04:35:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-30 01:24:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-30 01:24:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-30 00:11:09 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-30 00:11:08 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-30 00:11:07 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-29 15:39:45 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-29 15:39:45 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-29 08:30:39 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-29 08:30:38 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-28 18:40:59 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-28 18:40:59 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-28 15:39:48 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-28 15:39:48 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-27 23:15:18 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-27 23:15:18 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-27 23:15:17 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-27 03:02:45 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-27 03:02:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-26 08:23:52 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-26 08:23:51 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-26 08:23:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-25 07:29:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-25 07:29:54 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-25 05:59:15 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-25 05:59:14 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-25 05:59:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-24 18:27:52 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-24 18:27:52 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-24 18:27:51 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-23 22:22:05 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-23 22:22:04 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-23 22:22:03 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-23 03:43:05 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-23 03:43:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-22 15:53:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-22 15:53:42 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-22 01:50:01 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-22 01:50:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-21 01:58:10 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-21 01:58:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-20 15:57:42 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-20 15:57:41 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-20 15:57:41 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-20 11:44:42 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-20 11:44:42 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-20 09:51:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-20 09:51:14 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-19 19:09:07 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-19 19:09:07 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-19 06:35:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-19 06:35:01 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-18 22:09:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-18 22:09:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-06-17 21:15:03 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-06-17 21:15:03 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-06-17 21:15:03 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-06-17 21:15:02 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-06-17 21:15:02 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-06-17 21:15:02 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-06-17 20:13:33 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-06-17 20:13:33 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-06-17 20:13:33 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-06-17 20:13:33 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-06-17 20:13:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-06-17 20:13:33 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-06-17 20:13:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-17 09:15:59 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-17 09:15:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-17 02:01:31 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-17 02:01:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-17 01:41:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-17 01:41:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-16 00:44:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-16 00:44:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-15 04:59:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-15 04:59:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-14 05:21:05 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-14 05:21:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-13 04:55:51 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-13 04:55:51 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-13 04:55:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-12 01:29:51 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-12 01:29:49 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 21:51:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 21:51:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 18:51:38 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 18:51:37 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 10:30:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 10:30:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 00:23:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-11 00:23:35 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-09 10:29:41 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-09 10:29:41 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-09 00:31:48 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-09 00:31:48 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-09 00:31:47 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-08 22:41:20 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-08 22:41:20 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-08 22:41:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-08 20:20:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-06-08 20:20:29 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-06-08 20:20:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-06-08 20:20:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-06-08 20:20:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-08 20:20:29 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-06-08 20:20:29 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-06-08 07:31:35 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-08 07:31:35 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-06 22:11:52 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-06 22:11:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-06 16:27:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-06 16:27:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-06 13:37:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-06 13:37:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-05 22:59:44 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-05 22:59:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-05 22:59:43 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-05 14:28:15 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-05 14:28:14 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 21:34:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 21:34:03 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 18:13:06 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 18:13:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 04:32:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 04:32:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 01:22:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 01:22:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 00:49:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-04 00:49:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-03 20:35:14 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-03 20:35:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-03 18:47:57 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-03 18:47:56 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-03 05:27:06 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-03 05:27:06 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-02 23:33:06 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-02 23:33:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-01 23:47:25 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-01 23:47:25 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-06-01 19:05:12 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-06-01 19:05:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-31 18:28:39 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-31 18:28:38 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-31 08:21:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-31 08:21:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-30 03:12:21 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-30 03:12:21 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-30 03:12:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-30 02:39:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-30 02:39:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-29 04:28:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-29 04:28:03 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-28 01:26:17 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-28 01:26:17 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-27 23:54:59 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-27 23:54:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-27 11:25:10 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-27 11:25:10 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-27 07:24:28 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-27 07:24:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-27 07:24:27 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-26 21:00:37 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-26 21:00:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-26 14:07:03 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-26 14:07:03 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-26 03:13:32 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-26 03:13:31 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-26 03:13:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-24 23:11:18 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-24 23:11:17 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-24 23:11:17 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-24 10:27:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-24 10:27:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 19:23:37 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-23 19:23:37 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-23 19:23:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 09:15:53 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 09:15:53 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 07:46:48 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 07:46:48 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 01:25:25 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-23 01:25:23 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-22 05:27:32 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-22 05:27:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-22 03:59:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-22 03:59:18 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-20 23:48:19 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-20 23:48:18 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-20 23:48:17 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-20 10:01:16 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-20 10:01:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-20 10:01:15 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-19 00:49:09 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-19 00:49:08 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-19 00:49:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-18 22:38:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-18 22:38:53 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-17 14:23:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-17 14:23:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-17 10:18:41 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-17 10:18:40 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-16 15:46:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-16 15:46:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-16 12:20:51 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-16 12:20:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-16 05:28:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-16 05:28:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-15 18:04:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-15 18:04:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-15 15:59:34 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-15 15:59:34 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-15 15:59:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-15 12:34:38 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-15 12:34:38 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-15 12:34:37 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-15 11:13:54 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-15 11:13:54 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-14 08:59:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-14 08:59:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-13 21:39:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-13 21:39:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-13 08:02:35 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-13 08:02:34 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-13 07:19:05 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-13 07:19:05 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-13 01:00:48 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-13 01:00:47 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-13 01:00:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-12 03:40:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-12 03:40:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-05-11 12:51:00 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-05-11 12:51:00 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-05-11 12:51:00 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-05-11 12:50:59 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-05-11 12:50:59 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-05-11 12:50:59 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-05-11 11:49:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-11 11:49:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-11 02:28:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-11 02:28:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-09 16:49:41 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-09 16:49:40 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-06 21:13:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-06 21:13:43 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-05 18:45:36 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-05 18:45:36 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-05 18:45:35 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-05 15:17:24 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-05 15:17:24 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-05 15:17:23 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-05 11:28:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-05 11:28:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-03 09:55:50 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-03 09:55:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-03 05:32:56 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-03 05:32:55 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-03 05:32:55 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-03 02:06:37 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-03 02:06:36 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-05-03 02:06:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-02 10:22:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-02 10:22:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-02 06:56:12 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-02 06:56:11 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-02 03:30:50 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-02 03:30:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-01 13:07:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-05-01 13:07:24 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-30 23:58:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-30 23:58:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-30 23:58:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-30 20:39:33 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-30 20:39:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-30 18:17:21 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-30 18:17:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-29 15:39:06 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-29 15:39:05 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-29 07:06:24 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-29 07:06:23 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-28 14:24:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-28 14:24:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-28 08:29:03 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-28 08:29:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-28 01:21:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-28 01:21:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-27 08:53:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-27 08:53:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-27 03:56:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-27 03:56:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-26 16:45:14 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-26 16:45:13 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-26 14:03:34 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-26 14:03:34 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-26 14:03:33 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-26 08:30:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-26 08:30:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-26 02:58:05 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-26 02:58:04 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-25 10:42:52 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-25 10:42:52 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-24 01:38:47 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-24 01:38:47 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-23 20:14:23 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-23 20:14:23 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-23 08:54:30 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-23 08:54:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-22 01:09:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-22 01:09:08 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-04-21 15:25:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-04-21 15:25:15 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-04-21 15:25:15 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER Possible SQL Injection (exec) in HTTP Request Body | TCP | 80 |
| 2026-04-21 15:25:15 | SERVER-WEBAPP PHP PHP-CGI command execution attempt | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER PHP.//Input in HTTP POST | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER allow_url_include PHP config option in uri | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER PHP tags in HTTP POST | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER Generic PHP Remote File Include | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SPECIFIC_APPS PHP-CGI OS Command Injection (soft hyphen) (CVE-2024-4577) | TCP | 80 |
| 2026-04-21 15:25:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-21 15:25:15 | ET HUNTING Suspicious PHP Code in HTTP POST (Inbound) | TCP | 80 |
| 2026-04-21 15:25:15 | ET WEB_SERVER auto_prepend_file PHP config option in uri | TCP | 80 |
| 2026-04-21 13:08:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-21 13:07:59 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-21 00:02:50 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-21 00:02:49 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-21 00:02:49 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-20 09:19:13 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-20 09:19:12 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-20 09:19:12 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-20 06:41:32 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-20 06:41:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-19 12:56:01 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-19 12:56:01 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-19 12:56:00 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-19 10:07:37 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-19 10:07:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-18 13:54:15 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-18 13:54:14 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-16 14:03:25 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-16 14:03:24 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-16 12:13:13 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-16 12:13:13 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-16 12:13:12 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-16 06:25:51 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-16 06:25:50 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-16 06:25:49 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-16 01:21:10 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-16 01:21:10 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-14 06:03:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-14 06:03:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-13 23:37:21 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-13 23:37:20 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-13 23:37:20 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-13 02:13:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-13 02:13:02 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-08 11:29:10 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-08 11:29:09 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-08 11:29:09 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-07 15:30:30 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-07 15:30:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-05 07:35:17 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-05 07:35:16 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-05 07:35:16 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-05 04:41:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-05 04:41:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-04 04:44:03 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-04 04:44:02 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 17:32:31 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 17:32:29 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 04:19:27 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-03 04:19:27 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-03 04:19:26 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 01:23:19 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-03 01:23:18 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-02 06:29:29 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 06:29:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-02 06:29:28 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 02:47:38 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 02:47:37 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
| 2026-04-02 02:47:36 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-01 05:50:58 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-04-01 05:50:57 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-30 15:52:22 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-30 12:43:28 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-30 12:43:27 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 06:02:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 06:02:46 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 00:39:57 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-29 00:39:57 | ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2 | TCP | 80 |
| 2026-03-28 23:56:31 | ET HUNTING Suspicious PHP Code in HTTP POST (Outbound) | TCP | 80 |
Back to top