'; } else{ echo ''; } echo 'Hillstone Networks'; } elseif ($_SERVER[HTTP_HOST] == "update1.huaantech.com.cn") { echo ''; echo 'huaantech'; } elseif ($_SERVER[HTTP_HOST] == "update1.dcnetworks.com.cn") { echo ''; echo 'dcnetworks'; } elseif ($_SERVER[HTTP_HOST] == "update1.w-ibeda.com") { if (false===strpos($_SERVER[REQUEST_URI],"/en/")) echo ''; else echo ''; echo 'w-ibeda'; } elseif ($_SERVER[HTTP_HOST] == "update1.hp-telecom.com") { echo ''; echo 'hp-telecom'; } elseif ($_SERVER[HTTP_HOST] == "update1.maipu.com") { echo ''; echo 'Maipu'; } elseif ($_SERVER[HTTP_HOST] == "update1.ncurity.com") { echo ''; echo 'Ncurity'; } elseif ($_SERVER[HTTP_HOST] == "update1.socusnetwork.com") { echo ''; echo 'Socusnetwork'; } else{ echo ''; echo 'Hillstone Networks'; } ?>
 
   
 

access_scanner:access_backup_or_working_file(Rule ID:1060110027)

Release Date2025/9/15

Rule NameAttempt to Access a Backup or Working File

Severity:high

CVE ID

 

Descripiton

Web scanner is a kind of program to automatically detect security vulnerabilities of local or remote hosts. It finds vulnerabilities of the targets fastly and accurately and provides scan reports for users. This rule tries to detect the scanners by inspecting HTTP request filenames and arguments. This rule supports to defend the A5: Security Misconfiguration of OWASP Top 10 - 2021.
Other reference:None

 

Solution

Update vendor patches.